Security Consultant

Job Description

Location(s): UK, Europe & Africa : UK : Frimley || UK, Europe & Africa : UK : London || UK, Europe & Africa : UK : Manchester

Job Title: Security Consultant – Cyber Assurance Focus (with Supply Chain Risk experience)

Location: Hybrid , London, Frimley

We offer a range of hybrid and flexible working arrangements – please speak to your recruiter about the options for this particular role.

What you’ll be doing

Working on client sites and remotely you will support and lead engagements that deliver cyber risk assessments for our customers, including those focused on improving our customer’s supply chain security control maturity, define secure solutions and ensure compliance.

• Conduct cyber risk assessments and supplier due diligence assessments.
• Implement cyber security assessment methodologies on our customer’s suppliers and sub-tier suppliers.
• Develop and maintain supplier cyber security policies and standards for assessments.
• Advise client’s on improving their supplier assurance risk management processes.
• Understand cyber threats and able to utilise threat intelligence for assessments.
• Participate in supplier security incident response, with a focus on assessment of impact and working in concert with the Incident Response (IR) Team to develop risk mitigation strategies.
• Prepare clear written reports and communicate cyber security requirements to stakeholders.

Your skills and experiences

• A passion for and understanding of cyber security trends and threats.
• Experience in use and application of security risk management frameworks such as NIST CSF and ISO 27001.
• Experience in a consulting environment.
• Effective business acumen and an understanding of the cyber security challenges faced by organisations and their supply chains.
• Ability to conduct F2F engagements to risk assess suppliers and articulate/pitch security advice, often at a technical level, directly to key customer and their supplier’s stakeholders.
• Experience with relevant supply chain risk management toolsets and other related tooling, such as any of BitSight, Panorays, Prevalent, CoreStream, ServiceNow and PowerBI is desirable.
• Excellent interpersonal skills as well as both written and verbal communication and presentation skills.
• Ability to prioritise workload, work well under pressure and concurrently manage both customer and BAE Systems expectations.

Please note we are ideally looking for someone who already holds SC or holds the necessary requirements to obtain.

Benefits

As well as a competitive pension scheme, BAE also offers employee share plans, an extensive range of flexible discounted health, wellbeing & lifestyle benefits, including a green car scheme, private health plans and shopping discounts – you may also be eligible for an annual incentive

We work hard and often go the extra mile, but we recognise people’s efforts and that everyone has a life outside of work. Our new cyber security consultant will be a crucial addition to our Critical National Infrastructure focused team. They'll be responsible for identifying, assessing, and mitigating cyber threats that could impact our clients, ensuring the integrity and security of our clients’ operations.

Why BAE Systems?

This is a place where you’ll be able to make a real difference. You’ll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you’ll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments.

Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks.

.