Cyber Security Engineer
Staines-Upon-Thames, Middlesex, United Kingdom
Wood
With 35,000 professionals, across 60 countries, Wood is one of the world’s leading consulting and engineering companies operating across Energy and Materials markets.Wood Digital Consulting (DC) is currently recruiting for a Cyber Security Engineer to support our UK projects.
This is a hybrid role that can be based anywhere in the UK, mobility and travel to customer sites and face to face meetings with colleagues will be expected as required.
Must be able to pass HMG Baseline Personnel Security Standard (BPSS) check.
We are looking for an experienced Cyber Security Engineer to manage cyber security needs of our solutions as well as 3rd party solutions deployed by Wood. The engineer will be responsible for discovering vulnerabilities and risks in networks, software systems and data centres with ongoing vulnerability scans, monitoring network data, and ensuring hardware and software applications are updated. The role will primarily focus on workflow and deployment for solution for the Digital Integration service line. The role will also provide the same service for the wider System Integration service line.
The role requires being able to rapidly engage with clients and stakeholders across Wood to understand their problems and, through [client] presentation, show how with our solutions, can solve these problems, and provide value, while maintaining strong cyber security. This candidate will be working with lead cybersecurity engineers to collect and prioritize cyber security requirements from ongoing projects, proposals, prospects, and overall strategy and drawing out the required functionality of our products, together with execution / workflow methodology and standardisation in delivery.
The candidate will also interface with the R&D / product management, responsible for defining any cyber security requirements, reviewing proposed enhancements (in terms of relevant standards applicable and overall IT risks). The role will be responsible for communicating extracting these requirements from the client and communicating with the relevant internal team.
- Support the Lead Engineers with development and implementation of Cybersecurity strategy and initiatives for the System Integration group and aligning them to evolving threat landscape
- Support in carrying out gap analysis and audits to ensure alignment of contractor documentation with Client requirements / standards
- Participating in risk assessment workshops to ensure alignment with Client’s risk management framework
- Support in evaluating client’s security posture, identify vulnerabilities, weaknesses, and areas for improvement
- Prepare detailed written reports and communicate findings to clients
- Develop new Cyber Security Policies and Procedures aligned with the business / Client goals
- Stay up to date with the latest security trends, threats, and best practices
- Be a champion for cyber security for internal and partner solutions associated with Wood’s Digital Twin solution(s)
- Collaborate with Wood Product Managers to analyse the competitive land scape to determine strengths and weaknesses of our services/solutions and that of our partners to contribute to the business roadmap
- Collaborate with cross-functional teams to contribute innovation programs and assist in the implementation of new security solutions leveraging AI
- Provide IT risk support for proposal development and costing activities
- Provide support to standardising project execution / workflow across regions
- Technical and business representation of relevant solutions in conferences and / or lead Product webinars, Industry Panels, whitepapers, and publications
Essential:
- Good level of experience in similar role
- Hands on experience of using cybersecurity tools
- Good knowledge and understanding of cybersecurity standards, data protection frameworks, and maintaining compliance
- Multi sector knowledge and global project experience in relevant areas
- Identifying, defining, and solving client problems
- Excellent verbal and written communication skills
- Strong understanding of digital twin solution architectures
Desirable:
- Good knowledge of process automation, dynamic/real-time systems, and relevant technologies
- Good knowledge and experience in implementing security practices and controls related to architecture, governance, risk, and compliance management
- Good knowledge and experience with vulnerability management, risk management, compliance, and penetration testing tools
Qualifications
Essential:
- Minimum degree-level qualification in engineering, science, computer science, cyber security, or mathematics
- Relevant cybersecurity certifications like ISO 27001 or similar
Desirable:
- Relevant postgraduate qualification
- Certified on ISA/IEC 62443 series of standards
Wood is a global leader in consulting and engineering, helping to unlock solutions to critical challenges in energy and materials markets. We provide consulting, projects and operations solutions in 60 countries, employing around 35,000 people. www.woodplc.com
Diversity Statement We are an equal opportunity employer that recognises the value of a diverse workforce. All suitably qualified applicants will receive consideration for employment on the basis of objective criteria and without regard to the following (which is a non-exhaustive list): race, colour, age, religion, gender, national origin, disability, sexual orientation, gender identity, protected veteran status, or other characteristics in accordance with the relevant governing laws.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Automation Compliance Computer Science Governance IEC 62443 ISO 27001 Mathematics Monitoring Pentesting R&D Risk assessment Risk management RMF Strategy Vulnerabilities Vulnerability management Vulnerability scans
Perks/benefits: Conferences
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open DevOps-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs