Crypto Network Specialist

Bristol

Join our forward-thinking IM Networks team as a Crypto Network Specialist. You'll own our cryptographic estate and processes while playing an active, hands‑on role in the Network Security team. Think 70‑80% crypto governance/operations and 20‑30% network/security operations. You'll help us deliver secure, resilient connectivity across a multi‑national environment.

Salary: Up to £60,000 depending on experience

Dynamic (hybrid) working: 2‑3 days per week on‑site depending on business need. Some shift working may be required.

Security Clearance: DV, but you are not required to hold DV currently.

Nationality: British

Restrictions and/or limitations relating to nationality and/or rights to work may apply. After offer stage, all successful candidates will undergo HMG Basic Personnel Security Standard checks (BPSS) that are managed by the MBDA Personnel Security Team. If the applicant does not have SC, an SC application will follow on from a successful BPSS clearance, followed by a DV application.

• Company bonus: Up to £2,500 (based on company performance and will vary year to year)
• Pension: maximum total (employer and employee) contribution of up to 14%
• Overtime: opportunity for paid overtime
• Flexi Leave: Up to 15 additional days
• Flexible working: We welcome applicants who are looking for flexible working arrangements
• Enhanced parental leave: offers up to 26 weeks for maternity, adoption and shared parental leave -enhancements are available for paternity leave, neonatal leave and fertility testing and treatments
• Facilities: Fantastic site facilities including subsidised meals, free car parking and much more

Join our forward-thinking IM Networks team as a Cryptographic Network Specialist, where you will play a key role in our Network Security strategy and management. You will be responsible for:

• Managing the Crypto Network processes including ordering, Key Material Edition validity, and equipment/KM deliveries.
• Ensuring Crypto Management Plans are completed and submitted to the relevant authorities in a timely manner.
• Ensuring that mandated checks on cryptographic devices and associated items are performed and documented to agreed standards.
• Working with our Crypto custodians to ensure accurate transfer of information and maintaining records.
• Coordinate crypto change windows (key loads/rollovers), support incident response related to crypto assets, and drive continuous improvement of crypto processes.
• Ensure that Key Material is ordered from NCSC/MoD and delivered/installed in a timely manner, avoiding any lapse of service (or derogation requests).
• Regular status review calls with our Crypto stakeholders (internal and external).
• As the Crypto subject matter expert, the CNS will perform the CNA role for IM Networks.

• Manage our internet domain registrations (renewals, new registrations, DNS hygiene) and coordinate with partners to prevent lapses.
• Contribute to runbooks, design docs, standards, and audit artefacts, promote clear documentation and knowledge transfer across the team.
• Support the Network Security Manager with day‑to‑day shift management of Network Security engineers.
• Coordinate Network Equipment orders, tracking from purchase requisition through to equipment delivery.

You will report to the Network Operations Manager and will support us with implementing changes securely, identifying vulnerabilities, managing incidents and ensuring compliance with our accreditation requirements.

This is a dynamic opportunity to contribute to the IM Networks team, solving complex challenges and having a direct impact on the overall resilience of our Network Security environment. If you are passionate about Network Security, and Cryptographic processes specifically, this role could be the perfect fit for you.

• Solid understanding of cryptographic equipment and management processes, including key lifecycle, custody, evidence, and compliance.
• Self‑motivated, ambitious and tenacious, with the ability to work under pressure.
• A strong, analytical, mindset.
• A methodical and structured approach to document management.
• Strong IPv4 fundamentals: subnetting, routing, ACLs, NAT, troubleshooting (packet flow, TCP/IP, MTU/MSS, etc.).
• Strong understanding of common enterprise protocols (OSPF/BGP, HSRP/VRRP, 802.1Q, Port‑Channels).
• Comfortable working with Microsoft Office, Windows Server/AD, Linux, and VMware vSphere in support of network/security services.
• Familiarity with monitoring tools (PRTG, Nagios) and using telemetry to inform troubleshooting.

• Line Management experience.
• IPv6, multicast, and advanced QoS exposure.
• Cisco ISE (NAC/SGT), Cisco DNA Centre/SDA, or Cisco ACI familiarity.
• Automation/scripting (Ansible, Python) for repeatable changes and evidence collection.
• Load balancing (e.g. F5), secure email/web gateways, or SD‑WAN exposure.
• Certifications: CCNA/CCNP (Enterprise or Security), PCNSA/PCNSE, Check Point CCSA/CCSE, VMware VCP, Linux+ / RHCSA (or equivalent experience).
• Practical experience with Cisco Catalyst Center/Nexus (L2/L3).
• Exposure to next‑gen firewalls (e.g., Palo Alto/Cisco/Check Point) and secure proxies (e.g., Broadcom/Blue Coat), including change management and policy hygiene.

MBDA is a leading defence organisation. We are proud of the role we play in supporting the Armed Forces who protect our nations. We partner with governments to work together towards a common goal, defending our freedom.

We are proud of our employee‑led networks, examples include: Gender Equality, Pride, Menopause Matters, Parents and Carers, Armed Forces, Ethnic Diversity, Neurodiversity, Disability and more.

We recognise that everyone is unique, and we encourage you to speak to us should you require any advice, support or adjustments throughout our recruitment process.