×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Product Cyber Resilience Manager

Job in City of Edinburgh, Edinburgh, City of Edinburgh Area, EH1, Scotland, UK
Listing for: Leonardo
Full Time position
Listed on 2026-05-01
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Salary/Wage Range or Industry Benchmark: 60000 - 80000 GBP Yearly GBP 60000.00 80000.00 YEAR
Job Description & How to Apply Below
Location: City of Edinburgh

Your impact

Ready to make your mark on next generation products and help define the resilience of tomorrow’s defence technology?

Job Description

As a Product Cyber Resilience Manager within our Radar and Advanced Targeting (RATs) business, you’ll join a multi‑discipline team at the forefront of innovation and play a pivotal role in protecting some of the UK’s most advanced systems. You’ll shape the product security strategy from concept to delivery and champion strengthening product integrity and support exciting technical challenges, ensuring a strong security culture across the business.

As a Product Cyber Resilience Manager, you will

  • Undertake the production of Security Management Plans, work package descriptions and cost estimates in support of product bids, services and proposals.
  • Review and provide guidance of security risk assessments, risk mitigation plans, mitigation gap analysis and preparation of security management documentation for system accreditation, such as solution hardening guidance and security operating procedures.
  • Define product security requirements, advise development teams on suitable implementation standards and techniques and oversee product development activities.
  • Liaise with Security Accreditors and Security Assurance Coordinators in support of security accreditation.
  • Participate in internal and external discipline working groups and with academic partners covering Product Cyber Resilience and Product Security for various established and emerging standards.
  • Contribute to continual improvement of the engineering capability.

You will be responsible for the management of Product Security Risk of all the product families within your sector. You will be accountable to the respective product family System Design Authority (the Risk Owner), providing subject‑matter advice to the Integrated Product Team, whilst collaborating with your fellow Product Cyber Resilience Managers (PCRMs) across the Electronics Business Unit. The role involves conducting risk assessments, developing and implementing product security strategies and collaborating with cross‑functional teams, including Leonardo’s Cyber Security Business Unit, to embed product and cyber security best practices throughout the product development lifecycle.

You will be responsible for determining product cyber resilience objectives through security risk management techniques in relation to the Integrated Sensing products and then work with the engineering teams to achieve those objectives through the architecture and design of the solution. You’ll also support the product assurance activities to verify compliance with those objectives and the transition to operations and ongoing through‑life support.

What You’ll Bring
  • Experience with product security assessment methods or security risk management systems for complex products based on a recognised framework in a highly regulated industry such as aerospace, nuclear, automotive, rail or oil & gas.
  • Practical experience of the System Development Life Cycle, Software Development Life Cycle, V‑Models and Agile frameworks.
  • Experience in managing product information security, including risk assessment, threat modelling, vulnerability management, and incident response.
  • Strong knowledge of cybersecurity standards and best practices, such as ISO 27001, NIST Cybersecurity Framework, and knowledge of UK/NATO Information Assurance/Accreditation frameworks; familiarity with the application of cyber‑resilience controls to embedded systems.
  • Experience with cybersecurity tools and technologies, such as SIEM, IDS/IPS, DLP, and endpoint protection.
  • Proficiency in cybersecurity frameworks, such as MITRE ATT&CK and the Cybersecurity Capability Maturity Model (CMMC).
  • Certifications such as CISSP, CISM, or CEH are a plus.

This is not an exhaustive list, and we are keen to hear from you even if you might not have experience in all the above. The most important skill is a good attitude and willingness to learn.

Security Clearance

This role is subject to pre‑employment screening in line with the UK Government’s Baseline Personnel Security Standard (BPSS). An additional range of Personnel Security Controls…

Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search