Governance and Assurance Lead (Cyber)
About The Role Ready to make a real impact on the safety and effectiveness of IT services within Nuclear Operations? Want to lead governance and assurance activities that keep our systems secure and compliant? At EDF, Success is Personal – and with us, your career journey is yours to shape. As our Cyber Governance and Assurance Lead, you’ll play a pivotal role in developing and implementing governance frameworks, managing assurance activities, and guiding IT changes to meet regulatory and legal requirements. Your expertise will help safeguard operational safety and business effectiveness across Nuclear Operations. This role offers flexibility with travel to our sites across the UK when needed – typically once or twice a month. We welcome applications from across the UK. What You’ll Be Doing
- Leading assurance activities on contracted services to ensure compliance with ONR regulations and Nuclear Operations policies
- Defining, implementing, and maintaining a penetration testing framework
- Managing and performing penetration tests and remediating findings
- Overseeing categorisation of physical and information assets against security clearance levels
- Creation and maintenance of security policies and procedures
- Definition of information security requirements based on recognised industry best practice
- Leading IT governance and assurance activities, including auditing of technical controls
- Managing penetration testing frameworks and remediation processes
- Ensuring compliance with regulatory and security standards
- Overseeing access control and privileged access management
- Building strong relationships with contractors and external regulators
- Translating technical and cyber security details to a broader audience
- Understanding security best practice for both Cloud and on-premise environments