System Engineer - Networks 2089

We are seeking a mid-to-senior Cybersecurity & Network Assurance Engineer to join a high-performing networks team supporting critical rail infrastructure in London.

This role will focus on cybersecurity governance, assurance, and technical documentation, ensuring networked systems meet customer, regulatory, and industry standards. You will play a key role in clearing an immediate backlog of assurance deliverables while providing technical oversight to junior engineers and supporting SIEM integration activities., Cybersecurity Governance & Assurance

• Produce and maintain:

• Cyber Security Management Plans (CSMP)

• Risk assessments and threat models

• Assurance and compliance documentation

• Control framework mappings

Align artefacts to client standards (TfL / Network Rail) and industry frameworks

Support continual improvement of cyber assurance processes Standards & Compliance

• Map controls and documentation to:

• ISO/IEC 27001

• IEC 62443 (OT security)

• Customer-specific rail standards

Ensure deliverables meet governance and audit requirements Network Security & Architecture Assurance

• Provide design assurance for:

• Secure communications

• Firewalls (e.g., Cisco, Juniper)

• Switching and routed network environments

Assess effectiveness of implemented security controls in networked systems SIEM Integration Support

• Produce documentation for SIEM onboarding:

• Data source identification

• Logging requirements

• Use-case and control alignment

Support assurance activities for SIEM integration (e.g., Microsoft Sentinel environments) Stakeholder & Team Engagement

• Act as a technical interface to client stakeholders
• Translate technical risk and assurance findings for non-technical audiences
• Provide guidance and quality oversight to junior engineers/graduate staff

Essential Experience

• Cybersecurity governance & assurance in enterprise or critical infrastructure environments
• Proven delivery of

• Risk assessments
• Threat modelling
• Cyber security management documentation
• Control framework mapping

Strong knowledge of ISO/IEC 27001 and IEC 62443

Solid understanding of network architecture and secure communications

Experience assessing firewalls, switching, and routed networks from a security perspective

Familiarity with SIEM concepts and onboarding processes (e.g., Microsoft Sentinel)

Ability to produce clear, client-aligned technical documentation

Experience working with stakeholders and presenting assurance outcomes Desirable Experience

• Experience in rail, transport, or OT environments
• Hands-on network configuration (Cisco, Juniper)
• Experience with network management and policy enforcement tools
• Knowledge of Windows Server architectures
• Prior contract/consulting experience
• Experience aligning to customer templates or London-specific standards, * HND, degree, or equivalent experience in IT, networking, or cybersecurity
• Cisco CCNA/CCNP (or equivalent experience)
• Security certifications such as CISSP, CompTIA CySA+, or similar (desirable)
• ITIL Foundation (desirable)

Clearance

• Must be eligible for BPSS clearance

Key Behaviours

• Strong written and verbal communication skills
• Ability to operate at mid-to-senior level with minimal supervision
• Comfortable guiding junior team members
• Able to work in a governance, assurance, and documentation-heavy role
• Collaborative approach in a multi-stakeholder environment