We are seeking an experienced Product Security Engineer to join a leading engineering and technology organisation supporting complex, mission-critical projects. This is an exciting opportunity to play a key role in embedding Secure by Design (SbD) principles throughout the product lifecycle, working closely with engineering, product development and quality teams.
This position offers exposure across the full product lifecycle, allowing you to influence security strategy from concept through to in-service support.
The Role
As a Product Security Engineer, you will be responsible for ensuring that security assurance activities and supporting artefacts are delivered in line with customer requirements. You will work across multiple projects, helping to minimise cyber vulnerabilities and reduce the risk of system misuse or exploitation.
Key Responsibilities
Day-to-Day Duties
* Conduct product and project security risk analysis.
* Develop and implement Product Security policies and processes.
* Ensure security deliverables are produced and maintained in accordance with customer requirements.
* Support bid activities by providing manpower estimates.
* Lead and chair internal and external security reviews and working groups.
* Collaborate with engineering and project teams to integrate Secure by Design principles throughout development.
Additional Responsibilities
* Provide wider support to the Supportability Engineering function as required.
* Maintain customer security artefacts throughout the product lifecycle.
Essential Skills & Experience
* Experience in project security planning and implementation, including familiarity with the NIST 800 series.
* Proven experience delivering security documentation using Secure by Design (SbD) principles.
* Knowledge of Security and Information Assurance frameworks, including CESG Good Practice Guides.
* Experience conducting security risk assessments using methodologies such as those published by the NCSC.
* Strong commitment to quality, cost and on-time delivery.
* Excellent communication and documentation skills.
* Ability to work independently while collaborating effectively within multidisciplinary teams.
* Proficient in Microsoft Office applications.
* Eligible to obtain SC Security Clearance.
Desirable Skills
* Risk Management.
* DevSecOps practices.
* Electromagnetic Compatibility (EMC).
* TEMPEST principles.
Desirable Background
* Experience within the defence sector, military, Ministry of Defence or a related environment.
* Familiarity with defence security standards and policies, including:
* Def Stan 05-138
* Def Stan 05-139
* JSP440
* Security Policy Framework (SPF)
What's on Offer
-Exposure across the full product lifecycle with excellent career development opportunities.
-Flexible working arrangements with core hours (37.5 hours).
-Paid overtime or time off in lieu.
- Generous holiday allowance including seasonal shutdown.
-Competitive pension scheme with employer contributions.
- Private healthcare access.
-Ongoing training and professional development.
-Salary sacrifice schemes for technology and cycling.
-Gym membership discounts and access to onsite facilities.
-Company-provided laptop, mobile phone and home office equipment.
-Relocation support available where applicable.
If you are passionate about product security and enjoy working on challenging projects in highly regulated environments, we would be keen to hear from you