Ontvang aanbevelingen op basis van je profiel en word benaderd door bedrijven.

Cybersecurity GRC Specialist

Geplaatst 5 nov. 2022
Delen:
Werkervaring
0 tot 1 jaar
Full-time / part-time
Full-time
Functie
Soort opleiding
Taalvereiste
Engels (Vloeiend)

Ontvang aanbevelingen op basis van je profiel en vind de vacatures die bij je passen.

Al 300.000+ studenten en starters hebben een profiel.

About Your Role

The Cybersecurity GRC Specialist will execute cybersecurity activities with a focus on cyber governance, risk, and compliance, to achieve a full Secure by Design lifecycle for the customer, and support the security objective of system accreditation.

The main activities of the role:

Develop the Statement of Applicability (SOA) to contain the derived system security requirements and support each of the sub-system engineering streams to embed the Security functional requirements in their product selection, design work and testing activities.

Analyse the ISM, PSPF and all applicable policies and standards to identify all relevant Security Engineering requirements to be captured in the SOA and forms the basis of the System Requirements Specifications (SRS).

Work closely with the lead engineers in every subsystem, to provide security guidance and ensure system security requirements are being implemented as per the ISM intent, are addressed in each of their system designs and solutions.

Contribute to the System Security Plan (SSP) of the subsystems’ security design and solution and the functional security requirements.

Identification and assessment of the security risks, to be documented in the Security Risk Management Plan (SRMP) as well as proposing mitigation options to address them.

Contribute to test strategy and development of the detailed test procedures to achieve effective and re-usable testing methods for the verification of the security requirements for security accreditation.

Contribute to the preparation activities identified for the Security Engineering activities at each of the project reviews (SRR, IBR, CDR, C/DRR, IRD, ESV and SAT).

Support the development of security artefacts necessary to achieve the Security Accreditation of the system and support (Development and Test) system(s).

Support and contribute to the V&V testing activities across the range of subsystem engineering teams.

Facilitate the IRAP assessor engagement by assisting with the audit and review activities.

Engage and coordinate penetration testing activities, including the preparation of the activities, organisation of the facilities and system access.

Track and report remediation activities and effort.

Provide cybersecurity engineering support during the Operate and Maintain phase of the project, up to the system-of-system level.

Optimise processes and work activities, focusing on the efficiency of project execution (structure, roles, interfaces, artefacts, template, re-use. coordination).

Apply and tailor as appropriate the system and cyber engineering processes, practices and tools applicable to the project.

Identify and review security risks and issues, and propose effective solutions; execute agreed mitigation actions and report on outcomes or cost savings and residual risks.

How About You?

A tertiary qualification in Engineering, Computer Science, IT or other relevant qualification with a focus on cybersecurity, or can demonstrate a high level of competence through career experience and self-study

Demonstrated knowledge of the engineering life cycle, from concept design, requirements capture and management, system and subsystem design, system integration through to test strategies, acceptance and support phase.

Strong ability to turn complex issues into an appropriate level of detail in a methodological manner through the application of structure systems analysis and associated engineering processes and tools.

Experience working in multi-skilled engineering teams within a matrix environment.

Solid understanding of cybersecurity and its application in the engineering of systems.

Strong appreciation and adherence to security engineering processes, and high-quality delivery.

Demonstrated ability to analyse and solve problems, working with a range of colleagues and stakeholders in a project context.

Proficient knowledge and use of DOORS.

Advanced knowledge of ISM, PSPF and NIST standards

Good to Know

You’ll get an email acknowledgement after you’ve applied, Thales strives to provide a personalised experience for all suitable applicants.

Prior to offer you’ll complete a pre-employment police and medical check.

For more information on Thales visit us @ThalesCareers on Instagram

Together, we create the ingenious technological systems and innovations that impact and improve people's lives every single day.
Even if you haven't heard the name Thales before, you've definitely benefited from our inventiveness.
-Travelled by train recently?
Thales technology gave you electronic platform information and our signalling probably got you safely to your destination
-Love watching films at 35,000 feet?
Our in-flight entertainment technology...


Together, we create the ingenious technological systems and innovations that impact and improve people's lives every single day.

Even if you haven't heard the name Thales before, you've definitely benefited from our inventiveness.

-Travelled by train recently?
Thales technology gave you electronic platform information and our signalling probably got you safely to your destination

-Love watching films at 35,000 feet?
Our in-flight entertainment technology helps you laugh and cry your way from one side of the world to the other.

-Checked your bank balance from your smartphone today?
Thales protects the information systems of 19 of the world's 20 largest banks and safeguards 3.7 billion UK transactions every year.

We reinvest 7% of our revenue in Research & Development in the UK - and local engineers and technicians make up a significant number of our 20,000-strong team of global scientists. Together we supply invention, ingenuity and inspiration across five core areas: Aerospace, Space, Transportation, Defence and Security. Here are a few more of our highlights:

Engineering
Addlestone
6.500 medewerkers

Dit zeggen medewerkers

Joshua Western - GRADUATE

Asst Commercial Officer - Thales Space

Joshua Western - GRADUATE

UP UNTIL NOW
My first role involved co-authoring key documents in a bid worth over £14m. The project gave me a detailed insight into the bid structure and process, from receiving the initial request and coming up with a solution to presenting it back to the customer. This...

Natalie Harris - INTERN

Project Engineer - Thales Transporation

Natalie Harris - INTERN

UP UNTIL NOW
Since I started my internship with Thales, I’ve been involved with the London Underground’s Jubilee and Northern lines Update Project (JNUP) – the largest re-signalling project in the world. I feel immensely proud of being part of something so unique.
Not only have I published my...