Information Security Classified Networks Technical Lead

Location(s): UK, Europe & Africa : UK : Guildford

Job Title: Information Security Classified Networks Technical Assurance Lead

Location: Guildford, with some option for hybrid working.

We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role.

What you’ll be doing

• Technical Risk Management – Conduct in-depth technical risk assessments of IT systems, networks, and applications. Identify potential vulnerabilities and recommend mitigation strategies.
• Accreditation and Compliance - Lead accreditation and the continuation of accreditation work, maintaining compliance with frameworks such as Secure by Design, NIST-800-53, STRAP.
• Security Testing - Scope and oversee penetration testing, vulnerability scanning, and other security validation activities.
• Design and Architecture Review - Assess the Information Security of IT architecture and system designs during project lifecycles.
• Policy and Standards - Develop and enforce technical security policy, procedures, standards and guidance.
• Continuous Improvement - Identify gaps and areas for improvement in security controls and processes.
• Stakeholder Communication and Reporting - Provide detailed assurance reports to stakeholders, effectively communicating technical risks and mitigation strategies.
• Collaboration with Teams - Work closely with engineering, development, and operations teams to embed Information Security into workflows.
• Security Assurance Framework Development – Review and revise Information Security frameworks for assessing security posture.
• Promoting high security standards and integrity

Your skills and experiences

• Expert understanding of security concepts and principles (CIA triad, risk management, compliance frameworks applicable to classified networks and systems).
• Expert understanding and application of UK government and defence Accreditation standards, including Secure by Design, NSCS/NPSA Risk Management, NIST800-53, STRAP, DEF STAN 05-138, ISO27001.
• Robust knowledge and experience in developing and reporting performance and risk metrics.
• Strong organisational, time management and diplomacy skills.
• Independent tasking and project completion with little supervision.
• Excellent analytical and problem-solving skills as well as interpersonal skills.
• Excellent written and verbal communications.
• Expert application of MS Office and other widely used office automation software.
• Experience in Government/List X/Facilities Security Clearance and Commercial security.
• Ability to obtain a high level of Government Security Clearance.
• Assist with security tasks as deemed appropriate by the Head of Information Security or Chief Security Officer.
• Promote and ensure BAE Systems Behaviours.
• Must already hold UKSV with the ability to obtain Developed Vetting National Security Clearance.
• Must be a UK National.

Benefits

BAE offers a competitive pension scheme, employee share plans, and a range of flexible health, wellbeing & lifestyle benefits, including a green car scheme, private health plans, and shopping discounts.

The Information Security team is critical to BAE Systems. You will be part of a small, highly effective and supportive team, with a collaborative team dynamic.

Why BAE Systems?

This is a place where you can make a real difference. You’ll be part of an inclusive culture that values diversity and rewards integrity.

We also want to ensure our recruitment processes are as inclusive as possible. If you have a disability or health condition that may affect your performance, please speak to your recruiter about potential reasonable adjustments.

Please be aware that many roles at BAE Systems are subject to security and export control restrictions. All applicants must achieve Baseline Personnel Security Standard, and many roles require higher levels of National Security Vetting.