Find a job
Rail Cyber Security Lead in London
Apply Now
Job Board
Companies
NCC Group

Rail Cyber Security Lead in London

London Full-Time 60000 - 80000 € / year (est.) No home office possible
Apply Now
NCC Group

At a Glance

  • Tasks: Lead cyber security initiatives in the rail sector and support cross-domain projects.
  • Company: Join a global leader in cyber security with a focus on transport.
  • Benefits: Enjoy flexible working, generous holiday, and community volunteering opportunities.
  • Other info: Collaborative culture with excellent career growth and mentorship opportunities.
  • Why this job: Make a real impact in rail cyber security while developing your skills.
  • Qualifications: Experience in rail cyber security and strong communication skills required.

The predicted salary is between 60000 - 80000 € per year.

We are seeking a highly skilled Cyber Security Rail Lead to join our Global Transport practice. This role is pivotal in strengthening and expanding our cyber security capability within the global rail ecosystem, while also supporting cross-domain engagements in maritime, automotive, and aviation as needed. The ideal candidate will bring deep knowledge of operational technology (OT), rail systems, relevant international cyber security standards (including IEC 62443, TS 50701, IEC 63452), penetration testing methodologies, and the broader transport ecosystem. In addition to technical leadership, the individual will play a key role in supporting business development, building client trust, and elevating NCC Group’s profile within the rail sector. This is a client‑facing role requiring strong collaboration, communication and leadership skills.

Key Responsibilities

  • Technical Leadership (Rail Cyber Security)
    • Serve as the subject matter expert (SME) for rail cyber security across global engagements.
    • Lead, design, and deliver complex cyber security assessments across both operational technology (OT) and information technology (IT) environments.
    • Apply deep knowledge of rail‑specific standards and frameworks, including:
      • IEC 62443 (Industrial Cyber Security)
      • TS 50701 (Railway Cyber Security)
      • IEC 63452 (Railway Rolling Stock Cyber Security)
    • Conduct or oversee penetration testing activities, vulnerability assessments, architecture reviews, risk assessment and threat modelling for rail clients.
    • Provide expert interpretation of cyber security requirements for railway operators, manufacturers, and integrators.
    • Ensure security recommendations are aligned with safety, operational continuity, and regulatory requirements across the rail ecosystem.
  • Rail Domain Expertise
    • Provide expert understanding of the rail ecosystem, including:
      • Signalling systems
      • Rolling stock
      • Control centres
      • Wayside and trackside equipment
      • Rail operational processes and safety requirements
    • Translate complex rail operations knowledge into training and mentorship for internal teams.
    • Act as the internal thought leader on emerging rail threats, vulnerabilities, and industry trends.
  • Business Development & Practice Growth
    • Support the creation and growth of new rail opportunities globally.
    • Build NCC Group’s market presence in the rail sector through:
      • Thought leadership (whitepapers, webinars, industry events)
      • Client engagements and pre‑sales support
      • Partnerships with key rail OEMs, operators, and regulators
    • Collaborate with engagement managers and leadership to define rail‑focused service offerings.
    • Contribute to bids, proposals, and technical scoping activities for prospective customers.
  • Cross‑Domain Support (Multi‑Modal Transport)
    • Potentially support projects across maritime, automotive, and aviation domains as required, with team backing.
    • Maintain awareness of common OT and safety‑critical technologies across transport sectors.
    • Promote knowledge‑sharing across the wider Transport Cyber Security practice.
  • Teamwork, Collaboration & Mentorship
    • Provide mentoring, guidance, and technical leadership to consultants at various levels.
    • Work closely with colleagues across global teams to deliver integrated and high‑quality engagements.
    • Promote a collaborative, supportive, and inclusive team culture.
  • Client Engagement & Delivery Excellence
    • Act as a trusted advisor to clients, providing clear, actionable cyber security recommendations.
    • Communicate complex concepts in a clear, professional, and client‑friendly manner.
    • Ensure high‑quality deliverables and maintain strong client satisfaction throughout engagements.

Skills, Knowledge and Expertise

  • Technical Experience
    • Proven experience in rail cyber security, ideally within operators, OEMs, integrators, or a cyber consultancy.
    • Strong experience working with and applying:
      • IEC 62443 (critical infrastructure cyber security)
      • TS 50701 (railway cyber security framework)
      • IEC 63452 (rolling stock cyber security)
    • Strong understanding of OT systems and technologies, including SCADA, industrial control systems (ICS), and safety‑critical environments.
    • Practical experience in penetration testing or security assessment methodologies (not necessarily a full‑time tester, but capable).
    • Experience with secure architecture review, threat modelling, and risk assessment in industrial or transport environments.
  • Domain Knowledge
    • In‑depth understanding of the rail operational ecosystem, including signalling, rolling stock, safety systems, and regulatory standards.
    • Direct experience working within or for rail operators, system suppliers, or rail‑integrated cyber projects.
  • Soft Skills & Professional Attributes
    • Excellent communication skills in both technical and non‑technical contexts.
    • Strong client‑facing experience and relationship management skills.
    • Ability to lead engagements and influence stakeholders at all levels.
    • Willingness to work collaboratively across geographies and disciplines.
    • Ability to teach and mentor others on rail systems and cyber security.
  • Desirable (Not Mandatory)
    • Recognised cyber certifications (e.g., CISSP, GICSP, ISA/IEC 62443 CyberSecurity Expert).
    • Experience contributing to industry standards or regulatory consultations.
    • Background in safety engineering or systems engineering in transport.

Benefits

  • Flexible Working: Balance your work and personal life with our flexible working options.
  • Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave.
  • Medicash & Critical Illness Scheme
  • Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme.
  • Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities.
  • Green Car Scheme: Drive green and save money with our eco‑friendly car scheme.
  • Cycle Scheme: Stay fit and healthy with our cycle‑to‑work scheme.
  • Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet.
  • Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.

Rail Cyber Security Lead in London employer: NCC Group

NCC Group is an exceptional employer, offering a dynamic work environment in London that fosters innovation and collaboration within the rail cyber security sector. With a strong emphasis on employee growth, flexible working options, and a generous holiday allowance, we empower our team to thrive both professionally and personally. Join us to make a meaningful impact in the global transport ecosystem while enjoying unique benefits like community volunteering programmes and a green car scheme.

NCC Group

Contact Detail:

NCC Group Recruiting Team

View NCC Group Profile

StudySmarter Expert Advice🤫

We think this is how you could land Rail Cyber Security Lead in London

Tip Number 1

Network like a pro! Get out there and connect with people in the rail cyber security field. Attend industry events, webinars, or even local meetups. You never know who might have the inside scoop on job openings or can put in a good word for you.

Tip Number 2

Show off your expertise! Create a personal blog or LinkedIn posts discussing rail cyber security trends, challenges, or solutions. This not only showcases your knowledge but also helps you stand out to potential employers looking for thought leaders in the field.

Tip Number 3

Don’t just apply; engage! When you find a job that excites you, reach out to someone at the company. Ask questions about the role or the team. This shows genuine interest and can help you make a memorable impression before the interview.

Tip Number 4

Utilise our website for applications! We’ve got a streamlined process that makes it easy for you to apply for roles like Rail Cyber Security Lead. Plus, it’s a great way to ensure your application gets seen by the right people.

We think you need these skills to ace Rail Cyber Security Lead in London

Cyber Security Expertise
Operational Technology (OT) Knowledge
Rail Systems Knowledge
IEC 62443 Standards
TS 50701 Standards
IEC 63452 Standards
Penetration Testing Methodologies

Some tips for your application 🫡

Tailor Your CV:Make sure your CV is tailored to the Rail Cyber Security Lead role. Highlight your experience with rail systems, operational technology, and relevant cyber security standards. We want to see how your skills align with what we're looking for!

Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about rail cyber security and how you can contribute to our team. Be sure to mention any specific projects or experiences that relate to the role.

Showcase Your Technical Skills:Don’t forget to highlight your technical expertise in your application. Mention your experience with penetration testing, risk assessments, and any relevant certifications. We love seeing candidates who are well-versed in the latest cyber security practices!

Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way to ensure your application gets into the right hands. Plus, you’ll find all the details you need about the role and our company culture there!

How to prepare for a job interview at NCC Group

Know Your Cyber Security Standards

Familiarise yourself with the key international cyber security standards relevant to the rail sector, such as IEC 62443 and TS 50701. Be prepared to discuss how these standards apply to real-world scenarios and your previous experiences.

Showcase Your Technical Leadership

Highlight your experience in leading cyber security assessments and penetration testing. Share specific examples of how you've successfully managed projects or teams, and be ready to explain your approach to mentoring others in the field.

Demonstrate Rail Domain Expertise

Brush up on your knowledge of the rail ecosystem, including signalling systems and operational processes. Be ready to translate complex concepts into simple terms, showcasing your ability to communicate effectively with both technical and non-technical stakeholders.

Engage in Business Development Conversations

Prepare to discuss how you can contribute to business growth within the rail sector. Think about potential partnerships or innovative service offerings you could propose, and be ready to share your ideas on building client trust and enhancing the company's market presence.

footer-logo
Company
Login Career About Us
Product
Exams Explanations For Companies Magazine
Help
Help Center Premium Login
© StudySmarter
Terms
Privacy