Share this Job
Apply now »
Employment Type:  Full/Part Time
Employment Period:  Permanent
Salary:  £35,000 - £50,000 per annum Depending on experienc

Gloucester, GB

Career Area:  Data, Tech & IT

Information Security Auditor

Security Auditor, Gloucester (Barnwood), £35,000 - £50,000 per annum Depending on experience (flexible) & Benefits.

A career that will deliver change. Together, we’ll help Britain achieve net zero


Contract Type: Permanent, full time
Location: Barnwood 
Closing date: 24th Dec 2021 


The Opportunity

We are currently looking to recruit an excellent opportunity for an Information Security Auditor. 


If successful you will be responsible for delivery of activities in order to support the information security objectives across the licensees. These activities are required to ensure regulatory and EDF compliance for the award and ongoing risk management of contracts where third parties are accessing sensitive nuclear information or presenting a business risk to the organisation. 


Please note that due to the nature of the position you will be required to obtain National Security Vetting (NSV) Security Check (SC) level clearance is a condition of employment.

The Person


Your day to day responsibility will include to: 


•    Promote Information Security policy, procedures and practice to staff, contractors and third parties, to ensure an Information Security aware workforce and provide compliance with Regulatory requirements and agreed good practice.
•    Act as an SME to ensure appropriate cyber security measures are incorporated in agreements with third parties.
•    Deliver third party cyber security assessments during the supplier onboarding and renewals process consistently and timely, ensuring risks are accurately identified and captured.
•    Create reports and dashboards to enable decision making.
•    Lead in the implementation of automation and tooling that would lead to efficiencies.
•    Provide appropriate investigation, coordination and reporting to make certain that Information Security findings are followed up and addressed appropriately.
•    Assist with the development of strategies and solutions to mitigate identified Information Security risks and to assure the maintenance of our accredited systems.
•    Maintain awareness of current Security technology and possible threats to enable licensees to implement appropriate controls to minimise risk.
•    Perform formal Information Security audits to ensure that risks posed to the environments of the licensees are correctly identified and appropriate mitigations selected.
•    As required, monitor, review and inspect facilities, systems and networks for possible security vulnerabilities to provide assurance internally and externally that sufficient controls are in place.

The Skills


Knowledge, Skills, Experience:


•    Good working knowledge of applicable international standards and information security frameworks (ISO27001, ISO27017, GDPR, Cyber Essentials Plus).
•    Experience of conducting audits and/or assurance activities in a Regulated sector/environment.
•    Aware of HMG Security Policy Framework and NCSC/CPNI security standards and guidance.
•    Aware of the variety of information security challenges, threats and risks.
•    Aware of risk assessment methodologies including ISO27005, NIST and IRAM2.
•    Strong documentation writing skills required to communicate findings and requirements to non-security audiences
•    Excellent written and oral communication skills
•    Great tenacity with an enthusiasm for problem solving and willingness to learn and develop.




•    A recognised security or technical certification is desirable e.g. CISMP, CCNA, Security+, CEH.

Competitive Salary & Benefits


We offer £35,000 - £50,000 per annum salary dependant on experience level and benefits package, including a pension scheme, a wide range of flexible benefits to suit your lifestyle, and the opportunity to earn bonus.  


Please let us know if you require flexible working arrangements by highlighting this on your application.  We’re happy to talk about flexibility in line with the requirements of this opportunity.


Why EDF?


#WeAreEDF and are leading the transition to a cleaner, low emission electric future, tackling climate change and helping Britain achieve net zero.  


We are leading the UK's nuclear renaissance, we’re constructing a new nuclear power station at Hinkley Point C, with plans for new power stations at Sizewell C in Suffolk and Bradwell B in Essex.  Around a fifth of the UK's electricity is generated by our eight nuclear power stations, helping power our customers' homes and businesses.  


At EDF, everyone’s welcome. It’s a powerful statement of our intent to make sure we’re about the people who work with us – a rich and unique mix of backgrounds and experiences that’s vital to shaping a strong and fresh-thinking organisation like ours. Whoever you are and wherever you come from, we’ll embrace the difference you bring and give you opportunities to thrive and succeed.

Join us. Together, we’ll help Britain achieve net zero.

Job Segment: Information Security, Audit, Cisco, Risk Management, Nuclear, Technology, Finance, Energy

Apply now »