Security by Design Consultant

We are working recruiting for an experienced Security By Design Consultant to support a major customer-facing aviation programme delivering one of the company’s core products to an existing customer.  Working as part of a specialist Cyber & Information Security team, you will support the delivery of secure engineering solutions across the full engineering lifecycle, from requirements through to in-service support and maintenance. Key Responsibilities Support cyber and information security delivery across the engineering lifecycle Translate customer requirements into actionable security management plans and deliverables Conduct cyber and information security risk assessments and threat analysis Manage and escalate technical and delivery risks Support Security Working Groups and customer security workstreams Work closely with engineers, architects and developers to deliver secure-by-design solutions Deliver work packages to agreed time, cost and quality targetsRequired Experience & Skills Experience in a similar Defence-related cyber security role Strong experience in secure software design and high integrity systems Knowledge of MOD Secure by Design processes (ISN2023/09) Experience with NIST SP 800-30, 37, 53 and supply chain risk management (NIST (Apply online only)) Experience with Def Stan 05-138 / 05-139 and aviation security standards including RTCA DO-326A/B Proven experience in threat modelling, vulnerability analysis and security risk assessment Ability to work independently and communicate effectively with customers and stakeholdersQualifications Degree in Cyber Security, Systems Engineering, Software Engineering or comparable experience Two recognised cyber security certifications such as CISSP, CISM, CASP/SecurityX or ChCSPDesirable Knowledge of engineering lifecycle gate reviews Experience with Crypto technologies, COMSEC and MOD/NCSC standards Knowledge of ARP4754A / ARP4761The successful candidate will either already have active SC clearance or will be able to secure this quickly as this is required before a start date can be confirmed. Keywords: Cyber Security Consultant, Secure by Design, Defence Cyber Security, Aviation Security, CISSP, CISM, NIST, MOD, Security Architect, Information Security Consultant, RTCA DO-326A, Def Stan, Threat Modelling, Risk Assessment. “Meridian Business Support is a recruitment specialist acting on behalf of our client as an Employment Business for this vacancy