My role is to lead the Cyber Defences and Information Assurance strategy, governance and policy for the business, which includes UK, Middle East and Australia.
The sheer scale of our organisation brings forward incredible opportunities and, of course, challenges. So don’t just think about the role you’re applying for, but where this could take you in years to come.
It’s also about what this Company does, that makes it a fantastic opportunity for Cyber Security professionals especially. Being part of defending the IT infrastructure of a Company that does everything from making fast jets and battleships to ventilators during the COVID-19 pandemic, means you’re doing something that really matters.
Time at BAE Systems: 22 years
I started as an apprentice in Marconi Electronic Systems as a Security Administrator, then moved into IT Security during the merger with BAE Systems a few years later. I then became IT Security Manager of our Maritime Services business for eight years supporting some large scale Maritime programmes.
In 2012, I moved into the Office of the Chief Information Officer when it was first formed as the Head of IT Security Compliance. I was responsible for driving an assurance regime focussing on a range of activities from assessing internal security controls to assuring our managed IT service provider.
My current role is to ensure the IT Security Operations function is ‘match fit’ to combat the external cyber risk and insider threat, and ensure the team have the necessary controls and processes in place.
BAE Systems is a huge organisation with a diverse workforce and culture, that brings so many opportunities, but also challenges to IT Security – that’s what makes it so exciting! You can tell by the amount of time I’ve been with the organisation, just over 22 years, that it keeps me engaged and excited to come to work. It is a great place with lots of opportunity for progression.
Position: Head of Information Risk Management & Assurance
Now, I manage a team providing a consistent Information Assurance Service across all the
The overall purpose of my role is to consistently comply with the BAE Systems Safety and Security Procedures, whilst endeavouring to deliver the service to BAE Systems.
Staying within the same team, I was then promoted to Information Security Specialist and had the opportunity to work on larger enterprise-level projects offering security advice and requirements for our networks.
In my current role within our Naval Ships business, I am more focused on incident management, offering security advice to programmes which encompasses supply chain security, workforce security and data security for our international partners and projects. This gives me an opportunity to engage with the business’ senior leadership to build on investigation processes, and advise them on technological solutions and the security implications around them.
BAE Systems is a very good company to work for, with a good work life balance. In my experience, it offers a varied scope of work and with the technology being some of the most advanced used in the modern world, anyone joining the Company would find themselves looking at interesting problems, which need innovative solutions so the business can operate and still be secure.
In past roles, I have supported BAE Systems from a managed service point of view covering various aspects, including network engineering, architecture and desktop support management. Having been here just over two years now, I would say that BAE Systems is a great place to work. I have a very busy and challenging role, but it’s also rewarding and exciting when we see what we’ve achieved in such a short period.
Andrew, Senior Threat Analyst