Aerospace Cybersecurity Technical Lead

Expleo is a trusted partner for end-to-end, integrated engineering, quality services, and management consulting for digital transformation. We help businesses harness unrelenting technological change to deliver innovations that provide a competitive advantage and improve everyday life worldwide.
As part of the Expleo Digital and Emerging Technology (DET) team, you will report to the Head of Cybersecurity and join our established Cybersecurity Practice. We seek a highly experienced Aerospace Cybersecurity Technical Lead to support our strategic aerospace engagements and deliver cybersecurity engineering and assurance support to our client base.
This role will lead the technical delivery of cybersecurity artefacts aligned to EASA, UK CAA and associated airworthiness regulations. You will support developing and refining our client's Airworthiness Security Process (AWSP) and oversee the creation of core artefacts to support certification.
This client-facing role ideally suits someone with deep experience in aerospace system security, airworthiness security assurance, and regulatory alignment. You will be a trusted advisor to engineering teams and Expleo cybersecurity consultants, ensuring best-practice alignment, efficient delivery, and high-quality outputs across the certification lifecycle.

• Act as the technical lead for cybersecurity delivery to aerospace clients, ensuring alignment with the development roadmap and certification programme.
• Provide subject matter expertise on airworthiness security, system security engineering, and certification artefact production aligned to EASA and UK CAA expectations.
• Lead the development and review of cybersecurity documentation, including the PSecAC (Airworthiness Security Process Plan), PASRA (Preliminary Aircraft Security Risk Assessment), ASAM (Aircraft Security Architecture Model), and Security Verification Methods.
• Provide input into the AWSP frameworks, including the tailoring of compliance checklists, activity outcomes, and document templates.
• Ensure traceability between security risk assessments, controls, and compliance objectives across the aircraft systems and software architecture.
• Coordinate the development of cybersecurity methods and processes, contributing to their alignment with recognised standards.
• Engage with DAG's internal stakeholders, including engineering, safety, and systems integration teams, to embed cybersecurity into the design and certification lifecycle.
• Act as the primary technical interface for cybersecurity between Expleo and clients, supporting queries, reviews, and audits.
• Support internal QA and delivery governance for all security engineering artefacts, ensuring consistency, rigour, and traceability to certification requirements.
• Provide mentoring and support to Expleo consultants embedded in the client workstreams, sharing knowledge and building internal aerospace security capability.

• A degree (or equivalent experience) in Aerospace Engineering, Systems Engineering, Cybersecurity, or a related technical discipline.
• Recognised cybersecurity certifications (e.g., CISSP, CISM, GICSP, CCSK) and/or relevant systems engineering accreditations (INCOSE ASEP/CSEP).
• Formal training or applied experience with aviation cybersecurity standards such as ED-202A/DO-326A, DO-355A, ED-203A, DO-356A.
• Understanding of EASA and UK CAA certification frameworks.
• Familiarity with MBSE tools and model-based security approaches, ideally including experience with Capella, MagicDraw, or SysML.
• Experience working within Design Organisations (DOA) or with organisations under delegated regulatory oversight.

JBRP1_UKTJ