Principal Cyber Security OT Consultant in City of Westminster

You might know us for the great work we do across our wide variety of projects. We're proud to say it's thanks to our people's diversity of thought, expertise and knowledge. And when you join us, you'll be a part of this genuinely collaborative environment, where everyone's voice is valued and treated equally. We're passionate about what we do, but we don't take ourselves too seriously. Simply put, this is a great place to be. So, when it comes to your life outside of work, ask us about our flexible and remote working policies designed to help you get the most out of life.

We deliver technically questioning and time-critical projects across multiple sectors, including Aerospace, Defence, Critical National Infrastructure (CNI). Due to continued growth, we have opportunities in our Governance, Risk & Compliance (GRC), Security Architecture, Threat & Vulnerability, and Operational Technology (OT) teams. Our role as a trusted adviser allows us to offer rewarding careers to those looking to enhance their skills and experience in dynamic environments.

We are seeking a knowledgeable, enthusiastic, and conscientious professional with extensive experience in securing Operational Technology (OT) environments (such as energy, utilities and transportation). As a Principal Consultant, you will bring deep expertise in OT cyber security and the ability to spearhead strategic engagements, building trust with clients and delivering innovative solutions.

• Lead OT Cybersecurity Programmes: Provide strategic leadership and oversight for multiple complex OT cyber security projects. Ensure that each engagement aligns with the client's business objectives and risk appetite, while delivering solutions that protect mission-critical systems and maximise operational resilience. Act as the engagement lead, managing client relationships and guiding internal teams to deliver high-quality results on time.
• Security Architecture & Innovation: Leverage deep technical expertise to design and govern secure OT system architectures in industrial environments. Apply creative thinking to implement advanced security controls (for example, robust network segmentation and hardened ICS/SCADA systems) that safeguard operational integrity. Continuously seek innovative approaches to address complex and non-routine security challenges in OT contexts.
• Governance & Risk Management: Establish robust cyber security governance frameworks tailored to OT environments. Spearhead comprehensive security risk assessments and gap analyses using industry frameworks such as NIST CSF and IEC 62443. Based on these assessments, identify the most cost-effective security controls in line with the client's risk appetite, balancing risk reduction with uptime and safety. Oversee the implementation of these controls to ensure risks are managed and regulatory requirements are met.
• Policy Development & Compliance: Develop and enforce enterprise security policies and procedures that meet corporate and regulatory requirements while reflecting normal practices in OT settings. Ensure all policies and solutions are aligned with relevant standards and regulations - for example, the Network and Information Systems (NIS) Regulations and HSE OG-0086 for critical infrastructures. Provide senior-level guidance to help clients remain compliant with evolving laws and industry standards.
• Client Engagement & Stakeholder Management: Build and maintain strong working relationships with clients, including senior executives and operational stakeholders. Act as a trusted adviser, capable of articulating and pitching cyber security advice in business terms as well as technical terms. Manage stakeholder expectations proactively and ensure high customer satisfaction. You will help clients navigate cyber security decisions and reinforce AtkinsRéalis' reputation for delivering value.
• Project & Team Leadership: Oversee multiple project teams and mentor junior consultants and engineers to foster their development. Coordinate multi-disciplinary efforts in a matrix organisation, ensuring projects are delivered on schedule and within scope. Provide clear direction and support to team members and intervene decisively to resolve any issues or escalations. You are responsible for the overall quality of our OT cyber security services on your projects.
• Thought Leadership & Business Growth: Serve as a thought leader in OT cyber security both within AtkinsRéalis and in the wider industry. Stay abreast of emerging OT threats, technologies, and best practices, and share these insights with colleagues and clients. Contribute to business development by developing new service offerings and supporting bids/proposals for OT security work. Represent AtkinsRéalis at industry events or in publications to advance our brand and thought leadership in OT cyber security.
• Specialist Expertise: Deep expertise in at least one relevant sub-domain of cyber or information security (for example, security architecture design, incident response, cyber risk management, security training, or policy development) is a bonus. This could be demonstrated by significant project experience or thought leadership in that area. Such expertise complements the broad knowledge required and can enhance our team's capabilities.

• Extensive OT Cyber Security Experience: Proven experience delivering technical cyber security consultancy in OT environments (e.g. energy, utilities, transportation). Deep understanding of the unique risks in OT systems versus IT systems. Strong track record implementing security in industrial control system contexts and securing critical national infrastructure.
• Leadership & Delivery: Demonstrable ability to spearhead teams and manage complex security engagements on live industrial sites. Experience conducting engagements on operational plants, including risk assessments and deploying appropriate security controls. Ability to coordinate multiple projects concurrently and meet client priorities and deadlines.
• Exceptional Communication Skills: Excellent verbal and written communication. Able to explain complex cyber security concepts in clear, non-technical language and present to engineers and C-suite stakeholders.
• Project Management & Stakeholder Engagement: Strong organizational skills with the ability to juggle multiple tasks and projects, delivering high-quality work under pressure and meeting deadlines. Manage stakeholder expectations effectively.
• Teamwork & Collaboration: A proven team player who can also take initiative and lead. Able to work both independently and in multidisciplinary teams within a matrix organisation.
• Technical Mastery in OT: Deep knowledge of the OT system lifecycle and security technologies used in industrial control systems and SCADA environments.
• Standards & Regulatory Knowledge: Familiarity with OT security standards and frameworks such as IEC 62443 and NIST CSF, and regulations like the NIS Regulations and HSE OG-0086.
• Security Clearance & Travel: Ability to obtain UK security clearance for sensitive projects and willingness to travel across the UK to client sites.
• Certifications & Professional Memberships: Certifications focused on OT security (e.g., GIAC GICSP, ISA/IEC 62443) and general certifications (CISSP, CISM). Chartered or full membership of professional bodies is advantageous.
• Thought Leadership & Industry Involvement: Active involvement in the cyber security community (publishing articles, speaking at conferences) is a plus. Commitment to continuous professional development in OT cyber security.
• Specialist Expertise: Deep expertise in at least one sub-domain of cyber or information security as a bonus.

About AtkinsRéalis: We’re AtkinsRéalis, a world-class engineering services and nuclear organization. We connect people, data and technology to transform the world's infrastructure and energy systems. We’re committed to leading our clients across our various end markets to engineer a better future for our planet and its people. We seek to hire individuals with diverse characteristics, backgrounds and perspectives. We strongly believe that world-class talent makes no distinctions based on gender, ethnic or national origin, sexual identity and orientation, age, religion or disability, but enriches itself through these differences.

Benefits: Explore the rewards and benefits that help you thrive - at every stage of your life and your career. Enjoy competitive salaries, employee rewards and a range of benefits you can tailor to suit your health, wellbeing, financial and lifestyle choices. Take advantage of training and professional development opportunities to grow your skills and expertise. Combine our hybrid working culture with flexible holiday allowances to balance a great job and a fulfilling personal life.