Information Security Lead

Job City:  Gloucester
Professional Area:  Security
Job Req ID:  120094


Location(s): UK, Europe & Africa : UK : Gloucester || UK, Europe & Africa : UK : Guildford 


BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.

This role is primarily focused on the operational security support to our classified networks, responsible for providing technical expertise and guidance, including strategic vision, whilst also part of the team providing best practice and frameworks for IT Services within the organisation.
You will have broad demonstrable knowledge and extensive technical experience across technologies / tools within the classified arena.

This role will cover operational security operations across the BAE Systems Applied Intelligence estate, to help secure the business by implementing Company and client security requirements relating to its people, infrastructure, information, and assets.


This role is based out of our Gloucester site, working 3 days in the office, 2 days remote so ideally you will reside close to this location


As lead you will

  • Actively lead in helping define security strategy for classified projects
  • Technical authority on a wide range of current IT Security controls and products for classified networks and activates
  • Primary SME for Information Security in respect to classified networks
  • Ownership of all security and service incidents through to resolution/remediation
  • Work with Information Security Operations Lead in resolving priority security and service incidents, were necessary.  



  • Significant experience of UK Government Security frameworks/regulations, such as:
  • Cabinet Office Security Policy Framework;
  • Joint Service Publication 440/441/490;
  • Information Assurance Standards;
  • Approved security products and build standards;
  • Cabinet Office Security Policy Framework;
  • Working knowledge and experience in developing and reporting performance and risk metrics (e.g., KPIs/KRIs – Status Reporting and Dashboard for senior management)
  • Working knowledge and experience in leading and performing data security, data privacy discussions, reviews, and IT/security audits
  • Data security or security architecture and engineering experience
  • Previous security experience with cloud security environments
  • Demonstrated ability to work within matrixed resources in a team environment. Possesses strong organisational, time management and diplomacy skills
  • Independent tasking and project completion with little supervision is a must
  • Excellent analytical and problem-solving skills as well as interpersonal skills to interact with users, team members and senior management
  • Progressive experience with increasing responsibilities within Information Security Dept. (e.g., Cyber SecOps, Security Architecture & Engineering, and/or Data Security/Forensic Analysis)



Desirable Qualifications:

  • Desirable certifications include recognised professional security qualification/membership such as CISSP or CISMP, CCSP or equivalent.
  • Experience in Government/List X and Commercial security;
  • Excellent communications & MS Office skills;
  • Ability to obtain Developed Vetting National Security Clearance;


Our ideal candidate

You will have deep expertise with real world of Security Operations issues gained from working with the balance of business system availability and ongoing security.

A thorough understanding of all layers of IT infrastructure and how security principles apply to them.

Significant experience working with ISMS.

Extensive demonstrable experience in the use of security toolsets used for vulnerability scanning and reporting, email security, cryptography, cloud security, identity and access management, end user behavioural analysis, statistical anomaly detection, security log collection, collation and analysis.

Working knowledge of the Cyber Kill Chain and Incident Response phases.
Ability to take a risk-based and pragmatic approach on operational activities to organise, prioritise and action team tasks through to a rapid conclusion.
Coaching others in security operations techniques.

  • Must be able to work on own initiative with minimum supervision;
  • Ability to communicate effectively across a variety of internal and external stakeholders;
  • Ability and presence to liaise effectively with national security agencies in the UK;
  • Where appropriate, provide advice and guidance on security matters to client projects and business stakeholders;
  • Develop and maintain key relationships with Business Division and Function managers to fully understand their operational drivers and requirements.


To be considered for this role you must be a UK National and eligible to obtain Security Clearance

Life at BAE Systems Digital Intelligence 

We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day.

By embracing technology, we can interact, collaborate and create together, even when we’re working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance well-being.

Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds – the best and brightest minds – can work together to achieve excellence and realise individual and organisational potential.

Division overview: Functions

At BAE Systems Digital Intelligence, we pride ourselves in being a leader in the cyber defence industry, and the business could not operate without all the dedicated work of our Functions teams. From Finance & Operations through Communications & Marketing, to HR and Site Operations and more, our Functions teams enable our divisions to implement ground-breaking digital transformations and crucial defence software.

As part of Functions, you will be supporting and partnering with our global business from the backline, being a strategic advisor within your specialist area, and ensuring the business runs smoothly and efficiently. We all have a role to play in defending our clients; and this is yours.


Job Title:  Information Security Lead

Job City:  Gloucester
Professional Area:  Security
Job Req ID:  120094