Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead and shape cybersecurity strategy, manage operations, and develop a high-performing team.
- Company: Join NES Fircroft, a global leader in engineering staffing across diverse sectors.
- Benefits: Enjoy competitive benefits, including support with visas, accommodation, and market-leading packages.
- Why this job: Make a real impact in a dynamic energy company while tackling exciting cybersecurity challenges.
- Qualifications: Bachelor's degree in Cybersecurity or related field; 10 years' experience, including leadership roles.
- Other info: Ideal for those passionate about cybersecurity in the energy sector.
The predicted salary is between 54000 - 84000 £ per year.
Job Description
Reports to: CIO (Chief Information Officer)
Location: Aberdeen, UK
Contract Length: Until 31/12/2026
Description:
Role Overview
The Cyber Security Manager will play a critical leadership role in shaping, implementing, and maintaining our client’s cybersecurity strategy and operational resilience. Reporting directly to the CIO, the role will act as the tactical and operational cybersecurity lead, managing security engineering, monitoring, response, governance, and awareness programs. This is ideal for someone with strong leadership skills, deep cybersecurity knowledge, and practical experience operating in industrial environments.
Key Responsibilities
Cybersecurity Strategy and Governance
• Development and execution of cyber strategy and risk posture.
• Define and implement cybersecurity policies, standards, and procedures aligned to ISO27001, NIST, and OG86 frameworks.
• Conduct regular threat assessments and ensure alignment of security controls with business risk appetite.
• Monitor compliance with regulatory and shareholder cybersecurity obligations, including NIS2 and UK critical infrastructure laws.
Responsbile for Information Risk Management across the IT function.
Operational Security Leadership
• Lead cybersecurity operations including Security Operations Centre (SOC), SIEM management, and incident response coordination.
• Oversee vulnerability management, patch management, and threat detection for both IT and OT systems.
• Partner with IT and OT teams to embed security across network infrastructure, cloud services, and field operations.
• Manage third-party security risk, including joint venture interfaces, vendors, and BPO service providers.
• Build, lead, mentor, and develop a high-performing cyber security team.
Risk, Awareness, and Culture
• Champion a strong security culture through education, awareness, and engagement.
• Lead cyber and IT risk assessments across the enterprise, producing mitigation plans and escalating risks appropriately.
• Act as a subject matter expert (SME) during audits, regulator reviews, and board reporting cycles.
Transformation and Transition
• Support the separation of IT estate fromlegacy systems, ensuring cyber risk is proactively managed during transition.
• Design and implement the foundational security architecture for a greenfield technology landscape, including secure cloud, identity management, and endpoint protection.
Qualifications & Experience
Required:
• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, or a related field.
• Minimum 10 years of experience in IT risk management or cybersecurity roles, including at least 3 years in leadership/management.
• Familiarity with security frameworks (NIST CSF, ISO 27001), regulatory requirements (NIS2, GDPR), and OT standards (IEC 62443, OG86).
• Strong vendor and stakeholder management skills.
Preferred:
• Professional certifications such as CISSP, CISM, or SANS GIAC.
• Deep understanding of both enterprise IT and industrial control systems (ICS/SCADA) in upstream energy.
• Proven experience in managing SOC operations, incident response, and threat intelligence.
What We Offer
• Opportunity to build a cybersecurity function in a high-impact role at a newly formed, agile energy company.
• Exposure to both enterprise and operational cybersecurity challenges in the UK’s most ambitious upstream JV.
With over 90 years' combined experience, NES Fircroft (NES) is proud to be the world's leading engineering staffing provider spanning the Oil & Gas, Power & Renewables, Chemicals, Construction & Infrastructure, Life Sciences, Mining and Manufacturing sectors worldwide. With more than 80 offices in 45 countries, we are able to provide our clients with the engineering and technical expertise they need, wherever and whenever it is needed. We offer contractors far more than a traditional recruitment service, supporting with everything from securing visas and work permits, to providing market-leading benefits packages and accommodation, ensuring they are safely and compliantly able to support our clients.
Cyber Security Manager employer: NES Fircroft
Contact Detail:
NES Fircroft Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Cyber Security Manager
✨Tip Number 1
Network with professionals in the cybersecurity field, especially those who have experience in industrial environments. Attend industry conferences, webinars, or local meetups to connect with potential colleagues and learn about the latest trends and challenges in cybersecurity.
✨Tip Number 2
Familiarise yourself with the specific cybersecurity frameworks mentioned in the job description, such as ISO27001 and NIST. Being able to discuss these frameworks in detail during interviews will demonstrate your expertise and alignment with the company's needs.
✨Tip Number 3
Prepare to showcase your leadership skills by gathering examples of how you've successfully managed teams or projects in the past. Highlight any experiences where you led cybersecurity initiatives or improved security posture in previous roles.
✨Tip Number 4
Stay updated on the latest cybersecurity threats and trends, particularly those affecting the energy sector. Being knowledgeable about current issues will not only help you in interviews but also show your commitment to staying ahead in the field.
We think you need these skills to ace Cyber Security Manager
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in cybersecurity management, particularly in industrial environments. Emphasise your leadership roles and any specific achievements related to cybersecurity strategy and governance.
Craft a Compelling Cover Letter: Write a cover letter that directly addresses the key responsibilities outlined in the job description. Showcase your understanding of cybersecurity frameworks like ISO27001 and NIST, and explain how your background aligns with the company's needs.
Highlight Relevant Certifications: If you have professional certifications such as CISSP, CISM, or SANS GIAC, make sure to mention them prominently in your application. These credentials can set you apart from other candidates.
Showcase Leadership Skills: In your application, provide examples of how you've built and led high-performing teams in the past. Discuss your experience in managing SOC operations and incident response to demonstrate your capability for this role.
How to prepare for a job interview at NES Fircroft
✨Showcase Your Leadership Skills
As a Cyber Security Manager, you'll need to demonstrate strong leadership abilities. Prepare examples of how you've successfully led teams in the past, particularly in high-pressure situations or during incidents. Highlight your experience in mentoring and developing team members.
✨Familiarise Yourself with Relevant Frameworks
Make sure you have a solid understanding of cybersecurity frameworks like ISO 27001 and NIST. Be ready to discuss how you've implemented these standards in previous roles and how they can be applied to the company's specific needs.
✨Prepare for Technical Questions
Expect technical questions related to security operations, incident response, and risk management. Brush up on your knowledge of SOC operations, threat detection, and vulnerability management. Being able to speak confidently about these topics will set you apart.
✨Demonstrate Your Strategic Thinking
The role involves shaping and implementing cybersecurity strategy. Be prepared to discuss your approach to developing a cyber strategy and how you would align it with business objectives. Think about how you would conduct threat assessments and manage compliance with regulations.
