Share this Job

Cyber Security Certification Specialist

Apply now »

Date: 12-Feb-2021

Location: Gatwick, GB

Company: Civil Aviation Authority

Salary: Up to £65k depending on experience

Contract type: Permanent


We are the UK's aviation regulator and recognised as a world leader in its field. Our activities are diverse, enabling the aviation industry to meet the highest safety standards, and we pride ourselves on our ability to adapt to the constantly evolving aviation environment.


The Role


This is an exciting role to join a team of technical cyber security specialists that support diverse and innovative certification and design activities for UK aviation and space sectors.


As a Cyber Security Certification Specialist, you will be responsible for establishing and delivering the UK’s ICAO State of Design and the CAA’s new UK Commercial Spaceflight cyber security responsibilities, in close collaboration with the broader State of Design and Commercial Spaceflight teams.


Reporting to the Head of Cyber Security Oversight, you will be accountable for the delivery of cyber security approvals on design and certification projects. This will be across many domains including those relating to commercial air transport, general aviation, unmanned air vehicles, space flight and innovation projects.


  • Support and deliver transitional activity for the establishment of the Space Regulation function.
  • Design the Space Regulation Licensing and Oversight process (application lifecycle) in respect of cyber security.
  • Establish and deliver the UK’s ICAO State of Design cyber security responsibilities.
  • Clarify, where necessary, existing cyber security requirements and contribute to the development of new ones to cover new technology, novel applications of existing technology, and novel proposals for compliance demonstration.
  • Determine compliance with cyber security requirements
  • Make recommendations for approval of aerospace products
  • Perform cyber security audits of the compliance and performance of approved Design Organisations in line with Performance Based Regulation (PBR) principles.
  • Ensure that all cyber security recommendations and decisions are proportionate to the needs and safety expectations of the sectors and are consistent with extant regulatory policy
  • Act as an SME for all CAA regulatory cyber security design and certification requests, working in close collaboration with all CAA capability
  • High levels of stakeholder liaison both within and outside the CAA, incorporating other regulatory bodies and industry groups
  • Liaison with other Government departments and agencies (DfT, MOD, National Cyber Security Centre, UKSA) to gather information and ensure coherence, co-ordination and collaboration in our cyber security certification approach.
  • Development and delivery of aerospace cyber security training and guidance as necessary.
  • Support effective contributions to national and international aerospace cyber policy development (both directly and indirectly). 


About You


  • Relevant degree or certification related to cyber certification, security by design or security architecture are highly desirable. (e.g. NCSC CCP IA Architect, CREST Registered Technical Security Architect, CISSP – ISSAP)
  • Experience in cyber security by design and/or security architecture as well as demonstrable experience or awareness of at least one of the following areas:

     > Cyber risk assessments

     > Secure software development

     > Communication and network security

     > Security assessment and testing

     > IOT security

     > Security operations and monitoring

     > Asset security


  • Aviation knowledge or experience is highly desirable including knowledge of relevant aviation cyber related regulation (EASA Basic Regulation (EC) 2018/1139, IR 2019/947, EASA Part 21, CS-25, Space Industry Act 2018).
  • Team worker with flexible and adaptable work ethos
  • Highly analytic and lateral thinker with an eye for detail;
  • Creative and innovative with a strong ability to problem solve
  • Strong verbal and written communication skills


What Can We Offer You?


If you are passionate about aerospace and cyber security this is a role where you can genuinely make a positive impact (both in the UK and internationally). You will be engaged in a wide range of existing, new and emerging aerospace cyber issues and will benefit from an organisation focused on your development and training in this exciting area.


Additional Information


Given the impact of Covid-19, it’s likely that you will work remotely to begin with as we plan for a return to work within the government guidelines.


Working With Us


We offer a range of fantastic benefits such as flexible working arrangements, free onsite gym at Gatwick, discounted gym membership for London, 28 days annual leave, additional 5 days leave purchase scheme, a generous pension scheme and much more!


Wherever possible, we offer flexible and variable working hours to help our people effectively manage all areas of their lives. We are an equal opportunity employer and actively encourage applications from candidates of all backgrounds.


As a member of the Disability Confident scheme, applicants who meet the minimum criteria for a role with us will be guaranteed an interview. We use fair and inclusive selection approaches to hire the best person for the job based on merit alone. If you require an adjustment for any reason, please let us know.



Closing Date: 26th February 2021

Interview Date: Early March 2021


Please note that due to the current Covid-19 situation, all interviews will be conducted online by video conference using Microsoft Teams.


Job Segment: Cyber Security, Law, Developer, Network Security, Security, Legal, Technology