Job Specifications
Job title: Cyber Security Engineer
Office location with Hybrid working: Hammersmith (3 days in office)
About The Role And The Team
As a business-critical new role into the business, you will support the Head of Cyber Security in developing, maintaining and delivering programme to improve our security posture and to align with our compliance and regulatory obligations, including Cyber Essentials, NCSC CAF and Telecoms Security Act (TSA). We are looking for a technical engineer with experience in translating regulatory requirements into BAU behaviours, cyber governance, risk and compliance and someone who has strong stakeholder management is also key.
You will work with internal teams provide technical and tactical advice to many areas of the business (e.g. Procurement, HR, Business Compliance, Architecture, IT Infrastructure and Design) to create and implement security policies, standards, processes and controls in line with current regulations and standards, e.g., TSA, Cyber Essentials Plus and NCSC CAF.
What will you be doing?
Governance and Compliance
Work with internal and external teams providing technical and tactical advice and support the implementation of a required governance and control frameworks, including compliance monitoring and assurance.
Work with regulatory and compliance teams to provide technical support and responses to requests for information from our regulators, insurer, auditors and third parties.
Work with internal and external teams to manage and retain our certification, schedule audits, and ensure non compliances are remediated, on-going.
Develop and deliver technical security standards against compliance framework requirements.
Risk Management
Monitor, Measure and Maintain cyber security technical risks.
Drive cyber risk remediation activities.
Active participation in identifying technical security risks requiring mitigation.
Technical and Tactical
Support Vulnerability Management activities across a broad technology estate (servers, user endpoints, network devices, in-house applications).
Support Penetration/Security Testing activities and follow-up on resulting remediation tasks.
Active participation in security tooling proofs of concept (PoCs).
Pro-actively seek to improve technical security controls.
Exhibit a curious & inquisitive nature e.g. pro-actively research new technologies.
Adopt an attitude of – what might a bad actor do here, and what can we do to stop them?
Ability to translate technical risks/topics into meaningful business language/adapt language to your target audience.
What we are looking for?:
Cyber Security or equivalent Degree or Professional certifications such as CISSP, CISM, CRISC
Understanding of identifying technical risk and securitycompliance opportunities, threats and vulnerabilities within the telecom industry
Previous experience of Information Security implementation, development or operations
High level of experience of Information Security Risk Management
Strong understanding of the technologies and architectures used to support information security
Hold a current UK Security Clearance or be willing to undergo security vetting
Experience in supporting a Vulnerability Management function
Previous Penetration Testing/Security Testing experience - DESIRABLE
Previous experience or understanding of the NCSC CAF and TSR - DESIRABLE
Why work for us?
We're in our customer's corner and our vision is to be the UK's most loved and desired broadband provider, that shows the way broadband is done!
Awarded Broadband Provider of the Year 2023 Uswitch Telecoms Awards, as voted for by 20,000 customers, plus Fair Terms Gold Award 2023. We're also very proud to have been awarded Great Place to Work Certification (2022-23) and UK's Best Workplaces for Wellbeing (2022).
Going beyond the expected
Whatever We're Doing – Whether We're Liaising With Property Professionals, Delivering Our Network, Or Installing In a Customer's Home, Going Beyond The Expected Is The Benchmark For Everything We Do. How We Work Is Shaped By Our Three Culture Principles
We work smarter, together
We stay focused
We strive for excellence
Some of our key Benefits
Competitive salary
Global Remote working for up to 2 week per year for those who are able to work remotely
25 days' paid holiday increasing each year, to a max of 35
Extra days off for your birthday, moving home, wedding/civil partnership and to volunteer
Private medical Insurance provided by AXA health
Life assurance giving you cover of 4 times your base salary
Partnership with the Kings Trust
Our pension scheme matches your contributions up to 4%
Retail offers — discounts from hundreds of recognisable brands
Free Hyperoptic broadband if you live in a Hyperoptic area
Enhanced pay for new parents
We're committed to providing equal opportunities to all applicants and employees. In fact, this is at the heart of our culture and values. We welcome applications from candidates from all walks of life.
What happens ne
About the Company
Hyperoptic was founded in 2011 to shake up the broadband market, and we're proud to be forever in our customers' corner. Unlike some providers, we deliver full fibre - which means we bring our fibre cabling all the way to the building. And that means an ultra-reliable connection with top speeds over 48x faster than the UK's average upload. But it's not just our broadband that's top-notch. With more 5-star Trustpilot ratings than Sky, BT and Virgin Media combined, we also know a thing or two about gold-standard service. No wo...
Know more