WHO WE’RE LOOKING FOR

At Rolls-Royce we put safety first, do the right thing, keep it simple and make a difference. These principles form the behaviours that guide us and are an essential component of our assessment process. They are the fundamental qualities that we seek for all roles. For this role you will need to demonstrate understanding of the appliable health and safety standards and we are looking for someone who is/has:

• Good overall knowledge of information systems practices and applications. Thorough understanding of Rolls-Royce management processes and practical knowledge of the principles of information security
• Understanding of Cyber Security frameworks and benchmarks to which we have to demonstrate compliance to (for example ISO27000, NIST & CIS)
• Communicates well and has the skill to influence through persuasion in a formal context
• Broad knowledge of IT security demonstrated by attainment of appropriate qualifications
• Experience / awareness of cloud technologies and capabilities in an enterprise environment
• Willingness to learn and promote wider compliance requirements such as Product Safety, Data Privacy and Export Control

We are an equal opportunities employer. We’re committed to developing a diverse workforce and an inclusive working environment. We believe that people from different backgrounds and cultures give us different perspectives. And the more perspectives we have, the more successful we’ll be. By building a culture of respect and appreciation, we give everyone who works here the opportunity to realise their full potential.
We welcome applications from people with a refugee background.
You can learn more about our global Inclusion strategy at Our people | Rolls-Royce

WHAT YOU WILL BE DOING:

• Support the Head of Cyber Security Policy & Compliance in identifying and planning cyber security audits across the IT Function, within business areas, of our IT supply chain, and 3rd party suppliers into the business.
• Undertaking those audits and providing timely reports.
• Creating corrective action plans, in conjunction with the target system owner, in order to improve the cyber security posture of that system.
• Analysis of the audit output to identify trends to inform the improvement of policy, process, procedure or technology.
• Presenting findings to a wider audience including senior management.
• Undertaking other tasks to support the wider cyber security team, such as work on the cyber culture programme.
• Assist the wider team in developing and defining Information Security policies, standards, guidelines, and procedure to an agreed framework (ISO27000)

At Rolls-Royce we put safety first, do the right thing, keep it simple and make a difference. These principles form the behaviours that guide us and are an essential component of our assessment process. They are the fundamental qualities that we seek for all roles. For this role you will need to demonstrate understanding of the appliable health and safety standards and we are looking for someone who is/has:

• Good overall knowledge of information systems practices and applications. Thorough understanding of Rolls-Royce management processes and practical knowledge of the principles of information security
• Understanding of Cyber Security frameworks and benchmarks to which we have to demonstrate compliance to (for example ISO27000, NIST & CIS)
• Communicates well and has the skill to influence through persuasion in a formal context
• Broad knowledge of IT security demonstrated by attainment of appropriate qualifications
• Experience / awareness of cloud technologies and capabilities in an enterprise environment
• Willingness to learn and promote wider compliance requirements such as Product Safety, Data Privacy and Export Contro