Senior Information Security Consultant

You will lead a team providing Information Security expertise, advice, and guidance for all YTL Utilities (UK) group companies, supporting capability development, procurement, and delivery projects, and delivering capability that is ‘Secure by Design'. This role will be responsible for promoting, defining, and delivering information security best practices across the YTL Utilities (UK) Group companies.

What you'll do

• Lead a team of information security staff providing security services across the group companies, ensuring appropriate security guidance is given to stakeholders.
• Deliver audit support for external audits and information requests, from regulators such as the Drinking Water Inspectorate, Defra, to ensure clear communications with external authorities.
• Liaise with business stakeholders across the group to ensure engagements for new capabilities have appropriate security requirements embedded to ensure an efficient delivery.
• Manage the Information Security Management System and maintain its effectiveness for the Group companies as they evolve and external factors change.
• Produce management reports for escalation to the business stakeholders, regulators and other third parties, including known regulatory returns such as the NIS CAF.
• Work with the Technology and Operational Technology teams to ensure that existing security controls are effective, managed appropriately and drive value for security investment.
• Identify improvements to security controls, working with the wider security team to ensure that the business maintains or improves its security posture.
• Ensure that all Technology projects have the appropriate level of advice and guidance to ensure they are securely delivered with appropriate and measurable security benefits.
• Ensure the timely delivery of internal security audits by the team so that suitable levels of assurance can be provided to the business.
• Ensure that suitable security education is delivered to businesses, directly or indirectly, to continue to raise awareness of security issues and improve staff behaviours.

What you'll need

• Direct experience in information security practices and implementation, and experience in managing security in complex environments.
• Direct knowledge and experience of the following methodologies and standards:
• The Network & Information Systems (NIS) Regulations and associated Cyber Assessment Framework (CAF).
• GDPR (general data protection regulation) and DPA (data protection act).
• ISO27001:2022.
• PCI DSS (payment card regulations).
• Cyber Essentials (Plus).
• Excellent verbal, written communication, and negotiation skills - able to articulate views crisply and convincingly to a preferred course of action.
• A proven ability to successfully lead, motivate and direct staff to achieve goals and achieve business outcomes.

What you'll receive

• A combined pension contribution of up to 20%.
• Career progression and professional development opportunities.
• 25 days' holiday rising to 28 with length of service.
• The opportunity to buy up to ten days' holiday and sell up to five every year.
• A healthcare package that allows you to claim back healthcare costs.
• Life assurance of up to eight times your salary.
• A new electric car in exchange for part of your gross salary, subject to conditions.
• Cashback and discounts from more than 3,000 retailers.
• One paid volunteering day each year.
• Enhanced family leave and pay arrangements.
• An interactive health and wellbeing platform.
• Support from mental health first aiders.
• A £1,000 referral fee if you recommend someone to work for us.

Who we are

YTL UK is part of the international YTL Group based in Kuala Lumpur. The UK companies include:

• Wessex Water – one of the top-performing water and sewerage companies in England and Wales, serving 2.9 million people across the South West.
• YTL Developments – a major UK developer currently redeveloping a 350-acre former airfield into an award-winning, exciting mix of houses, apartments, schools, commercial space, restaurants and hotels, to make a truly sustainable new community.
• YTL Construction UK – a top 20 UK contractor providing fully integrated services to infrastructure, residential, commercial, industry, energy and environmental sectors.
• YTL Arena – the development and operation of an entertainment complex that includes a 19,000 capacity arena, conferencing and exhibition space.
• Plus a number of other retail, environmental and specialist businesses.

Our people tell us that YTL UK is a great place to work, which is why so many of them stay with us! You will have a unique opportunity to develop and progress your career within such a diverse group. We are passionate about diversity and inclusion – with that in mind, all applicants are welcome. We are delighted to have signed the Armed Forces Covenant and are a Disability Confident Employer. If you require reasonable adjustments to be made during the recruitment process, please inform a member of our Recruitment team.