At a Glance
- Tasks: Lead cyber security efforts on a groundbreaking nuclear project, ensuring robust security measures.
- Company: Join Sizewell C, a key player in the UK's energy future and climate change agenda.
- Benefits: Competitive salary, career growth, and the chance to work on a major UK megaproject.
- Other info: Dynamic work environment with opportunities for professional development and collaboration.
- Why this job: Make a real impact on energy security while working at the forefront of technology.
- Qualifications: Strong knowledge of cyber security, risk assessment, and relevant international standards.
The predicted salary is between 60000 - 80000 € per year.
The Sizewell C Jobs Service supports local people into exciting, long-term careers across our Project.
Are you looking for a career which is rewarding, at the cutting edge of project development and where you can really make a difference? Come and join our expanding Sizewell C (SZC) team and work on one of the most exciting and largest megaprojects in the UK, whilst being at the forefront of the UK's climate change agenda and energy policy. Following on from the success of Hinkley Point C (HPC), the SZC Project is a nuclear new build project in Suffolk, which has obtained planning approval and Government financing support. The project has started construction and is now seeking private investment. When completed, it will provide dependable electricity to 6 million homes for 60 years, which along with renewables, will support Britain to achieve Net Zero by 2050.
Principal Accountabilities
- Provide assurance to the SZC BISO, and ultimately to the SZC Board, on the efficacy of SZC's cyber configuration and security arrangements, risks and mitigations for devices and their access controls.
- Intelligently replicate Cyber Security policies, standards, procedures and RESA governance from HPC to SZC with NS, EPRP, EIS and alliances peer review.
- Intelligent Customer (IC) responsibility for licensee Cyber Security requirements.
- Define and ensure the delivery of all assurance activities required to demonstrate compliance with all security requirements, including those specified and delivered by NS, EIS and EPRP or other third parties, that protect the confidentiality, integrity and availability of SZC information stored or processed upon devices, physical or virtual.
- Review and acceptance of security designs produced by EPRP and SZC Suppliers.
- Set the requirements and own the development and implementation of processes and procedures that deliver secure Cyber operations at SZC, including to SaaS providers.
- Ensure that all Cyber Risks are captured within project risk logs and with the BISO into security risk tools, define and assure delivery of all mitigations. Provide briefings to the SZC Security team on risks.
- Utilising up-to-date knowledge of Cyber security tools including in M365 to advise and support the project in delivering the best Cyber security approach that aligns data privacy, business objectives and ensuring information security safeguards are effective through assurance activities.
- Evaluate the Cyber Threat and Vulnerability landscape, proposed refinement and develop of SZC policies and controls to reduce residual risk and attack surface.
Knowledge, Skills, Qualifications, Experience
Essential
- Knowledge of Cyber Security and assurance of deployed controls.
- Established cyber security credentials.
- Good working knowledge of applicable international standards and information security frameworks (ISO27001, CIS, NIST, GDPR, Cyber Essentials Plus).
- Aware of risk assessment methodologies including ISO27005 and NIST.
- Familiar with Cyber Security tools such as Defender for Cloud, Defender, Purview and Intune.
- Familiarity with process of Vulnerability Scanning and Management together with Penetration Testing.
- Good working knowledge of device deployment, management, patching, conditional access, isolation.
- Assurance of deployed baselines.
- Reporting and Dashboards.
- Knowledge of National Protective Security Authority (NPSA) and National Cyber Security Centre (NCSC) guidance and frameworks including Cyber Essentials.
- Confident in own abilities and be able to deliver in a dynamic environment.
- Proven stakeholder management.
- Excellent presentation and communication skills.
- The post holder must currently hold or be able to achieve National Security Vetting (NSV) Security Check (SC).
- A role requiring regular visits to offices, partners, alliances and sites and temporary structures around them.
Desirable
- Experience working in the UK nuclear or regulated industry is highly desirable.
- Experience in a complex project environment including change control processes.
- Excellent written English, including the preparation of suites of technical documents.
For this role you must have evidence of right to work in the UK. As a project, we do not discriminate on the grounds of age, gender, race, colour, religion, disability or sexual orientation, and we welcome applications from all sections of the community.
Cyber Security Lead (Sizewell C) employer: EDF
Join Mactech Engineering & Inspection as a Cyber Security Lead at Sizewell C, where you will be part of a pioneering team working on one of the UK's largest megaprojects. Our commitment to employee growth is reflected in our supportive work culture, offering opportunities for professional development and engagement in meaningful projects that contribute to the nation's energy future. Located in Suffolk, this role not only provides competitive benefits but also places you at the heart of the UK's climate change agenda, making your work impactful and rewarding.
StudySmarter Expert Advice🤫
We think this is how you could land Cyber Security Lead (Sizewell C)
✨Tip Number 1
Network like a pro! Get out there and connect with people in the cyber security field. Attend industry events, join online forums, and don’t be shy about reaching out on LinkedIn. You never know who might have the inside scoop on job openings!
✨Tip Number 2
Show off your skills! Create a portfolio or a personal website showcasing your projects, certifications, and any relevant experience. This is your chance to shine and demonstrate what you can bring to the table, especially for a role as crucial as Cyber Security Lead.
✨Tip Number 3
Prepare for interviews like it’s game day! Research the company, understand their projects, and be ready to discuss how your skills align with their needs. Practice common interview questions and think of examples that highlight your experience in cyber security.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive and engaged with our projects, like Sizewell C!
We think you need these skills to ace Cyber Security Lead (Sizewell C)
Some tips for your application 🫡
Tailor Your Application:Make sure to customise your CV and cover letter for the Cyber Security Lead role. Highlight your relevant experience and skills that align with the job description, especially your knowledge of cyber security frameworks and tools.
Showcase Your Achievements:Don’t just list your responsibilities in previous roles; showcase your achievements! Use specific examples to demonstrate how you’ve successfully managed cyber security risks or improved processes in past projects.
Be Clear and Concise:When writing your application, keep it clear and concise. Avoid jargon unless it’s relevant to the role. We want to see your communication skills shine through, so make every word count!
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in joining our team at Sizewell C!
How to prepare for a job interview at EDF
✨Know Your Cyber Security Stuff
Make sure you brush up on your knowledge of cyber security frameworks like ISO27001 and NIST. Be ready to discuss how you've applied these in past roles, especially in relation to risk assessment methodologies. This will show that you're not just familiar with the terms but can actually implement them effectively.
✨Showcase Your Stakeholder Management Skills
Prepare examples of how you've successfully managed stakeholders in previous projects. Think about times when you had to communicate complex technical information to non-technical audiences. This is crucial for a role that involves liaising with various teams and ensuring everyone is on the same page.
✨Demonstrate Your Problem-Solving Abilities
Be ready to discuss specific challenges you've faced in cyber security and how you overcame them. Use the STAR method (Situation, Task, Action, Result) to structure your answers. This will help interviewers see your critical thinking skills in action, which is vital for this role.
✨Familiarise Yourself with SZC's Vision
Understand the Sizewell C project's goals and how they align with the UK's climate change agenda. Being able to articulate how your role as a Cyber Security Lead contributes to this vision will demonstrate your commitment and enthusiasm for the project, making you a more attractive candidate.
