Address
Form of work
SalaryJob Description
In Team Digital, we’re planning for a future where the technology solutions we co-create and design enable us to achieve our goal to protect our greatest natural resource and allow our customers, communities and the environment to thrive.
As a team, our vision is to create an everyday digital experience for the people we serve - our customers - by putting them at the heart of everything we do. As part of our award-winning team you’ll help the business become an intelligent, connected organisation in order to deliver our digital transformation and turnaround.
We are seeking a Cyber Security Risk and Compliance Lead who will support promoting a strong Cyber Security culture across the organisation and strengthening our defensive capabilities to protect our systems, data and continued business operations from cyber attacks. They play an integral role in protecting our organisation against external and internal threats to maintain running our business operations.
What you will be doing as a Cyber Security Risk and Compliance Lead
What you should bring to the role?
We want to bring together a team of brilliant tech minds with game changing ideas. We’re looking for people who will help us re-imagine the way we work and the way we get things done:
Working Hours - 36 hours per week
What’s in it for you?
At Thames Water, our purpose is crystal clear - to deliver life’s essential service so our customers, communities and planet can thrive.
Water is life’s great leveller. Every living thing needs it, every single day. From people to plants, birds to bees, farms to factories, we all need it to thrive, and we’re committed to taking care of it for us all.
But keeping water flowing is becoming harder. From scorching summers to wetter winters, extreme weather affects everything from our pipes to our local rivers. We must keep millions more kettles boiling, public services operating, washing machines spinning, showers running and more, so every drop is more precious than ever. Are you ready to play your part?
Working at Thames Water
At Thames Water, we recognise that people are at the heart of our business. To help us succeed in providing life's essential service, we need a range of skills and capabilities, representative of society throughout our business.
We seek to attract and retain a cultural mix of people who can offer different but complementary attitudes, values, talents, and knowledge. We understand the importance of appreciating and harnessing the unique skills, experiences, backgrounds, and differences that each individual brings.
Our over-arching diversity and inclusion aim is to ensure Thames Water is a diverse and inclusive great place to work. We encourage applications from everyone and offer extra support for those who need it throughout the recruitment process.
Find out more about working at Thames Water.
When a crisis happens, we all rally around to support our customers. As part of Team Thames, you’ll have the opportunity to sign up to support our customers on the frontline as an ambassador. Full training will be given for what is undoubtedly an incredibly rewarding experience. It’s also a great opportunity to learn more about our business, meet colleagues and earn some extra money along the way.
Disclaimer: due to the high volume of applications we receive, we may close the advert earlier than the advertised date. We encourage you to apply as soon as possible to avoid disappointment.
As a team, our vision is to create an everyday digital experience for the people we serve - our customers - by putting them at the heart of everything we do. As part of our award-winning team you’ll help the business become an intelligent, connected organisation in order to deliver our digital transformation and turnaround.
We are seeking a Cyber Security Risk and Compliance Lead who will support promoting a strong Cyber Security culture across the organisation and strengthening our defensive capabilities to protect our systems, data and continued business operations from cyber attacks. They play an integral role in protecting our organisation against external and internal threats to maintain running our business operations.
What you will be doing as a Cyber Security Risk and Compliance Lead
- Lead cyber risk management across the enterprise, ensuring that a framework for identification, assessment and mitigation exists and is implemented and maintained.
- Responsible for ensuring the operating model for Cyber Security Risk management is defined, shared, agreed and operates effectively with other risk stakeholders, including enterprise risk, and digital risk.
- Develop and maintain a Security Risk register.
- Select and develop a cyber risk assessment methodology, standards, and procedures.
- Develop and maintain a framework for monitoring compliance, integrating existing Cyber Security solutions (e.g. vulnerability scanning tools).
- Develop and maintain a compliance reporting capability, and ensure it is integrated with our service desk ticketing system.
- Embed risk assessment methodology into key security functions such as architecture, project management and engineering.
- Liaise and coordinate with threat and vulnerability management function to ensure vulnerabilities arising from issues of technical non-compliance are escalated and addressed.
- Develop and maintain dashboards that track the overall risk posture of the organisation, creating actionable insights.
- Support compliance with relevant industry standards, regulations, and best practices, such as GDPR, NIS and ISO 27001.
- Perform periodic baseline cyber maturity assessments to measure strategic progress against plan.
What you should bring to the role?
We want to bring together a team of brilliant tech minds with game changing ideas. We’re looking for people who will help us re-imagine the way we work and the way we get things done:
- A truly digital mindset. Open to collaboration. Open to risk. Open to new ways of doing things.
- Obsessed with data. Obsessed with excellence.
- People who think and behave differently to the way we do. People who don’t want to just be another cog in the machine.
- You will ideally have a degree in Cyber Security, Computer Science, Information Technology, Engineering, or related field and/or equivalent industry experience.
- Experience in information security, especially in a Cyber Security Risk analysis role.
- Strong knowledge of risk assessment methodologies as applied to Cyber Security.
- Strong problem-solving and troubleshooting skills.
- Ability to identify and assess the severity and potential impact of risks. Communicate risk assessment findings to risk owners outside the cybersecurity team in a way that consistently drives objective, fact-based decisions about risk that optimise the trade-off between risk mitigation and business performance.
- An ability to apply original and innovative thinking to produce new ideas.
- An understanding of business needs and commitment to delivering high-quality, prompt and efficient service to the business.
- An ability to effectively influence others to modify their opinions, plans or behaviours.
- Experience of performing risk assessments in the water industry or other utility, where operational technology is prevalent.
- Security certifications such as CISSP, CISM, SSCP, etc.
- Risk management certifications such as the Institute of Risk Management, ISO31000, ISF IRAM2.
Working Hours - 36 hours per week
What’s in it for you?
- Competitive salary up to £50,000 per annum
- 26 days holiday per year increasing to 30 with the length of service (Plus bank holidays)
- Contributory pension – Defined Contribution - Maximum of 12% -2x employee contribution
- Personal Medical Assessments – Open to all once a year
- Wider benefits scheme including our benefits hub, which is packed full of offers and information to save you money and support your wellbeing
At Thames Water, our purpose is crystal clear - to deliver life’s essential service so our customers, communities and planet can thrive.
Water is life’s great leveller. Every living thing needs it, every single day. From people to plants, birds to bees, farms to factories, we all need it to thrive, and we’re committed to taking care of it for us all.
But keeping water flowing is becoming harder. From scorching summers to wetter winters, extreme weather affects everything from our pipes to our local rivers. We must keep millions more kettles boiling, public services operating, washing machines spinning, showers running and more, so every drop is more precious than ever. Are you ready to play your part?
Working at Thames Water
At Thames Water, we recognise that people are at the heart of our business. To help us succeed in providing life's essential service, we need a range of skills and capabilities, representative of society throughout our business.
We seek to attract and retain a cultural mix of people who can offer different but complementary attitudes, values, talents, and knowledge. We understand the importance of appreciating and harnessing the unique skills, experiences, backgrounds, and differences that each individual brings.
Our over-arching diversity and inclusion aim is to ensure Thames Water is a diverse and inclusive great place to work. We encourage applications from everyone and offer extra support for those who need it throughout the recruitment process.
Find out more about working at Thames Water.
When a crisis happens, we all rally around to support our customers. As part of Team Thames, you’ll have the opportunity to sign up to support our customers on the frontline as an ambassador. Full training will be given for what is undoubtedly an incredibly rewarding experience. It’s also a great opportunity to learn more about our business, meet colleagues and earn some extra money along the way.
Disclaimer: due to the high volume of applications we receive, we may close the advert earlier than the advertised date. We encourage you to apply as soon as possible to avoid disappointment.
