Cyber Operations Lead

Stanlow Manufacturing Complex, Ellesmere Port

About The Company

Do you want to work for the company that’s playing a leading role in delivering the North West’s low carbon future? EET Fuels (Trading name of Essar Oil (UK) Limited) produces over 16% of the UK’s road transport fuels, provides key feedstocks to Britain’s petrochemical industry and is investing in developing low carbon fuels. We are a major supplier in the North West and beyond with customers including most of the major retail brands operated by international oil companies and supermarkets, Manchester Airport, leading commercial airlines and the region’s trains and buses. And we’re central to the innovative HyNet project which is redefining energy to achieve our regional low carbon ambitions and national policy targets. We employ over 800 expert and engaged colleagues, who are at the heart of everything we do. The company has an embedded safety culture, technically challenging work across all the different parts of the business and some of the best training available in the energy industry.

The Role

We currently have an exciting opportunity for a Cyber Operations Lead who will be responsible for overseeing the day-to-day cyber defence operations, ensuring the organisation’s security posture aligns with the NIST Cybersecurity Framework. This role will lead threat detection, incident response, and vulnerability management activities, while collaborating across teams to strengthen cyber resilience.

Primary Accountabilities

• Maintain an up-to-date inventory of critical assets and systems
• Support risk assessments and threat modeling exercises
• Contribute to the development and maintenance of cybersecurity policies and standards
• Oversee implementation of security controls (e.g., firewalls, endpoint protection, IAM)
• Lead security awareness and training initiatives for staff
• Ensure data protection mechanisms are in place (encryption, DLP, secure configurations)
• Test and identify network and system vulnerabilities
• Review state of IT infrastructure, identify potential vulnerability and apply relevant patches
• Manage Security Operations Center (SOC) activities and SIEM platforms
• Monitor for indicators of compromise (IOCs) and anomalous behavior
• Develop and maintain detection use cases and threat hunting playbooks
• Lead incident response efforts, including triage, containment, and root cause analysis
• Maintain and test incident response plans and runbooks
• Coordinate with legal, compliance, and communications teams during major incidents
• Support business continuity and disaster recovery planning
• Lead post-incident reviews and drive continuous improvement
• Ensure lessons learned are integrated into operational processes

About You

Our ideal candidate will hold a degree in Cybersecurity, Information Security, Computer Science, IT, Systems Engineering, or another relevant discipline within the fields of information security or information technology. You will bring proven experience working in regulated industries such as energy, finance, or healthcare, along with a strong understanding of key compliance and regulatory frameworks including GDPR, NIS2, and PCI DSS. Hands‑on experience with security automation and orchestration platforms (SOAR) is also important. Professional certifications such as CISSP, CISM, GCIA, GCIH, or equivalent are not essential but are highly desirable.

Closing Date

This vacancy will close on Friday 27th February 2026.

Benefits

• Competitive Salary
• 10% Company Contribution Pension rising to 15% with service
• 25 days Holiday, increasing with service
• Private Medical Insurance
• Additional Flex Benefits- including Holiday Purchase
• Access to Employee Assistance Programme with Exclusive access to a range of Discounts
• Free Secure On-Site Car Parking