Building a risk-based set of cyber security requirements for a system or sub system, providing technical guidance and support for all aspects of cyber security and resilience.     

Conducting cyber security analysis work, developing threat taxonomies, security architectures, security baselines and risk mitigations

Plan appropriate testing approaches (e.g., physical/virtual/real-world) and justify them according to the different risk profiles.

Production of security artefacts such as risk registers, security assurance cases, plans and schedules.  Provide security input into related engineering documentation.

Adopt a pragmatic approach to changing customer requirements and priorities, reporting on the impact and suggesting appropriate aspects to de-scope.

Embrace emerging technology and language trends, evaluating beneficial emerging tools and championing their adoption and rollout.