Principal Engineer - Cyber Security

Principal Engineer - Cyber Security

Location: Frimley, Bristol, Weymouth, Portsmouth, Coventry. Hybrid and flexible working arrangements available; speak to recruiter about options.

Salary: Up to £61,500 depending on skills and experience.

• Define and implement risk‑based cybersecurity requirements for systems and subsystems, providing technical expertise and guidance across all aspects of cyber security and resilience.
• Conduct in‑depth cybersecurity analysis, including development of threat taxonomies, security architectures, security baselines, and risk mitigation strategies.
• Develop and execute cybersecurity test plans and schedules, carrying out both informal and formal security testing activities.
• Support engineering lifecycle reviews and design assurance processes to ensure security is embedded throughout system development.
• Produce and maintain key security artefacts, including risk registers, security assurance cases, plans, and schedules, while contributing security input to broader engineering documentation.

• Degree in a relevant STEM subject or recognised industry security qualifications (e.g., CCP, CISSP).
• Proven experience assessing and managing risk in line with industry good practice (NIST, ISO 27001).
• Significant experience using security baselines, mitigations and controls.
• Considerable familiarity with a life‑cycle phased approach.

• Experience in product security activities in a highly regulated environment.
• Operational Technologies / Industrial Control Systems experience.

Competitive pension scheme, employee share plans, extensive range of flexible discounted health, wellbeing and lifestyle benefits, green car scheme, private health plans, shopping discounts and potential annual incentive.

The team designs, builds, integrates and provides through‑life support to all submarine platforms in the Royal Naval fleet. You will ensure that submarine systems and products are developed to support the delivery of an appropriately secure and resilient product. You will identify, analyse, evaluate and manage information security risks associated with the products used on‑board the submarine and provide advice on the causes, likelihood and potential operational impacts of identified risks.

Relocation support packages are available for all submarine roles, subject to eligibility criteria.

BAE Systems is an inclusive culture that values diversity of thought, rewards integrity and merit, and empowers you to fulfil your potential. We welcome people from all backgrounds and aim to make our recruitment processes as inclusive as possible. If you have a disability or health condition that may affect your performance in certain assessment types, speak to your recruiter about potential reasonable adjustments.

Many roles at BAE Systems are subject to security and export control restrictions. Applicants must at least achieve Baseline Personnel Security Standard, and many roles require higher levels of national security vetting, typically requiring 5‑10 years of continuous UK residency.

Closing Date: 20th February 2026

We reserve the right to close this vacancy early if we receive a sufficient number of applications. If interested, please submit your application as early as possible.

Salary: Negotiable.