Back to search
Cyber Risk Management Lead
Location: Immingham or London
Contract Type: Permanent
Salary: £70,000 - £75,000
About the Role
An established power generation company is seeking a Cyber Risk Management Lead to enhance and oversee its cyber risk management framework across Operational Technology (OT) and Information Technology (IT) domains. This role is critical in ensuring security governance, compliance, and risk mitigation while working closely with regulators, senior stakeholders, and cross-functional teams.
This hybrid role can be based in Immingham or London, with travel to other sites as required (3 days in the office).
Key Responsibilities
- Lead cyber risk assessment activities across IT and OT environments, correlating outputs into strategic risk tracking.
- Manage the cyber security risk toolkit, including threat modelling, attack trees, and scenario-based exercises.
- Develop and implement cyber security policies, processes, and staff training aligned with Secure by Design principles.
- Oversee first-line security operations, including outsourced 24/7 SOC management.
- Define and manage cyber threat intelligence requirements.
- Provide cyber risk consultancy for business development projects, ensuring regulatory compliance.
- Contribute to supply chain risk management, assessing supplier security risks.
- Act as Deputy NIS Reporting Officer (NRO), ensuring compliance with NCSC's Cyber Assessment Framework (CAF) and NIS regulations.
- Support cyber incident response efforts, managing containment, remediation, and business continuity.
Rullion celebrates and supports diversity and is committed to ensuring equal opportunities for both employees and applicants.
