Location: Bristol Berkshire
Clearance Level Must Be Able to Obtain:
Ensure compliance with legal and customer security requirements. Daily responsibility for all Team Leidos operational security management activities across all service areas. Thorough understanding of security requirements. Experienced in delivering security solutions. Full understanding of UK HMG security policies and procedures. Full understanding of using security risk assessment methods to deliver fit for purpose, risk commensurate security controls and solutions.
Main Duties and Responsibilities:
The Security Operations Manager is specifically responsible for interpreting, implementing and monitoring security controls for the appropriate protection of government protectively marked assets held on the contractor's site, by:
a. liasing within Team Leidos and between the company and the DSO or MOD DE&S PSYA
b. advising management on the interpretation and implementation of contractual and, where appropriate, legislative security controls
c. preparing and implementing the Company Security Instructions and making sure that they are made available to, and understood by all appropriate employees, updating them as necessary
d. being readily available for consultation and giving security advice to the contractor's management team, employees, and other Team Leidos Subcontractors in all areas of security – information, physical and personnel.
e. co-ordinating within Team Leidos the planning of appropriate security controls for a new contract or for the alteration of buildings where protectively marked assets are to be handled, stored or produced.
f. arranging for appropriate security education and awareness training across Team Leidos, particularly for new, young or inexperienced employees, to ensure that they understand the scale, nature of the threats and protective security controls required
g. ensuring that any breach of security is immediately reported to the respective Contracting Authority and, if appropriate the regional police and that the circumstances are investigated, the outcome is recorded in the company breaches register and a full report and impact analysis is passed to the Contracting Authority
h. ensuring that any security incident involving MOD owned, processed or generated information is immediately reported to the MOD Defence Industry Warning, Advice and Reporting Point (WARP) in the Joint Security Co-ordination Centre (JSyCC). This will enable the JSyCC to co-ordinate a formal information security reporting process to assess any associated risks, progress incident impact, co-ordinate appropriate security enquiries and provide specific information security advice to the MoD‟s Chief Information Officer (CIO), Departmental Security Officer (DSO) and, where appropriate, the Security Operations Manager, Board level contact and other senior company Executives with an evolving picture of MoD-Defence Industry information assurance (IA) and data integrity.
i. consult widely within Team Leidos when considering security controls for a new contract or alterations to buildings requiring the co-operation and resources of several departments. Failure to discuss requirements for such controls well in advance may subsequently result in hurried and expensive remedial controls.
j. overall familiarity with UK Government Security Policy Framework including: Governance, Physical, Information and Personnel Security
k. Liaising and working with HMG and MOD security organsiations including but not limited to: DE&S PSyA for physical and personnel security; Defence Assurance & Information Security (DAIS) for information security and accreditation of IT systems; DBS NSV for vetting and personnel security requirements; MOD Police HQ/local offices and MOD Guard Service.
l. full understanding of using a range of security risk assessment methods and tools to deliver fit for purpose, risk commensurate security controls and solutions.
m. thorough grounding in, and understanding of, security systems (eg CCTV, IDS, PIDS, AACS) applicable to the protection of buildings
n. IT proficient in common IT packages with skills in information security risk management – e.g. Certificate of Information Systems Security Professionals (CISSP) and HMG CESG IA Portfolio Standards.
Key Result Areas:
Maintain and protect the integrity, availability and confidentiality of customer assets by providing expert security leadership, direction, supervision and oversight.
Provide appropriate and risk commensurate physical security controls and measures, security standards and processes and procedural security measures for all facilities and buildings, incorporating customer and legal/statutory codes and standards.
Ensure that business is undertaken securely within agreed security risk tolerances by maintaining security risk measurement, assessment, review and reporting processes.
Ensure that delivery of security measures is compliant, adequate and risk commensurate; and in line with customer/regulatory requirements by QA activity and KPI reporting.
Ensure that the response to security events and incidents are managed appropriately, reported correctly and impacts reduced/mitigated by the use of effective reporting, investigation and response protocols.
Provide effective and coordinated security management enabled by close and direct liaison with Team Leidos operations senior leaders, partner organisations, the customer and other external stakeholders.
Execute, manage, and direct investigations into security events/incidents.
Degree level with 10+ years of experience and knowledge commensurate with security risk management. Experience as an ex-military or ex-MOD security manager preferred, and or experience with Corporate security management experiences.
Leidos is an applied solutions company focused on markets that are seeing converging business and technological trends, and address basic, enduring human needs: defense and national security, health and life sciences, and energy, engineering and infrastructure. The Company's approximately 20,000 employees serve customers in the U.S. Department of Defense, the intelligence community, the U.S. Department of Homeland Security, other U.S. Government civil agencies and commercial health and engineering markets. Qualified women, minorities, individuals with disabilities and protected veterans are encouraged to apply. Leidos is an Equal Opportunity Employer.