QinetiQ – SME Cyber Security Compliance Placement

Currently recruiting

Project title: QinetiQ - SME Cyber Security Compliance Placement

Application deadline: 27th May 2026

Date of placement: Flexible from June 2026 onwards

Sector: Private sector

Research area: Global Order & Security Public Policy & Governance

Placement project:

The student will join QinetiQʼs consulting team and undertake a research project that will explore the implementation, compliance and impact of cyber security standards and regulations within SMEs. In turn, this will help us better support our supply chain and that of our customers.

The key research question is: Why is there gap between cyber security standards and their implementation by
organisations, and where there is regulation, what level of compliance is there with the regulation?

The key output of the project will be a research report, but we are open to new and innovative ideas from the student to ensure the knowledge gained is embedded within the consulting and cyber teams.

The student will be expected to conduct a literature review and user research to identify and understand commonly used cyber security standards and cyber security measures currently implemented by companies. Following the initial phase of research, the student will be expected to focus on at least one of the following:

Impact analysis – provide recommendations for effectively designing cyber-engineering solutions, considering the company strategy, operations, finances, people, technology, compliance and risk.
Future analysis – Taking a socioeconomic approach, we would like the team to innovate and consider the future of technology (examples may include AI, digital identity, synthetic biology, etc.).
Policy evaluation – Evaluate current UK cyber and resilience policies and provide at least three recommendations, with reasoning, for promoting adoption of best practices in cyber engineering through policy.

Through this work, the student will be expected to engage with and support the cyber security business. A more in-depth project outline will be provided at the start of the placement.

Anticipated benefits for the student

During this placement, the student will develop a strong blend of analytical, technical and problem-solving skills in the context of private industry and government. They will build skills in policy analysis and critical thinking, learning how to interpret complex policies and regulations and translate them into clear, actionable insights for technical and non-technical stakeholders. The placement will deepen their knowledge of the technology policy landscape within a national security context, and further their understanding of how current frameworks impact customer objectives and operations.

Through on-the-job training and mentorship, the student will gain practical experience contributing to real-world policy reviews, briefings and recommendations, while collaborating across multidisciplinary teams. This will equip them with a customer-focused perspective and hands-on experience in aligning policy with operational and strategic needs.

Host organisation

QinetiQ are a defence and security company delivering mission-critical solutions that protect lives and help organisations stay ahead in an increasingly complex and contested world.

With a history rooted in scientific excellence and a passion for innovation, we’re shaping the future of defence.

Our scientific and technological expertise, proven research capabilities and unique, purpose-built facilities enable us to meet the needs of a wide range of global customers.

We work closely with governments, armed forces and industry to solve complex challenges across land, sea, air, space and cyber, ensuring they stay ahead in an ever-evolving threat landscape.

Skills and experience required for the role

It is expected that the student team has enough knowledge of cyber security and the challenge of implementing cyber security measures to enhance digital resilience.

However, it is acknowledged that perspectives and insights offered by other disciplines is valuable. Experience working in cyber security or business continuity would be useful but not required.

Working arrangements and location of the placement

Duration of placement: 3 months (12 weeks)

Start Date: negotiable from June 2026.

Working pattern: Full-time, (37 hours per week)

Working arrangements: Flexible for remote, hybrid or in person.

Location: QinetiQ has offices in London and Malvern.

How to apply

This project is restricted to nationals of Five Eyes and NATO countries.

Application deadline: 27th May 2026

Submit a cover letter and CV to Jane Wright: jane.wright@qinetiq.com

Shortlisted applicants will be invited to interview.

Successful applicants will have to undergo a Baseline Personnel Security Standard (BPSS) check. This is the UK governmentʼs minimum pre-employment screening standard for staff accessing sensitive assets, systems, or site information.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.