FCAS Security - Lead for Policy, Assurance and Compliance

Job Description - FCAS Security - Lead for Policy, Assurance and Compliance (00127997)

FCAS Security - Lead for Policy, Assurance and Compliance - 00127997

Job title: Security Professional – Policy, Assurance and Compliance

Location: Warton. We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role.

What you’ll be doing:

• Provide expert advice on developing, reviewing and updating security policies, standards, procedures and guidelines
• Policies focus on data protection (e.g., MoD and HMG Standards, GDPR, UK Data Protection Act), IT security (e.g., access controls, network security, system hardening) and physical and personnel security (e.g., access control, surveillance, culture and awareness, environmental security, personnel vetting, security clearance management and insider threat mitigation)
• Ensure alignment with business objectives, legal requirements, industry best practices (e.g., MoD Standards, ISO 27001, NIST) and contractual obligations and emerging security threats
• Plan, conduct and manage internal security compliance audits and assessments, providing advice on adherence to policies and standards and performing assurance activities to validate their effectiveness
• Identify and report on non-compliance and advise on remediation strategies, including providing assurance that remediation actions are effectively implemented
• Serve as a subject matter expert on security policy compliance, assurance and best practice, providing guidance and support to internal and external stakeholders
• Stay informed about evolving data protection laws, security regulations and standards, providing advice to ensure BAE Systems FCAS's policies and practices remain compliant and providing assurance that changes are implemented correctly and effectively
• Collaborate with MOD, industry, and internal stakeholders to enhance security and risk management by developing effective treatment plans, improving threat awareness, and implementing KPIs to monitor compliance and assurance activities

Your skills and experiences:

• Stakeholder management skills and experience of engagement on complex security issues with HMG partners
• Ability to manage conflicting priorities and emerging requirements to understand implications and consequences across complex programmes
• Experience in strategic thinking, problem solving and judgement
• Experience in delivering complex programme needs that require diplomacy and resilience
• Demonstrated experience of shaping policy and procedures. Good understanding of risk management methodologies

As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive.

FCAS Security Team

Reporting to the FCAS Head of Integration and Delivery, the Senior Professional for Policy, Assurance and Compliance provides crucial advice to BAE Systems FCAS on maintaining robust adherence to security policies and providing assurance of their effectiveness.

By joining our FCAS Security team, you will play a vital role in safeguarding BAE Systems’ people, information, infrastructure, and asset.

Why BAE Systems?

This is a place where you’ll be able to make a real difference. You’ll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you’ll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments.

Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks.

Closing Date: 8 th July 2025

We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.