Employment Type:  Full Time
Employment Period:  Permanent
Salary:  £55,000-£65,000
Location: 

London, GB Gloucester, GB Near Leiston, GB

Career Area:  Health, Safety & Security

Cyber Security Risk and Governance Manager (Sizewell C)

A career that will deliver change. Together, we’ll help Britain achieve net zero

 

Location: London. Hybrid working available. 


Employment Type: Permanent 


Salary: £55,000-£65,000

 

Closing date: Sunday 29th May 2022
 

The Opportunity

 

Are you looking for a career which is rewarding, at the cutting edge of project development and where you can really make a difference? Come and join our expanding Sizewell C (SZC) team and work on one of the most exciting projects in the UK, whilst being at the forefront of the UK’s climate change agenda and energy policy. The SZC Project is a ~£20bn nuclear new build project in Suffolk which is currently seeking planning approval and financing from HMG and investors, with a view to start construction in 2023. When completed, it will provide dependable electricity to 6 million homes for 60 years supporting our objective to help Britain achieve Net Zero by 2050.

 

As a Cyber Security Risk and Governance Manager, you’ll be responsible for identifying contracts which pose substantial nuclear and commercial business security risks to NNB Gen Co (Sizewell C). Coordinating requirements from security Intelligent Customer (IC) leads, you’ll ensure that End 2 End (E2E) security requirements are captured and established correctly within contracts, that any unaccounted scope is transferred back to the risk owner for resolution and that the delivery of the contract requirements is assessed.  

 

Our teams are set up to work flexibly, therefore you don’t have to live in London. If you’re able to travel to the London office to collaborate with your team and stakeholders when required, you can be based anywhere in the UK. We provide a full suite of IT equipment to ensure that our employees can work from home comfortably and effectively. 

 

The Role

 

We’re looking for someone to promote NNB Gen Co (SZC) security policies, procedures and requirements to procurement staff, contractors and third parties to improve security awareness and performance. 

 

Working in collaboration with the Contract Security Officers and the Incident Assurance manager within the Technical Services Organisation (TSO), you’ll decide how to track and report supply chain security performance using existing software or developing Sizewell’s software considering suitable tools available such as Power BI and Abriska.

 

The role will allow you ensure supply chain security assessments and requirements keep pace with the SZC project threat assessment; with specific reference to cyber, information security, operational technology (OT), communications, internet of things (IoT) and industrial IoT.

 

Working closely with the SZC Security Manager, you’ll ensure that the SZC project's overall security arrangements meet the required legislation, standards etc.

 

You’ll be able to identify any suppliers who continually fail to meet security and performance expectations as well as identifying critical assets and any over-reliance on single suppliers. 
 

The Skills

 

We’d love for you to have strong documentation writing skills required for the ongoing development of related compliance procedures.


It would be great if you have experience in providing security guidance to supply chain and undertaking assurance reviews of IT and operational technology (OT) systems support functions and procedures.


You may have good working experience of formal accreditation and risk assessment methodologies for IT and OT such as ISO27005, IEC 62443 and/or NIST 800-53.


You’re likely to be educated to degree level (or equivalent) or have a comparable level of practical experience.


You might have a recognised security or audit certification e.g. CISSP, CISA, ISO2700X auditor, ITPC Accreditor, CCP (SIRA/Accreditor/Auditor/ITSO) or similar.


Good working knowledge of applicable national and international standards and information security frameworks (ISO27001, HMG Security Policy Framework) and NCSC/CPNI security standards and guidance is beneficial.


An understanding of complex cyber and information security challenges, threats and risks is highly desirable.


Experience of defining, understanding and interpreting contractual security clauses and requirements (preferably in alignment with HMG and/or Civil Nuclear Information Security Standards) in delivery of 3rd party contracts, and assuring compliance with those requirements is advantageous. 


You must currently hold or be able to achieve NSV SC.

 

Power in Diversity

 

Sizewell C is a great place to work, where everyone is welcome.


To fulfil our commitment of doing the power of good for Britain, our ambition is to have a workforce which reflects and benefits the society we are part of and serve.  Every worker on SZC, wherever they are, should help to create and experience the right environment where everyone on the team understands, respects and embraces diversity with a culture where everyone is treated with equal respect and are all given equal access to opportunities.  By valuing the different points of view and experiences that having a diverse team brings, and by fostering an inclusive climate, we will create a great place to work and a more successful project. 


We create the right environment where people feel able to bring their whole selves to work. Whilst working together there is mutual trust and appreciation created through the building of meaningful relationships with one another.


Everyone is able to get the most from their work and the workplace, and in return, give their best.
 

Competitive Salary and Benefits

 

We’re dedicated to offering flexible benefits that support our people across all aspects of their lives and we’re delighted to offer a range of benefits to support our employees’ physical, emotional and financial wellbeing. 


In addition to a competitive salary, we offer a market-leading company pension scheme, paid holidays and a range of flexible benefits, such as: a company incentive bonus plan, health cover, cycle to work scheme, discounts and employee pricing.

 

Please let us know if you’d like to discuss flexible working arrangements by highlighting this on your application.
 


Job Segment: Risk Management, Supply Chain Manager, Manager, Supply, Procurement, Finance, Operations, Management