Senior Security & Compliance Project Manager driving key initiatives across Criteo. Expertise in compliance standards and managing risks within security frameworks.
About the role
- Lead Product Security Engineer responsible for delivery of product security in defense aviation. Develop security protocols while managing a team in the Electronic Warfare domain.
Responsibilities
- Develop and manage a team of security engineers, whilst being accountable for the delivery of security services within product teams.
- Define product security requirements, advising development teams on suitable implementation standards and techniques and overseeing product development activities.
- Develop and manage security protocols, tools, and processes that keep our technologies ahead of emerging threats.
- Create and manage key artefacts such as Security Management Plans, Risk Assessments, and Remediation Action Plans.
- Drive Security Assurance through the full product lifecycle, ensuring every design is robust, compliant, and resilient.
- Provide independent Information Assurance (IA) reviews and risk assessments on a variety of complex, high-impact projects.
- Contribute to Leonardo’s UK-wide Security and IA community — shaping best practice and influencing security strategy.
Requirements
- Practical experience of ISO27001 /27004/27005 and NIST Risk Management Framework (RMF).
- Experience of owning a security risk management system for highly regulated products based on recognised frameworks such as aerospace, nuclear, automotive, rail or oil and gas.
- Good understanding and appreciation of the Engineering development lifecycles and how the Product Security specialism aligns.
- Ability to interpret Penetration Test Reports and write Remediation Action Plans.
- An appreciation of the wider UK Government Assurance Processes (such as the legacy JSP 604 Assurance or the CAF GovAssure processes).
Benefits
- Time to Recharge: Enjoy generous leave with the opportunity to accrue up to 12 additional flexi-days each year.
- Secure your Future: Benefit from our award-winning pension scheme with up to 15% employer contribution.
- Your Wellbeing Matters: Free access to mental health support, financial advice, and employee-led networks championing inclusion and diversity (Enable, Pride, Equalise, Armed Forces, Carers, Wellbeing and Ethnicity).
- Rewarding Performance: All employees at management level and below are eligible for our bonus scheme.
- Never Stop Learning: Free access to 4,000+ online courses via Coursera and LinkedIn Learning.
- Refer a friend: Receive a financial reward through our referral programme.
- Tailored Perks: Spend up to £500 annually on flexible benefits including private healthcare, dental, family cover, tech & lifestyle discounts, gym memberships and more.
- Flexible working: Flexible hours with hybrid working options.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Location requirements
Site Security Officer supporting security operations at Saab Surveillance in Sweden. Managing risk analyses, security at events, and providing expertise on security projects.
Information Security Specialist responsible for protecting systems and data at Ituran. Collaborating with teams and ensuring compliance with security measures and regulations.
Senior Cloud & Information Security Engineer responsible for EC Markets' technical security posture. Designing and operating secure systems while ensuring regulatory compliance and cloud infrastructure security.
Product Security Engineer focusing on ensuring software resilience against attacks during development phases. Collaborating with DevOps and Engineering teams to enhance security protocols.
IT audit specialist responsible for executing technology and cybersecurity audits at an international bank in Zurich. Collaborating with top management to enhance internal controls and efficiencies.
IT Systemadministrator focusing on Sophos Security at bauXpert GmbH. Responsible for IT infrastructure management and support tasks in a hybrid environment.
Cyber Security Specialist designing and implementing security controls for Squarcle clients. Supporting compliance with regulations and best practices in a digital environment.
Head of Security at Street Group managing organizational security and working with IT and Engineering teams. Leading security posture and compliance while mitigating emerging threat vectors.
Cybersecurity Data Analyst Internship at Schneider Electric. Contributing to real - world projects in a dynamic team environment.