Security Engineer in Bristol

We’re building the UK's next generation engineering powerhouse, providing critical technology that strengthens national security and resilience. At Rowden, we design and integrate advanced systems that sense, connect, and protect data in challenging environments where quick decisions are vital. Our solutions are built to support mission critical operations in remote or high-pressure settings.

Department: Engineering

Location: Bristol, UK

Compensation: £55,000 - £75,000 / year

Responsibilities:

• Deliver secure, resilient, and compliant systems across products and services.
• Implement and champion Secure by Design across cloud infrastructure, software development, and far-edge networking and integration.
• Collaborate with delivery teams, the Technical Security Lead, and third-party support to embed security principles and support Government accreditation.
• Ensure robust security controls through the lifecycle and compliance with the latest security standards.
• Maintain system resilience and security across deployments and ensure secure delivery of capabilities.
• Work on-site a minimum of 3 days per week at Bristol HQ with occasional travel to customer sites.
• Support security-related activities within due to the sensitivity of the work, in line with security clearance requirements.
• Engage with supply chain partners to verify and assure security requirements throughout the capability lifecycle.
• Provide technical advice and support to engineering teams as a security champion within agile delivery teams.
• Represent Rowden in internal and external security forums.

Key areas of responsibility:

• Implementing and maintaining system security controls and operating procedures, aligned with MOD and Rowden standards.
• Supporting cyber security assurance activities, including documentation, testing, and reporting.
• Collaborating with project teams and external partners to deliver on security deliverables and schedules.
• Participating in security risk assessments, threat modelling, and vulnerability management for cloud, software, and far-edge deployments.
• Contributing to the security accreditation process, preparing evidence, managing asset registers, and supporting audits.
• Assisting in the continuous improvement of security processes, incident response, and compliance monitoring.
• Engaging with supply chain partners to verify and assure security requirements throughout the capability lifecycle.
• Providing technical advice and hands-on support to engineering teams as a security champion.

Key skills, experience and behaviours:

• Proven experience in cyber security engineering, ideally within defence, government, or critical infrastructure environments.
• Strong understanding of Secure by Design, risk management, and MOD security standards.
• Hands-on experience with cloud security, software assurance, and network security controls.
• Familiarity with security accreditation processes (e.g., RMADS, JSP 440/604, NCSC guidance).
• Ability to interpret and deliver against SOWs and SORs, working with external assurance providers.
• Excellent communication skills, with the ability to explain complex security concepts to technical and non-technical stakeholders.
• Strong analytical, documentation, and problem-solving skills.

Desirable experience:

• Experience of tactical networked C4I systems, including Opnet.
• Knowledge of multi-domain systems and cross-domain solutions.
• Understanding of LOS & BLOS communication systems.
• Awareness of UK Government LETacCIS programmes and systems such as DSA, Morpheus, Trinity and Bowman.

About you:

The ideal candidate will have a strong balance of technical skills and experience, and the behavioural competencies that are key to success in the role:

• Extensive experience in software development environments and infrastructure delivery, with a solid engineering foundation, ideally in software engineering.
• In-depth knowledge of Secure by Design principles and their application in secure systems architecture.
• Proficiency in securing cloud infrastructure, software, far edge networking, and integrated systems.
• Strong analytical and risk management skills, with a focus on continuous security improvement.
• Ability to work within cross-functional teams to achieve secure, compliant solutions.

Working at Rowden:

We are committed to building a flexible, inclusive, and enabling company. Our aim is to create a diverse team with unique skills, experience, and backgrounds, so please apply and come as you are. We support a flexible, hybrid-working model with an average 3 days in the office each week (dependent on the role). We welcome discussions on flexibility, part-time working requirements, and/or workplace adjustments. Rowden is a Disability Confident Committed company, and we actively encourage people with disabilities and health conditions to apply. Please let us know your requirements early on so we can help make the recruitment process easier. If you don’t meet all criteria but have transferable skills and relevant experience, we’d still love to hear from you.

Seniority level: Mid-Senior level

Employment type: Full-time

Job function: Information Technology

Industries: Technology, Information and Internet