Accessibility Links

Cyber Security Officer

  • Job reference: 913776
  • Location: Gloucester, Gloucestershire
  • Salary: GBP45000 - GBP60000 per annum
  • Job type: Permanent
  • Sector: Nuclear
  • Date posted: 13/04/2017

Main responsibilities:

  • Compliance with the Information Security requirements of the Nuclear Industries Security Regulations (NISR) 2003 (as amended)
  • To provide continual security improvements and provide monitoring to ensure that policies, procedures and controls are effective
  • Oversee the build and maintenance of technical security measures(including but not limited to encryption, remote access solutions etc.) accepting all information security into service when operationally ready - don't currently do this
  • To support third party suppliers as required to ensure internal controls are not compromised
  • Assist with the resolution of Information Security incidents and working to define and implement corrective actions where non-conformities have been identified
  • Keep abreast with new threats and emerging trends/issues
  • Carry out Surveillance, Inspections and Audits to ensure compliance with Government Information Security Standards
  • Issue formal and compelling Information Security direction and advise and third party suppliers
  • Ensure that contractors are aware of their legal obligation for reporting any breach, or suspected breach of security to ONR (through ) in accordance with NISR 2003, Regulations 22
  • Alt Crypto Custodian
  • Cyber Security SME to ensure alignment between IT/OT
  • Provide SME advise to DA Security Specialists
  • This post is the Information Technology Security Officer (ITSO) for Nuclear Power accredited IT networks.

Qualifications/Experience

  • Batchelor degree in computer science, engineering or Information Technology or relevant experience
  • Demonstrates a track record of success, achievement and learning in career to date, adding value within relevant positions
  • Demonstrable understanding and experience of the ISO27000 standards and experience in delivering ISO27001 certification
  • Proven experience delivering Information Security within large scale delivery programs and projects at a senior management level
  • Up-to-date knowledge and experience of security compliance issues and risks
  • Demonstrable experience in the conduct of risk assessments and security audits in order to achieve and maintain compliance
  • Experience of devising or playing a key role in contributing to policies/procedures
  • Evidence of continuous professional development. Post Graduate degree preferred in Information Security or professional qualifications such as CISM, CISSP, ITIL, CCP
  • Strong verbal and written communication to include excellent documentation and presentation skills
  • Planning and prioritisation skills
  • Problem solving and solution focussed
  • Consistently demonstrates behaviours aligned to values: safety, courage, integrity, collaboration and inspiration
  • Ability to learn, adapt and thrive, delivering value in a changing and evolving organisation
  • Influential with good stakeholder management and relationship skills
  • Flexibility and mobility to undertake business travel as required

Desirable:

  • A blend of both government and commercial experience is beneficial
  • An understanding and some experience of wider security requirements within personnel and physical security is beneficial
  • Knowledge and experience of working within the HMG GSC
  • In-depth knowledge and experience of Nuclear Security regulations and standards including the HMG Security Policy Framework
  • Familiarity with IT and networking hardware, e.g. servers, switches, routers, storage arrays is preferred
  • Demonstrable understanding and experience of the Civil Nuclear Security Regulations and Standards
  • An understanding of the UK Civil Nuclear Industry
  • Member of a relevant institute
  • International experience