Job title: AIR - Head of Cyber Security Risk and Governance

Location: Remote, some travel to sites may be required for meetings

Salary: Up to £72,500 depending on skills and experience

What you’ll be doing:

• Working with the air Head of Cyber and Information Security to provide SME knowledge on cyber security risk to corporate information security activities and policies
• Developing the Air Sector information risk profile, helping the business develop risk tolerances and appetites for critical systems and process and developing risk reporting
• Being accountable as the Risk custodian for Cyber Security. Aiding in the development, deployment and communication of the cyber security risk mitigation strategies developing the three lines of defence methodology
• Understanding the needs of the business, functions and projects, to inform the cyber security risk strategy, policy and processes ensuring the safeguarding of business information and assets in accordance with business risk appetite/tolerances
• Supporting the new risk and assurance group (RAG) developing management reporting, risk reporting and supporting security reporting
• Acting as a Risk and Control SME for the business and functions, ensuring management understanding of risks, controls, ownership and accountability
• Providing input into corporate insider threat risk assessments and the review of the effectiveness of risk mitigation strategies, supporting Cyber security investigations as required
• Ensuring cyber risks are included in the overall corporate risk framework and that this reflects the priority of the risk landscape

Your skills and experiences:

Essentials:

• Knowledge of external Information Security Standards, such as ISO 27001, NIST 800, or understanding of a formalised risk process
• Understanding of cyber security risk management
• Broad experience in risk management and the application of risk management methodologies

Desirable:

• Established experience of operating at a senior level across a large, complex organisations
• Proven experience in a Cyber Security and / or personnel security role supporting projects / businesses
• In-depth knowledge of risk and effective risk mitigations strategic and techniques

Benefits:

You’ll receive benefits including a competitive pension scheme, enhanced annual leave allowance and a Company contributed Share Incentive Plan. You’ll also have access to additional benefits such as flexible working, an employee assistance programme, Cycle2work and employee discounts – you may also be eligible for an annual incentive.

The Air Cyber team:

As Head of Cyber Security Risk, you will be supporting the Head of Cyber and Information Security by building relationships with key stakeholders.

You will also oversee the safeguarding of information through supporting business change by building relationships with and between senior strategists, planners, designers and operational business partners.

As part of our Air team, you could be working at the edge of what is technologically possible, shaping the future to ensure our customers are ready to face challenges we cannot even imagine today. You could be developing and evolving the technologies that will defend the UK for generations to come and supporting our customers around the globe.

This role will provide you with the opportunity to gain relevant external training within Cyber security.

You will be also expose to the wider business and offered support for career development.

Why BAE Systems?

This is a place where you’ll be able to make a real difference. You’ll be part of an inclusive culture that values diversity, rewards integrity, and merit, and where you’ll be empowered to fulfil your potential. We welcome candidates from all backgrounds and particularly from sections of the community who are currently underrepresented within our industry, including women, ethnic minorities, people with disabilities and LGBTQ+ individuals. We also want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments.”

Please be aware that many roles working for BAE Systems will be subject to both security and export control restrictions. These restrictions mean that factors including your nationality, any previous nationalities you have held, and your place of birth may limit those roles you can perform for the organisation.