Info Assurance Engineer Staff Job Reference: LM People Job Code/Title: Location: Programme / Functional Group: MST14371 E2544I/ Info Assurance Engineer Stf Gloucester MST IS - Avon Description of Business Environment: Lockheed Martin is extending its capability within the Cyber and Analytics arena and is looking for talented information assurance practitioners to join its Gloucestershire-based team. You will become part of a dynamic and innovative team working on key cyber research and development programmes.The company offers training and enhanced leadership development programmes enabling successful candidates to be future leaders in their respective disciplines. Specific Job Description: Working under the Business Security Group the post holder will provide support to information assurance activities within the business and in a programme environment. The post holder will need to manage priorities with guidance in a demanding business environment. As an Information Assurance Specialist with specific responsibilities for IT Security, successful candidates will work with the Company Security Manager to: Ensure that the requirements of the Cabinet Office Security Policy Framework are met with regards to the implementation and maintenance of accredited IT networks Provide security advice to system design activities and RMADS development. Provide information security advice and guidance across the business. Required Skills: An all-round information assurance practitioner with good working knowledge of information security best practices. Able to clearly communicate Information Security principles at the tactical and operational level of the organisation. Experience of working in accordance with the Security Policy Framework and ISO 27001. Experience of providing risk managed security guidance during the design and operation of secure IT systems. Experience of undertaking technical risk assessments in compliance with IAS 1/2. Demonstrable experience of developing/ delivering RMADS and fully supporting the accreditation process. Working knowledge of HMG Good Practice Guides, Information Assurance Policies, and the Security Policy Framework Desired Skills: Strong written and verbal communication skills Experience of applying information assurance principles during a systems development and integration A high level of integrity and professionalism Knowledge of: Internet Security Trends, Firewall products, Access Control devices, Encryption products. A holder or member of a professional Information Security Certification (e.g. IISP, ITPC, CLAS, CISSP, CISSM, CCP) or be working towards certification Ability to achieve CESG Certified Practitioner in at least one discipline (or holding) Experience of delivering risk treatment plans in accordance with ISO27001. Standard Job Description: Provides security engineering designs and implementation in all aspects of Information Assurance and Information Security (InfoSec) Engineering. Assesses and mitigates system security threats/risks throughout the program life cycle; validates system security requirements definition and analysis; establishes system security designs; implements security designs in hardware, software, data, and procedures; verifies security requirements; performs system certification and accreditation planning and testing and liaison activities, and supports secure systems operations and maintenance. For security professionals providing systems security analysis, use Computer Systems Security Analysis (E121, L121). For information security professionals providing security risk and analysis, use Info Systems Security Risk and Analysis (E937, L937). Typical Minimum Education & Experience: Bachelors degree from an accredited college in a related discipline, or equivalent experience/combined education, with demonstrated professional experience; or significant professional experience with a related Masters degree; or professional experience required with a related PhD or JD; or no experience required with a MD. Considered an emerging authority.