Security Assurance Coordinator - Systems

Draken Europe offers exciting careers that matter.

We believe that mission success does not start with the mission itself. It begins with our people.

The Role

We are currently recruiting for a Security Assurance Coordinator who is responsible for management of System Security Accreditations, particularly maintenance of accreditation information and system status in the MOD DART tool, for guiding and maintaining compliance with all regulatory and contractual system security requirements, for providing or contributing to Technical Information Security planning, and for providing astute technical Information Assurance input to a range of other IA and project tasks.

The Security Assurance Coordinator is responsible for maintaining and improving all aspects of system security capability and compliance while also delivering continuous system and service accreditation.

Key Responsibilities

The Security Assurance Coordinator (SAC) role will, on behalf of and/or in conjunction with the BISO:

• Maintain System Registrations on the DART tool / input new systems for accreditation using DART.

• Maintain Risk Balance Cases (RBCs) and expiry dates in DART.

• Maintain currency of RMADS and SyOPs; maintain evidence of user acceptance/compliance with SyOPs.

• Engage with Accreditors for system-specific issues.

• Provide essential System Security accreditation progress reports and other Information Security reporting to the SWG and other forums.

• Contribute to System Security Design.

• Provide reviews of System Security Requirements within QPulse (or other systems / tools) and advise Project Boards and Development Teams.

• Maintain or contribute to project and system security risk registers, managing issues affecting the delivery and operation of secure CIS and Mission Systems.

• Provide interpretation and guidance on MOD and HMG System and Information Security requirements.

• Advise on compliance with ISO 27001 and DefStan 05-138 controls.

• Administer and maintain DefStan 05-138 compliance; ISO 27001 compliance and Cyber Essentials / Cyber Essentials Plus compliance.

• Investigate, seek and maintain certification against other Cyber and Information Assurance standards, including Civil Aviation security standards and frameworks and other Government, International and commercial standards.

• Plan security activities for new system developments.

• Review and advise on security within the Supply Chain.

• Investigate and report on company information security issues and events.

• Plan and support response to Information and System Security incidents.

Experience / skills / qualifications

• CISSP, CISM, COMP TIA or equivalent

• ISO27001 Lead Implementer / Lead Auditor

• NCSC CCP (or CLAS), SANS certifications (or equivalent) an advantage

• Information Security Diploma or Degree (or equivalent) an advantage

• HMG Information Security Standards and technical knowledge;

• HMG / MOD Accreditation policy and practices; experience with DART;

• Experience designing infrastructure, system and software security controls;

• Understanding of HMG Security Policy Framework;

• Experience developing RMADs and SyOPs;

• Experience of managing risk at programme and project level;

• Experience at applying different risk models;

• Participation in Security Working Groups;

• Proven management of compliance with standards and frameworks;

• Strong verbal and written communication skills;

• Ability to engage and influence internal and external stakeholders;

• Experience specifying ITHC activities and requirements;

• Qualified as CCP, CISSP, CISM or equivalent;

• Preferable: Professional membership of BCS or similar.

Our employee values

Draken is committed to eliminating unlawful and unfair discrimination and we celebrate the differences that a diverse workforce brings. A range of perspective and talent supports our values and drives our success, with a mix of voices generating better discussions, business decisions and outcomes for all.

To us, diversity means bringing your own perspective to the conversation; inclusion means having a voice - and equality means that your voice is heard.

At all our sites internationally, every member of the Draken Europe team is accountable to ensure that we are all treated fairly and with respect.

Intolerance has no place in our Company. We condemn it outright. Instead, we strive to create a culture where each person who joins our team feels they have the opportunity to succeed, to grow, and to work within an environment where they can be themselves.

We are also an Armed Forces friendly organisation, and as part of our commitment to the Armed Forces Covenant, welcome applications from veterans and services spouses and partners who met the criteria in our job specifications.

In line with our Disability Confident Commitments, we provide reasonable adjustments to facilitate our interview process, please liaise with us if any reasonable adjustments are required.