Share this Job
Apply now »
Employment Type:  Full Time
Employment Period:  Permanent
Salary:  .

Gloucester, GB

Career Area:  Finance, Trading & Risk

EIS Security Lead

The Opportunity


#WeAreEDF and are leading the transition to a cleaner, low emission electric future, tackling climate change and helping Britain achieve net zero.    


Here at EDF UK our aim is to be the leading electricity company and global leader for low-carbon energy production.  EDF UK is the UK’s largest producer of low-carbon electricity, meeting around one-fifth of the country’s demand and supplies millions of customers and businesses with electricity and gas. 

We provide gas and electricity to 6 million residential customers and are the largest supplier to British businesses. We offers innovative energy systems for commercial customers and digital innovation for customers at home. EDF UK has also launched its own innovation accelerator, Blue Lab, which focuses on making customers’ lives easier.
To summarise we are the UK’s largest producer of low carbon electricity, the biggest supplier of electricity by volume in Great Britain and the largest supplier to British businesses.

Day to Day: 


  • Test, implement, deploy, maintain, and administer the cyber defence infrastructure hardware and software.
  • Analysis and development of the integration, testing, operations, and maintenance of systems security.
  • Conducting independent comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by an information technology (IT) system to determine the overall effectiveness of the controls.
  • Assist in identifying, prioritizing, and coordinating the protection of critical cyber defence infrastructure and key resources.
  • Ensure all systems security operations and maintenance activities are properly documented and updated as necessary.
  • Coordinate with Security Analysts and Engineers to manage and administer the updating of rules and signatures (e.g., intrusion detection/protection systems, antivirus, and content blacklists) for specialized cyber defence applications.
  • Perform cybersecurity testing of developed applications and/or systems.
  • Implement and maintain system security measures in accordance with established procedures to ensure confidentiality, integrity, availability, authentication, and non-repudiation.
  • Provide cybersecurity recommendations to leadership based on significant threats and vulnerabilities.
  • Work with stakeholders to resolve computer security incidents and vulnerability compliance.
  • Perform risk analysis (e.g., threat, vulnerability, and probability of occurrence) whenever an application or system undergoes a major change.
  • Support necessary compliance activities (e.g., ensure that system security configuration guidelines are followed, compliance monitoring occurs).

The Person


What does being a great EIS Security Lead mean?


  • Collaborative: Ability to function in a collaborative environment, seeking continuous consultation with other analysts and experts—both internal and external to the organisation—to leverage analytical and technical expertise.
  • Knowledgeable: of computer networking concepts and protocols, laws, regulations, policies, and ethics as they relate to cybersecurity and privacy
  • Innovative: Committed to challenging the way things are done to provide continuous improvement and development of skills and knowledge.
  • Ownership: Proactive and able to take initiative with minimal direction or supervision. 
  • Problem Solving: Always looking to solve the problem in the best possible way. 
  • Stakeholder Management: You will develop business relationships with stakeholders, perform a challenging range and variety of complex technical or professional work activities and undertake work which requires the application of fundamental principles in a wide and often unpredictable range of contexts. 
  • Leadership: We will expect you to demonstrate leadership, mentor more junior colleagues and take the initiative in keeping their skills up to date.
  • Adaptability:  Comfortable working with ambiguity and with willingness to test and experiment.
  • Proactive: A “can-do” approach, ability and willingness to quickly grasp and tackle new projects.

The Skills

The role will form part of our Enterprise information security function, within Enterprise IT. Operating within a federated IT Operating Model, which consists of Enterprise IT (EIT) and Business Unit IT delivery portfolios, EIT owns, secures, maintains and supports a portfolio of Enterprise IT services and provides functional leadership and support to the Business Units.  EIT aims to deliver the Enterprise IT services portfolio to the right quality and best value for EDF UK and its stakeholders.
The Enterprise IT operating environment is complex, meaning our stakeholders’ needs are constantly shifting and evolving, in several dimensions.

You will need to have:


  • An excellent awareness of the technology and best practice pertinent to their domain, and interest in maintaining that awareness
  • Proven ability to collaborate and communicate with both IT and business-facing colleagues
  • Capable of facilitating discussions across stakeholder groups and forming recommendations based on risks and organisational context.
  • Relevant degree or equivalent experience
  • Experience of designing, evaluating and maintaining security solutions in large complex business environments
  • Significant experience of working with third parties such as solutions vendors, outsourced and research partners
  • Experience of working with IT security operations, compliance, risk and governance practices
  • It is a requirement of this role that the post holder either holds or can obtain and maintain Security Check (SC) clearance

It would be great if you had:


  • An understanding of M365 Applications and security controls
  • An understanding of various IT development lifecycles and processes, and systems engineering methodologies
  • An appreciation of key utility industry concepts
  • Experience of working in regulatory environments
  • SAFe (Scale Agile Framework) qualified or aware
  • CISSP qualified or aware
  • AWS and Microsoft Azure qualified or aware

Competetive Salary & Benefits

We offer a competitive salary and benefits package, including a pension scheme, a wide range of flexible benefits to suit your lifestyle, and the opportunity to earn a bonus.  

Please let us know if you require flexible working arrangements by highlighting this on your application.  We’re happy to talk flex in line with the requirements of this opportunity.

Why EDF?

At EDF, everyone’s welcome. It’s a powerful statement of our intent to make sure we’re about the people who work with us – a rich and unique mix of backgrounds and experiences that’s vital to shaping a strong and fresh-thinking organisation like ours. Whoever you are and wherever you come from, we’ll embrace the difference you bring and give you opportunities to thrive and succeed.

Join us. Together, we’ll help Britain achieve net zero.

Job Segment: Engineer, Systems Engineer, Testing, Information Security, Engineering, Technology

Apply now »