System Engineer - Networks 2089

System Engineer

Location: East London (Hybrid – office/home)
Rate: £450–£500 per day (Inside IR35)
Duration: Initial 3–4 month contract (backlog clearance) with strong potential for extension or permanent conversion
Client Environment: Major London Rail customers (TfL, Network Rail – station systems)

Overview

We are seeking a mid-to-senior Cybersecurity & Network Assurance Engineer to join a high-performing networks team supporting critical rail infrastructure in London.

This role will focus on cybersecurity governance, assurance, and technical documentation, ensuring networked systems meet customer, regulatory, and industry standards. You will play a key role in clearing an immediate backlog of assurance deliverables while providing technical oversight to junior engineers and supporting SIEM integration activities.

This is a hybrid East London role with no trackside/site access required.

Key Responsibilities

Cybersecurity Governance & Assurance

• Produce and maintain:
• Cyber Security Management Plans (CSMP)
• Risk assessments and threat models
• Assurance and compliance documentation
• Control framework mappings
• Align artefacts to client standards (TfL / Network Rail) and industry frameworks
• Support continual improvement of cyber assurance processes

Standards & Compliance

• Map controls and documentation to:
• ISO/IEC 27001
• IEC 62443 (OT security)
• Customer-specific rail standards
• Ensure deliverables meet governance and audit requirements

Network Security & Architecture Assurance

• Provide design assurance for:
• Secure communications
• Firewalls (e.g., Cisco, Juniper)
• Switching and routed network environments
• Assess effectiveness of implemented security controls in networked systems

SIEM Integration Support

• Produce documentation for SIEM onboarding:
• Data source identification
• Logging requirements
• Use-case and control alignment
• Support assurance activities for SIEM integration (e.g., Microsoft Sentinel environments)

Stakeholder & Team Engagement

• Act as a technical interface to client stakeholders
• Translate technical risk and assurance findings for non-technical audiences
• Provide guidance and quality oversight to junior engineers/graduate staff

Essential Experience

• Cybersecurity governance & assurance in enterprise or critical infrastructure environments
• Proven delivery of:
• Risk assessments
• Threat modelling
• Cyber security management documentation
• Control framework mapping
• Strong knowledge of ISO/IEC 27001 and IEC 62443
• Solid understanding of network architecture and secure communications
• Experience assessing firewalls, switching, and routed networks from a security perspective
• Familiarity with SIEM concepts and onboarding processes (e.g., Microsoft Sentinel)
• Ability to produce clear, client-aligned technical documentation
• Experience working with stakeholders and presenting assurance outcomes

Desirable Experience

• Experience in rail, transport, or OT environments
• Hands-on network configuration (Cisco, Juniper)
• Experience with network management and policy enforcement tools
• Knowledge of Windows Server architectures
• Prior contract/consulting experience
• Experience aligning to customer templates or London-specific standards

Qualifications & Certifications

• HND, degree, or equivalent experience in IT, networking, or cybersecurity
• Cisco CCNA/CCNP (or equivalent experience)
• Security certifications such as CISSP, CompTIA CySA+, or similar (desirable)
• ITIL Foundation (desirable)

Clearance

• Must be eligible for BPSS clearance

Key Behaviours

• Strong written and verbal communication skills
• Ability to operate at mid-to-senior level with minimal supervision
• Comfortable guiding junior team members
• Able to work in a governance, assurance, and documentation-heavy role
• Collaborative approach in a multi-stakeholder environment