Job Description

Key Accountabilities:
Collaborate with the Group Chief Information Security Officer in the development and execution of the Cyber and Information Security strategy for the UK Sector, taking ownership for alignment and delivery of QinetiQ overall strategic goals and objectives.

Develop supporting UK Information Security (InfoSec) policy and strategy that aligns with the Group to ensure compliance that exceeds customer accreditation and/or certification requirements e.g. Facility Security Clearance (FSC) and Secure by Design (SbD).

Lead on assuring that UK InfoSec policy aligns and informs UK IT delivery and minimises the threat in meeting the standards for accreditation and compliance.

Work with the wider technical Security functions and industry partners to iteratively improve our protective controls, maintain up to date threat information and support corporate and mission systems IT vulnerability remediation activities.

Be a principal UK Business InfoSec stakeholder and SME lead into UK Government (Agencies and Departments e.g. MOD).

Lead on the provision of advice to inform Information Security policy and its interpretation to meet local needs, supporting UK Sectors

Act as focal point for the progressing of all InfoSec issues (including being an authority for IT Security Governance activities) in the UK.

Be the UK lead on the assurance of mission IT to ensure consistent standards in conjunction with HMG contractual requirements e.g. GovS 007, JSP440 (as necessary) and other commercial security standards, ISO27001, NIST, etc.

Be the UK Security lead on effective Supply Chain Security (due diligence and assurance) in line with contractual requirements and procurement activities.

Ensure a risk managed security regime is in place to protect QinetiQ commercially sensitive information (critical assets) across all IT assets in the UK Business.

Lead on the effective reporting of security investigations and security compliance (WARP and MOD Certs).

Support the UK Head of Security Services in leading and delivering an integrated security strategy, aligned with Group, enabling and protecting the UK businesses.

Key Capabilities/Knowledge:
An excellent people person with the ability to work with and influence people at all levels in an organisation.

An excellent communicator with the ability to create many relationships and handle conflict.

Personal attributes must include confidentiality, independence, integrity and energy.

Results focused with a “can do will do” personal style.

A problem solver who can deliver simple solutions to complex security problems.

Ability to convince all employees/contractors/suppliers to clearly understand the vision and need for effective InfoSec, leading to continued accreditation/certification status and safe and secure information environments.

Develop and maintain a framework to improve the assurance level (2nd line) of information systems and environments in the UK Business.

Provide services and expertise to align with extant policy and procedures.

Respected relationship on InfoSec issues with all stakeholders both internally and externally.

Experience & Qualifications:
Proven track record in a Security Leadership role (in a defence business would be an advantage)

Good understanding of security risk methodology and policies and how they relate to all aspects of the UK Business.

Experience of security liaison with key organisations.

SME in Information Security (including risk management) with relevant certifications or experience e.g. CISSP, GIAC, CISM.

Prior experience of IT delivery engagement – desirable.

DV Security Clearance to be held and maintained at level appropriate for the role.

Please note that all applicants must be eligible for SC clearance as a minimum.

UKSV National Security Vetting Solution: guidance for applicants - GOV.UK (www.gov.uk)

Why join QinetiQ?

As we continue to grow into new markets around the world, there’s never been a more exciting time to join QinetiQ. The formula for success is our appetite for innovation and having the courage to take on a wide variety of complex challenges.

You’ll experience a unique working environment where teams from different backgrounds, disciplines and experience enjoy collaborating widely and openly as we undertake this exciting and rewarding journey. Through effective teamwork, and pulling together, you’ll get to experience what happens when we all share different perspectives, blend disciplines, and link technologies; constantly discovering new ways of solving complex problems in an diverse and inclusive environment where you can be authentic, feel valued and realise your full potential. Read more about our diverse and inclusive workplace culture here .

Joining QinetiQ offers you an opportunity to work on a broad range of interesting defence-based projects with vast career progression across a global organisation in addition to competitive personal and professional benefits. You’ll receive a highly competitive salary and benefits package: our basic salaries are very attractive as we constantly review what’s happening in the market. The range of benefits that we offer include, adaptive and flexible working, generous holiday entitlements, Health Cash Plan, Private Medical Insurance and Dental Insurance and much more.

About QinetiQ

As a company of over 6,000 dedicated professionals, we are a world-centre of excellence in research and development and act as a catalyst for fast-track innovation, offering outstanding experimentation facilities, and technical, engineering and scientific expertise. QinetiQ is made up of dedicated experts in defence, aerospace, security and related markets, all working together to explore new ways of protecting what matters most. Being part of QinetiQ means being central to the safety and security of the world around us. Partnering with our customers, we help to save lives; reduce risks to society; and maintain the global infrastructure on which we all depend. Come and find out how you can play a role.

Please note that many roles in QinetiQ are subject to national security vetting. Applicants that already hold the appropriate level of vetting may be able to transfer it upon appointment, subject to approval. A number of roles are also subject to restrictions on access to information that mean factors such as nationality, previous nationalities held and the country in which you were born may have an effect on the roles that you can be employed in.

Similar Jobs