Product Security Engineer

Last updated 2 days ago

Information Security (Infosec) Engineer

Would you like the new challenge of making an impact on some of the biggest projects in the UK defence market right now? Join our highly-skilled Combat Systems team and you'll be part of something you can be proud of; equipping the Royal Navy with another world class capability.

Would you like to work with advanced technology to minimise the risk of both cyber threats and social attacks? We currently have a vacancy for an Information Security Engineer to be based at one of our sites in the Portsmouth area.

As an Information Security Engineer, you will be tasked with ensuring our products across the Maritime Sector are secure by design, achieve security accreditation and maintain security through-life.

This role will provide you with the opportunity to liaise with stakeholders, influence engineering design, produce documentation in support of accreditation, provide advice and guidance to shape technical solutions and support embedding our security culture across the business.

Your main responsibilities as an Information Security Engineer will involve:

Designing and shaping the technical security architecture of a number of strategically important products to ensure they are secure by design

Liaising with the system accreditor(s) and stakeholders to manage expectations and ensure that security requirements are met and risk is reduced to acceptable level

Determining of the security principles for the project solution to work within

Producing documentation such as product security architecture and Risk Management Accredited Document Set – (RMADS) for support of accreditation. Collecting evidence for the security case

Inputting security sections of bid proposal documents and producing estimates, and security principle frameworks

Contributing to the wider Product Security Function – delivering training, presenting at Special Interest groups, improving processes

Keeping up to date in relevant security standards, process and technologies, develop skills and capabilities to be able to provide more effective services

Supporting the product security Special Interest Group by sharing best practice

Your skills and qualifications:


Fundamental understanding of computer technologies, how they are networked together, different protocols, operating systems and applications

Good knowledge and understanding of security risk assessments and RMADS (Risk Management Accredited Document Set) or alternatively other formal security risk assessments or auditssuch as ISO 27000 family of standards, JSPs, NIST (National Institute of Standards in Technology) etc.


Systems engineering experience and background

Ability to identify and investigate technology to understand the security flaws and how to mitigate them

Good technical understanding of systems and how their security aspects are applied and affect performance

An understanding of Defence Standards/Security Regulations

What we're looking for in you:

An excellent communicator with strong Influencing and interpersonal skills, whilst having an attention to details but be flexible and adaptive when the role demands.

Location: Broad Oak

Salary: Competitive

Benefits: Our employees receive an excellent benefits package which includes a competitive pension scheme, enhanced annual leave allowance and a Company contributed Share Incentive Plan. We also offer a range of additional benefits such as flexible working, an employee assistance programme, Cycle2work and many local and national employee discounts. Some employees may also be eligible for an annual incentive.

BAE Systems

BAE Systems is one of the world’s leading global defence, security and aerospace companies. We work at the cutting edge of technology, creating more than 100 new inventions every year for customers in over 100 countries

Combat Systems

We design, develop, integrate and provide through-life support to naval combat systems that enable navies to protect nations. Vital information from ship sensors such as radar and sonar, are captured through our core product, the Combat Management System. This advanced technological capability allows ships crews to rapidly respond to potentially life threatening situations.

In using this cutting-edge technology, we are at the forefront of defence system integration. Our products feature across the Royal Navy’s surface fleet aboard Type 23 frigates, Type 45 destroyers and Queen Elizabeth Class aircraft carriers. The new Type 26 Global Combat Ships, under construction by BAE Systems in Glasgow, will also use the next generation of our combat systems.

We pride ourselves on being the combat systems integrator of choice, not only integrating our own products, but those of other defence companies too in delivering combat systems for both the Royal Navy and international customers.

We offer significant opportunities for committed employees to learn and develop with us. The health and well-being of our employees matters to us and that’s why we offer the flexibility for you to do what’s important to you, whether that’s part time hours, job sharing, home working, or simply the ability to flex your start and stop times. Where practical, we’ll support a working pattern that suits your lifestyle and helps you reach your full potential.

Attracting and retaining the sharpest minds is essential for a globally competitive UK naval engineering business. BAE Systems is an equal opportunities employer and our aim is to recruit the very best talent and we welcome applications from a diverse range of people, from all backgrounds, with many different skills, experience and perspectives. Please note we will not use any personal information relating to your background at any stage of the application process.

Please be aware that many roles working for BAE Systems will be subject to both security and export control restrictions. These restrictions mean that factors including your nationality, any previous nationalities you have held, and/or your place of birth may limit those roles that you can perform for the organisation.