Cyber Security Engineer

Job title Cyber Security Engineer  Division Digital Location Hybrid - Clearwater Court - RG1 8DB
Contract type Permanent Full/Part-time Full-time Salary Competitive salary up to £67,000 per annum. Job grade B Closing date 14/11/2025

As a Cyber Security Engineer
, you will play a vital role in designing, implementing, and maintaining security controls across Thames Water’s IT and OT environments. You will be responsible for ensuring controls are effective, measurable, and aligned with business and compliance objectives, while driving continuous improvement in our cyber security posture. This includes managing operational procedures, reporting methodologies, and overseeing the operation of security technology platforms to deliver tangible risk reduction.

This role requires a deep understanding of security engineering concepts, infrastructure technologies, and best practices. The ideal candidate will have strong communication skills, a solid grasp of IT and OT systems, and a commitment to enhancing cyber resilience across the organisation.

• Collaborate with stakeholders to design, implement, and maintain security controls that meet business, compliance, and risk mitigation requirements.
• Own or provide consultation to security controls, ensuring continuous control effectiveness.
• Develop and manage operational procedures and reporting methodologies.
• Oversee security technology platforms, whether operated internally or through service providers.
• Monitor control performance, coordinate remediation, and drive continuous improvement.
• Automate operational procedures and reporting processes, integrating outputs into risk reporting frameworks.
• Work closely with IT and OT teams to ensure controls are implemented according to agreed baselines.
• Align control design with industry standards, regulations, and best practices such as NIS, ISO 27001, and GDPR.
• Support internal and external audits, reviews, and assessments of security controls.
• Identify and implement improvements to enhance control coverage and resilience.
• Provide expert advice on technology, best practices, and delivery models.
• Support integration of security controls into SIEM and SOC processes for improved visibility and response automation.
• Develop and present dashboards and metrics demonstrating measurable risk reduction and technical debt reduction.
• Contribute to the advancement of Thames Water’s strategic cyber capability roadmap and engineering maturity.

• Experience in designing, implementing, and maintaining security controls, including automation of operational procedures and reporting methodologies.
• Hands‑on knowledge of network, identity, host, and/or cloud‑based security technology platforms.
• Experience supporting internal and/or external information security audits.
• Strong understanding of IT and OT systems, infrastructure, and security best practices.
• Familiarity with security engineering technologies, including Microsoft Azure, Defender, and Sentinel.
• Ability to clearly explain complex IT and security concepts to non‑technical stakeholders.
• Strong analytical, problem‑solving, planning, and organisational skills.
• Degree in Cyber Security, Computer Science, Information Technology, Engineering, or a related field.
• Industry certifications such as CCSP, SSCP, CompTIA Security+, or SC‑200 are preferable.

• Experience in Security Engineering, control design, and implementation within an enterprise environment.
• Previous experience working in the water utility industry or a large, complex infrastructure‑based organisation.
• Experience supporting or implementing an Information Security Management System (e.g. ISO 27001).
• Hands‑on experience with reporting and analytics tools such as Power BI.
• Security engineering vendor or product certifications such as Certified Vulnerability Assessor (CVA), Microsoft Certified:
  Azure Security Engineer Associate, or Tenable.

• Competitive salary between £52,000 and £67,000 per annum, depending on experience.
• Annual Leave - 26 days holiday per year, increasing to 30…