operations. Define cybersecurity requirements within the client's environment, including rail-specific systems, legacy OT, and modern industrial platforms. Support developing and delivering security risk assessments, threat models, and control frameworks following the relevant standards. Contribute to the production and review of assurance artefacts, including security cases, risk … OT) environments, including SCADA systems, field devices, industrial protocols, and control network architectures. Firm grounding in cybersecurity principles for critical infrastructure, including threat modelling, riskanalysis, defence-in-depth, and zero-trust architectures. Demonstrated ability to define, implement, and assure security controls across complex OT/IT systems … stakeholder engagement skills, with the ability to liaise confidently across engineering, programme delivery, assurance, and regulatory audiences. Ability to produce high-quality documentation, including risk assessments, technical guidance, assurance artefacts, and audit-ready deliverables. Familiarity with UK cybersecurity regulations and sector guidance, including the NIS Regulations, CNI expectations, and More ❯
systems. Define cybersecurity requirements within the client's environment, including rail-specific systems, legacy OT, and modern industrial platforms. Support developing and delivering security risk assessments, threat models, and control frameworks following the relevant standards. Provide expertise on OT protocols, SCADA systems, field devices, and network architecture relevant to … OT) environments, including SCADA systems, field devices, industrial protocols, and control network architectures. Firm grounding in cybersecurity principles for critical infrastructure, including threat modelling, riskanalysis, defence-in-depth, and zero-trust architectures. Demonstrated ability to define, implement, and assure security controls across complex OT/IT systems … evidence preparation, control mapping, and client/regulator interaction. Understanding supply chain security considerations, including software and hardware assurance, secure procurement, and third-party risk management. Experience Experience in cybersecurity roles, focused on operational technology (OT), control systems, or industrial environments. Proven track record in delivering cybersecurity outcomes within More ❯
systems. Define cybersecurity requirements within the client's environment, including rail-specific systems, legacy OT, and modern industrial platforms. Support developing and delivering security risk assessments, threat models, and control frameworks following the relevant standards. Provide expertise on OT protocols, SCADA systems, field devices, and network architecture relevant to … OT) environments, including SCADA systems, field devices, industrial protocols, and control network architectures. Firm grounding in cybersecurity principles for critical infrastructure, including threat modelling, riskanalysis, defence-in-depth, and zero-trust architectures. Demonstrated ability to define, implement, and assure security controls across complex OT/IT systems … evidence preparation, control mapping, and client/regulator interaction. Understanding supply chain security considerations, including software and hardware assurance, secure procurement, and third-party risk management. Experience Experience in cybersecurity roles, focused on operational technology (OT), control systems, or industrial environments. Proven track record in delivering cybersecurity outcomes within More ❯
Area Commuter Rail project and will support other projects as the need arises. We'll look to you for system and sub-system cybersecurity risk analyses, design, and assurance activities. Specifically: Analysis of project security needs against applicable standards and regulations to identify target security levels and risk … another industrial sector. Knowledge of IACS security standards and a working knowledge of information security standards such as ISO2700x, NIST etc. Familiarity with security risk management and IACS reference security architectures. A relevant cybersecurity certification. On a more personal level, you will also need to be: Adaptable and open More ❯
