Evolution Jobs

Cyber Security Design Lead

Cyber Security Design Lead

Real Time Recruitment Solutions https://www.rtrs.co.uk

Position – Cyber Security Design Lead
Type – Contract
Location – Devonport, Plymouth / Remote working
Hours – Circa 26 hours per week (part time) but, will be going to a full time position
Duration – 6 Months +
Determination – Inside IR35
Rate – Circa £60 per hour Umbrella Company (Negotiable DOE)
Security – UK SC Security Clearance Required
Start Date – ASAP ?
Industry – Defence / Nuclear / MOD / Engineering


The purpose of the Cyber Security Design Lead post is:

To lead the MIP Business Unit on all issues concerning the development of cyber security infrastructure/engineering systems and associated design requirements, through design, construction, commissioning and operations, and the integration into wider DRDL security plans.

The Cyber Security Design Lead post operates as part of the Major Infrastructure Projects Business Unit.

Principal Tasks and Responsibilities;

Set the standard, provide oversight and support the project teams in the design of their cyber security infrastructure.

    Provide Subject Matter Expert advice in relation to cyber security of control and instrumentation systems.
    Advise on and contribute to design and technical governance management process in relation to cyber security methodologies/requirements eg. standards    
    Ensure that the design documentation covers the scope of operations and is produced to agreed standards, schedule and budget. 
    Plan for effective project implementation ensuring compliance with all relevant company/project arrangements, including for example BIM.   
    Ensuring effective Quality Management Arrangements, operate and deliver through compliance with Babcock’s Business Management System and Design & Safety Manual.
    Ensure that the processes and activities being managed are appropriately documented with appropriate records maintained and configuration and quality controls applied.    
    Ensure that staff and contractors are familiar with the hazards and risks (Health, Safety & Environmental) associated with the work undertaken by the delegated engineering team through effective management and communication of the Risk Assessment. 

    For the principal tasks and responsibilities identified in Section 4 to be carried out and discharged effectively, it will be necessary to liaise with several individuals or groups, these include but are not limited to: 

    Project Design Managers (within MIP) – to ensure that delivery of the cyber security design packages interface with the other discipline packages to resolve conflicts / clashes.
    Operations & Integration Lead – communication of operational capabilities for systems to ensure that the overall operational concept meets the high level capability requirements of the Facility.
    Safety Engineers – to address any cyber security aspects relevant to safety, including the facility emergency planning arrangements. 
    Project / Package Manager – to communicate on project deliverables to scope, schedule and cost. Raise any technical issues that may have an effect on overall project delivery.
    User Acceptance Group (UAG) – demonstration that the designed systems will meet the functional User Requirements.     
    Design Authority (DA) – to advise on technical governance aspects of deliverables to ensure that quality is of required standard.    
    Engineering Services Technical Authority (ESTA) – to attain information on current systems, learning from experience, dockyard best practice etc.       Ministry of Defence (MoD) and associated delivery teams to ensure that security design is cognisant of wider MoD regulation/policy requirements. 
    This includes a number of Naval Base and DSyR.

    Principal Reference Documents;

    • Corporate Business Management System (BMS) (Agility)
    • SBU(D)-POL-002: Design & Technical Work Output review & approval Policy, Process Overview & Delegation of Authority
    • JSP 628 Security Regulation of the Defence Nuclear Enterprise and associated DSTAIG’s
    • National Cyber Security Centre Secure Design Principles
    • JSP 440 Defence Manual of Security
    • HMG Security Policy Framework
    • SI(D)-MAN-012: MIP Design & Safety Manual
    • SI(D)-MAN-004: MIP Technical Governance Manual
    • MIP Requirements and Acceptance Management Manual (RAMM)
    • Project Engineering Management Plans
    Qualifications and Experience Requirements;
    A degree or equivalent qualification in an appropriate cyber security discipline, computer science, or a related field.
    Holds National Cyber Security Centre Certified Cyber Professionals (CCP).
  1. Design of cyber security system design and security project integration
  2. Design of integrated security arrangements;
  3. Experience of substantiation of cyber security in C&I systems, security designs and development of supporting assessments/analyses including Nuclear Site Security Plans and Security Cases.
  4. Has demonstrable experience of cyber security in C&I systems   
  5. Experience;  
  6. The post holder must be able to demonstrate sound understanding of cyber security design and such practices as relevant to post and project requirements.
  7. In depth knowledge of cyber security in C&I systems, specification, requirements, commissioning and acting as the intelligent customer.
  8. Sound understanding of relevant codes, practices and standards, including NCSC, CPNI and SANS.
  9. Strong knowledge of cyber security assessments/analyses typical of cyber security development.
  10. Provide expert advice on security threats and appropriate mitigation methods.
  11. Relevant knowledge and skills required in the technical management of complex design development throughout the design lifecycle.
  12. Provide expert advice to the sub-contracted design houses to enable them to develop the design.
  13. Experience of working in BIM environments.
  14. Sound project specification, planning, project management and budgeting experience.
  15. Sound understanding of Company and departmental procedures relating to Design, Health & Safety (including Principal Designer responsibilities under CDM), Environmental and Quality requirements.
  16. Working knowledge of relevant engineering office computer applications.
  17. Experience of the design support to construction, operation, refit/repair of conventional and nuclear submarines and/or facilities.