Job Description

ALink Recruitment are working with an engineering and project management consultancy, looking for a Cyber Security Engineer to work on rail projects. Previous experience working on rail projects would be beneficial but not essential.

1. Risk Assessment and Management:
- Identify and evaluate potential cyber threats in upgraded railway systems.
- Develop and implement strategies to mitigate risks in compliance with industry standards and TfL standards

2. System Security Integration:
- Collaborate with engineering teams to integrate security measures into new systems.
- Ensure controls are effective without compromising system performance.

3. Compliance and Standards Adherence:
- Ensure systems comply with cybersecurity regulations like NIS Regulations.
- Stay updated with evolving standards in the rail industry.

4. Security Testing and Validation:
- Conduct vulnerability assessments and penetration tests on new systems or oversee a service provider carrying it out.
- Validate all security measures before systems go live.

5. Training and Awareness:
- Provide cybersecurity training to line upgrade project staff.

6. Vendor and Third-Party Management:
- Assess and manage the cybersecurity practices and scope of vendors involved in the project.
- Ensure external parties meet TfL's security and project delivery standards.