Information Security - London, United Kingdom - Balfour Beatty

Balfour Beatty
Balfour Beatty
Verified Company
London, United Kingdom

1 week ago

Tom O´Connor

Posted by:

Tom O´Connor

beBee Recruiter
Description

About the role
SZC is ultimately owned by two shareholders, EDF and HMG. The shareholders hold their
investment in SZC through NNB Holdings Company (SZC) Limited. Over the course of the
current shareholding arrangements the shareholdings of the two shareholders will change.

The shareholders will fund SZC up until Financial Close through equity in line with the approved schedule
and budget. SZC's business is to design, finance, construct, commission, operate, maintain, and eventually
decommission the nuclear power plant and related infrastructure (including activities relating to hydrogen,
direct air capture and/or desalination) at Sizewell C in Suffolk. The principal objectives of the current
development phase of the SZC project are to agree and implement the Capital Raise Plan, including
completing an equity and debt raise, agree the core supply chain contracts and obtain the regulatory permits
and licences required for the construction phase of the Project (including the core environmental permits
and nuclear site licence).

Prior to the government investment decision SZC operated as part of EDF in the Nuclear Development
business unit and was staffed by EDF colleagues and independent contractors who are now in the process
of transferring to the direct employment of SZC. It is setting itself up as an organisation capable of
delivering a new nuclear power plant, from investment case and funding, to construction, commissioning,
operations, maintenance and decommissioning.

The SZC construction programme has a technical and commercial business case predicated on technical
replication of Hinkley Point C. EDF will be an important supplier of nuclear capability for the SZC
Programme from its established nuclear business footprint in the UK.

Key stakeholders are:
UK Government, relevant Government departments and agencies including Treasury
BEIS, EDF, Financial investors and institutions, Regulators, Alliance partners and local communities.

What you'll be doing
The Information Security Professional is required to satisfy the Alliance obligations under Sizewell
C Works Information, PAS 1192:2 and other Government standards such as Cyber Essentials to
complement the tasks required to achieve a business wide good cyber security posture.

  • Management of the Information Security and Cyber Security Steering Team
  • Primary point of contact for all Information and Cyber Security items relating to our Civil Works
Alliance

  • Understanding of Alliance and Alliance Partner IT systems and processes with a view to enhancing
these from a security and GDPR point of view

  • Promotion of good cyber security practices with alignment to recognised frameworks such as
ISO27001 and UK Cyber Essentials

  • Agree and Maintain the Alliance Security Posture.
  • Creation or input to security principles, standards and execution/management plans
  • Work with the wider security team to implement and monitor cyber security controls
  • Stay current with and maintain knowledge of cyberattacks and counter measures
  • Schedule penetration tests and interpret results in the given context of the overarching security
posture to ensure any mitigations are prioritised and implemented

  • Lead on regular vulnerability assessments with a view to closing off or mitigating any identified
problems.

  • Host regular information and cyber security meetings with key stakeholders covering notable
incidents, key risks and changes in the regulatory and threat landscape

  • Identify information security training/awareness material and appropriate delivery mechanisms to
place good cyber security at the heart of everything we do

  • Feed into the alliance risk register

Who we're looking for
Essential

  • Security Clearance Status
  • A good blend of key IT technologies skills to ensure the challenges of the role are met
  • SIEM and logging systems
  • Pen testing techniques and tooling
  • Vulnerabilities Identification
  • Ability to interpret, deal with and lead on cyber security incidents
  • Good negotiating and influencing skills
  • Good project/programme management skills
  • Strong customer focus
  • Good understanding of IT and cyber security
Essential

  • Familiarity with ISO 27001 and controls
  • Familiarity with UK GDPR
  • Familiarity with SANS 20 critical security controls and UK Top 10/Cyber Essentials

Why work for us

Day in, day out, our teams deliver some of the UK's most ambitious, exciting and meaningful projects; developing, building and maintaining the vital infrastructure that supports national economies and strengthens communities.


Why join us?


As if contributing to and supporting work that makes life better for millions wasn't rewarding enough, we offer a full range of benefits too.

You'll have the freedom to shape the package that's right for you and your life.

Here are some of our key benefits:

  • Smart working, giving you more flexibility such as staggered start and finish times, with up to 40% remote working, where roles allow.
  • 2
More jobs from Balfour Beatty
See all jobs of Balfour Beatty