Cyber Security Manager - West Midlands

Cyber Security Manager

Duration - 3 months initially

Location - Birmingham

IR35 - Outside

The Cyber Security Manager shall prepare and provide a cyber security management plan ("Cyber Security Management Plan") which describes, amongst other things, WMT's processes for:

• Meeting the requirements of cyber security relating to the Maintainer's obligations under maintenance agreements with EWR and XC
• The development and implementation (if necessary), and the operation, maintenance and continual improvement of a Cyber Security Management System (CSMS)
• Audit and testing of CSMS compliance with the security standards and such other security requirements which are notified by the Operator from time to time
• Compliance with the principles of ISO/IEC 27001 (Information Security Requirements Specification) in respect of the Services
• Compliance with the principles of ISO/IEC27002 (Information Security Code of Practice) in respect of the Services
• Meeting its obligations in the event of an actual, potential or attempted Breach of Security
• Meeting its obligations to co-operate, assist and co-ordinate security with the Operator
• Complying with the provisions in this Agreement relating to information and physical security
• Identifying and selecting personnel in WMT who are responsible for the implementation of the Cyber Security Management Plan
• Managing any security risks posed by subcontractors in accordance with this Agreement
• Developing, implementing and maintaining security measures in relation to all aspects of the Services and all processes associated with the provision of the Services.

The ideal candidate will understand Operational Technology and the security required to manage it effectively, understand specific standards including NIS Directive, TS 50701, IEC 62443 and IEC 63452.

It will be beneficial if candidates understood on-train systems such as TCMS, PIS, CCTV, APC, ASDO, OTDR.