Security Assurance Coordinator

Job type:
on-site
Start date:
ASAP
Duration:
6 months
From:
Networkers
Location:
Hampshire
Published at:
03/06/2021
Country:
flag_no United Kingdom
Project ID:
2064042

Warning
This project has been archived and is not accepting more applications.
Browse open projects on our job board.

BAE Systems require a Security Assurance Coordinator to join their team in Portsmouth on a 6-month contract

This position has been deemed as inside of IR35

Position Description

  • Under the UKMOD Common Support Model (CSM) complex Warship Design Authority is comprised of the DE&S Warship Approving Authority (WAA) and the BAES/Babcock Warship Technical Authority (WTA).
  • The purpose of this role is to ensure that Class security accreditation is maintained throughout the in-service life of the Queen Elizabeth Carrier (QEC), Type 45 (T45) and Hunt Classes by supporting the MOD's Security Assurance Co-ordinators for these ships.
  • The role is also required to assess the Threats and Risks to Class security and provide assurance that appropriate mitigating action is undertaken by the enterprise. The context for the role is one of significant ongoing change which requires an adaptable and dynamic individual to ensure that security accreditation issue are fully addressed across all 3 classes.
  • The post holder will provide input, as directed by the WTA Hub Manager, to briefs at WTA Hub, COM, Board or IPT level associated with security accreditation activities.

Core Duties

  • Lead the management and continuous development of the Security Accreditation posture of the T45 and QEC Platforms to achieve and maintain Class Accreditation.
  • Undertake the role of QEC and T45 Class Security Assurance Coordinator, as outlined in DE&S BP CSM/117, including the provision of advice to the Class Lead Engineers on the application of policy, standards, guidance and products. (This will also require liaison with the Customer Cyber Defence and Risk Accreditor, SAC and all relevant stakeholders to ensure Class Accreditation is achieved and maintained through life.)
  • Conduct in-depth security risk assessments using aspects of IS1&2 and NIST's Risk Management Framework to support the overarching security risk management process.
  • Maintain and develop existing security and accreditation documentation, namely RMADs and security management plans, to support continued security accreditation.
  • Provide senior management, and other key stakeholders, regular briefings, advice and recommendations on a range of security topics as they pertain to security management and accreditation of both platforms.
  • Chair the Security Working Groups for both platforms and provide expertise to other forums or meetings, as required.
  • Gain accreditation for any new platforms that require accreditation.
  • Support the WAA in the management of the Class TEMPEST Assurance Schedules and TEMPEST Certification.
  • Where design change to embodied systems and equipment is to be undertaken propose updates related to Platform or Equipment Certification, Concessions or CCU's to Authorities and identify Class Security Aspects as part of the Class Change Impact Assessment Process (CIAP) ensuring that the Physical Security aspects of the QEC/T45/Hunt Class are maintained and accredited as necessary. Support to the WAA in assessment of Installation Inspection non-conformance reports.
  • Support the Authority in security incident investigations and conduct relevant Lessons Learnt activities proposing any required changes to QEC/T45/Hunt Class technical, procedural, personnel or physical security controls.
  • Provide management and development for a junior security accreditation engineer.
  • Where the customer denotes the need for Out Of Hours Cover (OOHC), in-line with the BAE Systems Common Support Model (CSM) Solution and other supported Classes of Ship, this role may be required to conduct duties out of working hours in order to contribute towards delivering the overall customer requirement.
  • Comply with SHE statutory requirements, regulations and company procedures.

Functional Knowledge

  • Extensive understanding of security accreditation, preferably with 5 years experience. Experience within a Maritime/Defence Environment is highly desired.
  • Extensive knowledge of relevant security policy (such as JSPs 440 and 604), procedures, and practices and standards (such as NIST, ISO27001 and IS1 & 2).
  • Possess security industry leading qualifications/certifications, such as: CISSP, CISM, CRISC, CCP SIRA (Senior), or extensive professional experience.
  • Good IT skills particularly MS Project; MS Excel and MS PowerPoint and with a knowledge of the MOD's DART risk management tool preferable.
  • Preferably a member of a relevant Professional Body, eg (ISC)2 and ISACA.

Business Expertise

  • An understanding of the BAES Maritime Support Services, its organizations, products and services supplied.
  • An understanding of the Ships Asset Management organization within Warship Support and its wider business goals.
  • An understanding of the DE&S Common Support Model and its relevant Business Procedures that pertain to Security Accreditation, TEMPEST and design change activities undertaken by the WTAs.
  • An understanding and experience of the defence maritime industry, especially the MoD Maritime structure and its departments.
  • An awareness of BAES and MOD/DE&S project governance processes and procedures.
  • Knowledge of defence related Trades Controls, eg the US ITAR and EAR.
  • An understanding of industry and MoD design/safety management tools and processes.
  • An understanding of Matrix management in a complex operational environment.

Networkers acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers and is part of Gattaca Plc.

Gattaca Plc provides support services to Networkers and may assist with processing your application.