Senior Cyber Advisor

  • Location

    London, England

  • Sector:

    IT

  • Job type:

    Permanent

  • Salary:

    £55000 - £69000 per annum

  • Contact:

    Aaron Madray

  • Contact email:

    Aaron.Madray@experis.co.uk

  • Job ref:

    BBBH110862_1569852790

  • Published:

    about 1 year ago

  • Expiry date:

    2019-10-30

Senior Cyber Security Advisor - London

Our client is a dynamic industry leader, specialising in cutting edge technology & industrial security controls seeking proactive, security minded individuals to join & develop within their business.

Key Responsibilities

  • Work collaboratively for an assigned portfolio of Operators of Essential Services (OES) and provide advisory support for the interpretation and applicability of the regulatory framework. This will include;
    • Consulting with OES on scoping of assessments,
    • Reviewing initial self-assessments with supporting documentation and
    • Consulting with OES to review their mitigation plans and make recommendations for improvement
  • Contribute towards practical guidance for the sector, in a consultative manner with OES, BEIS, HSE and NCSC.
  • Provides insight for current and future, appropriate and proportionate cyber capabilities, including those required for investment planning for Price Control (RIIO-2) for portfolio of OES
  • Leverage intelligence relating to the sector related cyber security threats, vulnerabilities, controls and incidents and facilitate the promulgation thereof.
  • Provide input in to the audit and inspection programme and where required, provide recommendations to the enforcement t team.
  • Attend or contribute to wider meetings as delegated with other CAs, CEER, ACER, DCMS and BEIS.
  • Performs other duties as directed.

Essential:

  • Educated to Degree level or equivalent in an engineering or technology-based discipline.
  • Client facing experience with strong negotiation and coaching skills.
  • Certified to one or more of the following; CISSP, CISA, CISM, ISO 27001 lead implementer.
  • 3 years' experience of working in OT cyber security in Critical National Infrastructure
  • You must demonstrate that you have recent and relevant skills and experience in all the following areas:
    • Operating or architecting in an Operational Technology (OT, ICS, IACS) environment, specifically related to managing the security of critical systems;
    • Understanding of cyber security risks affecting Industrial Control Systems, and duly considering appropriate and proportionate security controls to mitigate such risks;
    • Managing security and risks associate with Operational Technology and/or Control Systems; and
    • Working knowledge of IEC62443 series in critical infrastructure and challenges faced with introducing security controls
  • Experience of engaging, advising and influencing up to senior managers, whilst projecting credibility and self-assurance
  • An effective and engaging communicator, with experience working effectively with key external stakeholders.
  • Able to achieve and maintain SC clearance.

Desirable:

  • Certified to one or more of the following: GICSP, SABSA, TOGAF, CEH
  • Knowledge of IEC62351 and/or NIST 800-82 in CNI
  • Experience of performing risk assessments in ICS environment
  • Experience within Project Engineering Lifecycle in CNI (FEED, EPC, FAT, SAT, Commissioning)
  • Conducted regional technical workshops and awareness training sessions.
  • Chaired information sharing of solutions, lessons learned, critical success factors from stakeholders to ensure their consideration and adoption by the wider industry.