Chief Information Security Officer - NESO in Wokingham

About the Role

National Energy System Operator (NESO) recognises the potential of bright and talented individuals, and we encourage you to join us as Great Britain’s energy system undergoes an ambitious, exciting, and vital transformation. Together with industry, we are creating a cleaner, more sustainable energy future. NESO are currently looking for a new Chief Information Security Officer (CISO) to join us. The CISO holds a crucial leadership position in protecting both the digital and physical assets of the National Energy System Operator (NESO). This role is pivotal to developing and maintaining NESO’s security vision, strategy, operations and awareness. The CISO is responsible for identifying and assessing cyber and physical security risk, ensuring adequate risk-based mitigation is in place for these risks either directly or working with the wider organisation. Additionally, the CISO works to preserve the organisation’s reputation and ensures compliance with NIS/CAF and other best practices/standards and is NESO NIS responsible officer. The role works to ensure that the security strategy is forward looking and deeply embedded for NESO to achieve its overall strategy and digital ambition. This role can be based from Wokingham or Warwick and we continue to offer hybrid working from office and home. Attendance at any NESO or partner locations based on NESO’s business requirement is expected.

Key Accountabilities

• Strategic Leadership: Develop, embed, and continually refine a forward-looking enterprise-wide security strategy aligned with the organisation’s objectives, risk appetite, physical assets and digital ambition.
• Risk Management: Oversee the identification, evaluation, and timely mitigation of security risks, including those posed by emerging threats to CNI sectors.
• Security Assurance: Drive the implementation of security frameworks, policies and practices to validate the effectiveness of controls and safeguard critical business assets.
• Regulatory Compliance: Ensure the organisation’s compliance with all relevant legal, regulatory, and industry requirements (e.g., NIS Directive).
• Incident Response: Lead the development and execution of robust incident response and crisis management plans to minimise the impact of security breaches and maintain operational stability.
• Stakeholder Engagement: Primary point of contact for security matters, liaising with government agencies, regulator, and industry partners as appropriate.
• Team Leadership: Build, manage, and mentor a high-performing security team, fostering a culture of security awareness and continuous improvement across the organisation.

About You

We’re forging the path, and we know we can’t do it alone. That’s why we need visionary minds like yours to join us on this transformative journey. In this case, we’re looking for someone who:

• Extensive experience in security, with significant demonstrable experience in a senior leadership role, preferably within a CNI or safety critical operational environments.
• Proven track record of developing and implementing security strategies in complex and highly regulated environments.
• Proven track record of working in fast paced data, AI and technology delivery and agile devsecops environment.
• Strong knowledge of cyber security frameworks, risk management methodologies, and regulatory requirements.
• Demonstrable leadership, communication, and stakeholder management skills with a track-record of liaising at all levels of the business and externally.
• Experience in managing major incidents, crisis management, and security monitoring.
• Experience in managing Physical Security for organisations with critical assets.
• Ability to work effectively with a technology partner ecosystem and technology leaders.
• Demonstrated knowledge of industry standards and methodologies, including ISO 27001, 1779 and BS 7799, NIST.
• Current knowledge of the threat landscape and emerging security technologies.

Don’t meet every single requirement? Studies have shown that women and people of colour are less likely to apply for jobs unless they meet every single qualification. At NESO, we are committed to building a diverse, inclusive, and authentic workplace for everyone. So, if you’re excited about this role but your experience or qualifications don’t match the job description exactly, we encourage you to apply anyway. You might just be the right person for our growing business in this role or another one.

About What You’ll Get

As well as a competitive base salary, there is a bonus scheme, a benefits allowance, 28 days annual leave as standard, and a competitive contributory pension scheme where we will double match your contribution to a maximum company contribution of 12%, amongst other benefits. As we work towards creating a cleaner, greener, and more affordable future for all, we also work towards creating a place for our teammates to belong, with professional and personal growth and positive well-being.

Full support and career-development resources to expand your skills, enhance your expertise, and maximise your potential along your career journey. A diverse and inclusive community of belonging, where teammates are empowered to bring ideas to the table. Generous Total Rewards Plan – comprising of health, finance and wealth, work/life balance, and career benefits.

About Us

National Energy System Operator’s (NESO) mission is to facilitate the decarbonisation of Great Britain’s energy network and ensure the delivery of reliable, affordable, and clean electricity for consumers. We work with stakeholders across the whole energy industry to plan for future network needs, using a wider adoption of technology and changes in consumer behaviour, as well as ensuring we have the right markets, networks, and frameworks in place, to transform the way we operate tomorrow. Join us, and let’s energise progress. Our energy, our future, together.

About The National Energy System Operator (NESO)

In Autumn of 2024, the ESO transitioned to National Energy System Operator, or NESO for short. Previously denoted as the Future System Operator (or FSO), the new National Energy System Operator is the independent body responsible for planning Great Britain’s electricity and gas networks and operating the electricity system. The ESO, including all of its existing roles, are now at the heart of the new National Energy System Operator. As NESO, we will build on our existing roles, capabilities, and ways of working significantly to create an organisation the energy system and its users’ need. Our new capabilities will enable us to look across vectors, including electricity, natural gas and hydrogen, and crucially consider the trade-offs between them. The organisation is set up as a public corporation with its own Board of independent directors, with complete operational independence from government, the regulator and any and all commercial interest. As was the ESO, NESO will be licenced and regulated by Ofgem through price control agreements and obligated to identify optimal solutions to system operations and planning in the most sustainable, affordable and secure way for all.

More Information

This role closes on 22nd February 2026 at 23:59, however we encourage candidates to submit their application as early as possible and not wait until the published closing date as this can vary. We work towards the highest standards in everything we do, including how we support, value and develop our people. Our aim is to encourage and support employees to thrive and be the best they can be. We celebrate the difference people can bring into our organisation, and welcome and encourage applicants with diverse experiences and backgrounds, and offer flexible and tailored support, at home and in the office. We’re committed to building a workforce that represents the communities we serve, and a working environment in which each individual feels valued, respected, fairly treated, and able to reach their full potential. This role is designated as requiring a National Security Vetting (NSV) clearance. The level of clearance associated with the role is Developed Vetting (DV). You will usually need to have been a resident in the UK for the last ten years to apply for an DV clearance. We would invite any applicants who do not currently meet this residency requirement to still express an interest in the role. The Personnel Security team will assess such cases on an individual basis and may look to understand more about recent residency history before providing guidance on eligibility for DV at that time.