Cyber Security Officer
Social network you want to login/join with:
Fantastic challenges. Amazing opportunities.
GKN Aerospace is reimagining air travel: going further, faster and greener! Fuelled by great people whose expertise and creativity set the standards in our industry, we’re inspired by the opportunities to innovate and break boundaries. We’re proud to play a part in protecting the world’s democracies. And we’re committed to putting sustainability at the centre of everything we do, opening up and protecting our planet. With over 16,000 employees across 33 manufacturing sites in 12 countries, we serve over 90% of the world’s aircraft and engine manufacturers and achieved sales of £3.35 bn in 2023. There are no limits to where you can take your career.
Job Summary
The role of Cyber Security Officer is responsible for interpreting regulatory and contractual requirements, mapping controls, assessing controls, and advising IT/OT and business teams on control implementation. The Cyber Security Officer is expected to support activities for security risk management, reporting, policy lifecycle, training and awareness, governance, risk, and compliance program delivery, and third-party risk management. This position will collaborate with stakeholders across various business departments such as IT, Legal and Compliance, and HR to ensure risks are managed effectively and efficiently in accordance with company policies and applicable requirements.
Job Responsibilities
Safety:
- Follow all HSE rules and regulations. Wear appropriate PPE as required.
Governance:
- Support the development, implementation, and maintenance of strong governance, risk, and compliance processes.
- Improve the security framework, standards, and internal controls.
- Report findings, track status, and ensure corrective actions are completed.
- Support operational reporting, management communications, and governance committees.
- Lead continuous improvement initiatives.
- Maintain relationships with auditors, regulators, and compliance partners.
Risk and Compliance:
- Support risk identification, assessment, response, mitigation, control monitoring, and reporting.
- Gather and evaluate information for auditors, regulators, and compliance partners.
- Develop and perform tests to evaluate control effectiveness.
- Review test findings, identify weaknesses, present results, and recommend remediations.
- Support issue management, risk acceptances, and corrective actions.
- Deliver high-quality reports and communicate effectively.
- Support workforce security activities including culture, awareness, and training.
- Assist in maintaining US Defence certification and accreditation.
- Coordinate and respond to alerts and directives (US-CERT / CISA), and submit incident reports.
- Coordinate incident response activities and liaise with security operations, regulators, and third parties.
- Complete supplier assurance questionnaires and conduct risk assessments.
GRC Systems Administration:
- Support operation and administration of GRC systems for Cyber Security and IT.
- Develop and configure GRC system services and improvements.
- Specialize in questionnaires, workflows, reports, and dashboards.
- Serve as a resource on GRC matters for Cyber Security, IT/OT, and business teams.
Job Qualifications
Required Qualifications:
- Bachelor’s Degree in a technology-related field or equivalent experience.
- 3+ years of experience focusing on security and compliance.
- Fluent in English (speaking and reading).
- US Citizen or Green Card Holder (due to security clearance requirements).
- Capable of obtaining and maintaining DoD SC Clearance (or higher).
Additional Qualifications:
- Experience with cybersecurity governance, risk, and compliance management.
- Experience writing policies, procedures, and controls based on standards/frameworks.
- Experience with UK HMG/MOD security requirements and accreditation.
- Knowledge of networking, system security, and risk management processes.
- Understanding of cyber threats and vulnerabilities.
- Ability to work in a highly regulated environment and handle ambiguity.
Preferred Qualifications:
- Experience coordinating third-party assessments.
- Experience with RMF for US DoD or risk management practices.
- Knowledge of aerospace regulations, export controls, and security standards like NIST, ISO, DISA STIG.
- Professional security certifications such as CISSP or CISM.
We offer fantastic challenges and opportunities. Join us to be part of an innovative organization committed to pushing industry boundaries, with excellent training and development prospects.
A Great Place to work needs a Great Way of Working
We welcome everyone to apply. We value diversity, inclusion, and belonging, fostering a culture where everyone feels empowered to contribute. We are committed to accessible recruitment and reasonable adjustments during the process.
We are the place where human dreams and endeavor shape the future of aerospace innovation and technology.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
