Security Assurance Specialist
Role details
Job location
Tech stack
Job description
- Support the development and delivery of cyber security assurance requirements for operational and project deliverables, aligned to Network Rail's security assurance framework, regulatory requirements, and standards.
- Execute security assurance activities, including surveys, audits, verifications, and self-assessment, in accordance with the assurance framework.
- Assist in delivering the security assurance plan to demonstrate compliance with regulatory, legal, and Network Rail standards.
- Conduct security threat and risk assessments to identify control gaps and support risk management.
- Present audit recommendations to management and monitor action plans addressing non-conformities and observations.
- Support security engineering accreditation activities across the full lifecycle of railway systems.
- Assist with investigations into reported cyber security incidents.
- Help maintain compliance with Network Rail's adopted security assurance certifications and standards.
- Promote security awareness and training across the business.
Requirements
Do you have experience in Telecommunication?, * Relevant technical degree and or certification(s) e.g., Security Plus, CISA, GIAC.
- Experience of information/cyber security management and/or consulting in a complex technology environment.
- Demonstrable experience of one or more cyber security domains such as security operations, telecoms network security or industrial control systems.
- Demonstrable experience of undertaking risk assessments and business impact assessments in complex technology environments.
- Knowledge of information security management systems e.g., ISO27001.
- Comfortable in delivering presentations to technical and non-technical stakeholders.
- Excellent communication skills with the ability to work as part of security team.
Desirable
- Working toward or hold ISO27001 Lead Auditor.
- Membership of relevant professional organisation(s) aligned to information security or security assurance (ISACA, ISC², BCS etc.).
- Understanding of telecoms infrastructure.
- Understanding of industrial control systems security.
- Experience of working in the Railway industry.
Benefits & conditions
If you're ready to make a real difference, we'd love to hear from you!
We offer excellent benefits, including:
Generous maternity, paternity, and adoption leave to support our employees during significant life moments.
Flexible/hybrid working arrangements.
Generous annual leave (28 days plus statutory days), with the option to buy/sell days.
Defined benefit pension scheme.
75% subsidy on rail and underground season tickets.
Up to 75% off leisure travel for you and your family (subject to terms and conditions)
️ Interest-free travel loan for train and car park season tickets.
Discounts at stations with your Network Rail pass.
️ Volunteer leave to make a positive impact.
Healthcare Scheme, GymPass discounts, Cycle to work plus more.
Plus more ..
Brief Description
Join us in shaping the future of railway security.
Technology is transforming how we deliver safe, reliable services for millions of passengers and freight customers. As part of our Digital, Data and Technology directorate, you'll help protect critical systems and enable innovation across the network.
We're committed to building a diverse team and encourage applications from women and underrepresented groups. With flexible working options, generous family leave, and industry-leading benefits, this is your chance to make a real impact in a role that matters.
Why Join Us?
- We value diverse perspectives and encourage applications from underrepresented groups in technology.
- Flexible working options to support work-life balance.
- Opportunities for professional development and career progression.
- A culture that prioritises inclusion, belonging, and innovation.
