Info Assurance Engineer Staff

Info Assurance Engineer Staff
Job Reference:
LM People Job Code/Title:
Programme / Functional Group:
E2544I/ Info Assurance Engineer Stf
MST IS - Avon
Description of Business Environment:
Lockheed Martin is extending its capability within the Cyber and Analytics arena and is
looking for talented information assurance practitioners to join its Gloucestershire-based
You will become part of a dynamic and innovative team working on key cyber research
and development programmes.The company offers training and enhanced leadership
development programmes enabling successful candidates to be future leaders in their
respective disciplines.
Specific Job Description:
Working under the Business Security Group the post holder will provide support to
information assurance activities within the business and in a programme environment.
The post holder will need to manage priorities with guidance in a demanding business
As an Information Assurance Specialist with specific responsibilities for IT Security,
successful candidates will work with the Company Security Manager to:
 Ensure that the requirements of the Cabinet Office Security Policy Framework are met
with regards to the implementation and maintenance of accredited IT networks
 Provide security advice to system design activities and RMADS development.
 Provide information security advice and guidance across the business.
Required Skills:
 An all-round information assurance practitioner with good working knowledge of
information security best practices.
 Able to clearly communicate Information Security principles at the tactical and
operational level of the organisation.
 Experience of working in accordance with the Security Policy Framework and ISO
 Experience of providing risk managed security guidance during the design and
operation of secure IT systems.
Experience of undertaking technical risk assessments in compliance with IAS 1/2.
Demonstrable experience of developing/ delivering RMADS and fully supporting the
accreditation process.
Working knowledge of HMG Good Practice Guides, Information Assurance Policies,
and the Security Policy Framework
Desired Skills:
 Strong written and verbal communication skills
 Experience of applying information assurance principles during a systems
development and integration
 A high level of integrity and professionalism
 Knowledge of: Internet Security Trends, Firewall products, Access Control devices,
Encryption products.
 A holder or member of a professional Information Security Certification (e.g. IISP,
ITPC, CLAS, CISSP, CISSM, CCP) or be working towards certification
 Ability to achieve CESG Certified Practitioner in at least one discipline (or holding)
 Experience of delivering risk treatment plans in accordance with ISO27001.
Standard Job Description:
Provides security engineering designs and implementation in all aspects of Information
Assurance and Information Security (InfoSec) Engineering. Assesses and mitigates
system security threats/risks throughout the program life cycle; validates system security
requirements definition and analysis; establishes system security designs; implements
security designs in hardware, software, data, and procedures; verifies security
requirements; performs system certification and accreditation planning and testing and
liaison activities, and supports secure systems operations and maintenance.
For security professionals providing systems security analysis, use Computer Systems
Security Analysis (E121, L121). For information security professionals providing security
risk and analysis, use Info Systems Security Risk and Analysis (E937, L937).
Typical Minimum Education & Experience:
Bachelors degree from an accredited college in a related discipline, or equivalent
experience/combined education, with demonstrated professional experience; or
significant professional experience with a related Masters degree; or professional
experience required with a related PhD or JD; or no experience required with a MD.
Considered an emerging authority.