Cyber Security Design Lead
Position – Cyber Security Design Lead
Type – Contract
Location – Devonport, Plymouth / Remote working
Hours – Circa 26 hours per week (part time) but, will be going to a full time position
Duration – 6 Months +
Determination – Inside IR35
Rate – Circa £60 per hour Umbrella Company (Negotiable DOE)
Security – UK SC Security Clearance Required
Start Date – ASAP ?
Industry – Defence / Nuclear / MOD / Engineering
The purpose of the Cyber Security Design Lead post is:
To lead the MIP Business Unit on all issues concerning the development of cyber security infrastructure/engineering systems and associated design requirements, through design, construction, commissioning and operations, and the integration into wider DRDL security plans.
The Cyber Security Design Lead post operates as part of the Major Infrastructure Projects Business Unit.
Principal Tasks and Responsibilities;
Set the standard, provide oversight and support the project teams in the design of their cyber security infrastructure.
Provide Subject Matter Expert advice in relation to cyber security of control and instrumentation systems.
Advise on and contribute to design and technical governance management process in relation to cyber security methodologies/requirements eg. standards
Ensure that the design documentation covers the scope of operations and is produced to agreed standards, schedule and budget.
Plan for effective project implementation ensuring compliance with all relevant company/project arrangements, including for example BIM.
Ensuring effective Quality Management Arrangements, operate and deliver through compliance with Babcock’s Business Management System and Design & Safety Manual.
Ensure that the processes and activities being managed are appropriately documented with appropriate records maintained and configuration and quality controls applied.
Ensure that staff and contractors are familiar with the hazards and risks (Health, Safety & Environmental) associated with the work undertaken by the delegated engineering team through effective management and communication of the Risk Assessment.
For the principal tasks and responsibilities identified in Section 4 to be carried out and discharged effectively, it will be necessary to liaise with several individuals or groups, these include but are not limited to:
Project Design Managers (within MIP) – to ensure that delivery of the cyber security design packages interface with the other discipline packages to resolve conflicts / clashes.
Operations & Integration Lead – communication of operational capabilities for systems to ensure that the overall operational concept meets the high level capability requirements of the Facility.
Safety Engineers – to address any cyber security aspects relevant to safety, including the facility emergency planning arrangements.
Project / Package Manager – to communicate on project deliverables to scope, schedule and cost. Raise any technical issues that may have an effect on overall project delivery.
User Acceptance Group (UAG) – demonstration that the designed systems will meet the functional User Requirements.
Design Authority (DA) – to advise on technical governance aspects of deliverables to ensure that quality is of required standard.
Engineering Services Technical Authority (ESTA) – to attain information on current systems, learning from experience, dockyard best practice etc. Ministry of Defence (MoD) and associated delivery teams to ensure that security design is cognisant of wider MoD regulation/policy requirements.
This includes a number of Naval Base and DSyR.
Principal Reference Documents;
- Corporate Business Management System (BMS) (Agility)
- SBU(D)-POL-002: Design & Technical Work Output review & approval Policy, Process Overview & Delegation of Authority
- JSP 628 Security Regulation of the Defence Nuclear Enterprise and associated DSTAIG’s
- National Cyber Security Centre Secure Design Principles
- JSP 440 Defence Manual of Security
- HMG Security Policy Framework
- SI(D)-MAN-012: MIP Design & Safety Manual
- SI(D)-MAN-004: MIP Technical Governance Manual
- MIP Requirements and Acceptance Management Manual (RAMM)
- Project Engineering Management Plans