Cyber Security Engineer

Overview

As a Cyber Security Engineer, you will play a vital role in designing, implementing, and maintaining security controls across Thames Water's IT and OT environments. You will be responsible for ensuring controls are effective, measurable, and aligned with business and compliance objectives, while driving continuous improvement in our cyber security posture. This includes managing operational procedures, reporting methodologies, and overseeing the operation of security technology platforms to deliver tangible risk reduction. This role requires a deep understanding of security engineering concepts, infrastructure technologies, and best practices. The ideal candidate will have strong communication skills, a solid grasp of IT and OT systems, and a commitment to enhancing cyber resilience across the organisation.

What you'll be doing

• Collaborate with stakeholders to design, implement, and maintain security controls that meet business, compliance, and risk mitigation requirements.
• Own or provide consultation to security controls, ensuring continuous control effectiveness.
• Develop and manage operational procedures and reporting methodologies.
• Oversee security technology platforms, whether operated internally or through service providers.
• Monitor control performance, coordinate remediation, and drive continuous improvement.
• Automate operational procedures and reporting processes, integrating outputs into risk reporting frameworks.
• Work closely with IT and OT teams to ensure controls are implemented according to agreed baselines.
• Align control design with industry standards, regulations, and best practices such as NIS, ISO 27001, and GDPR.
• Support internal and external audits, reviews, and assessments of security controls.
• Identify and implement improvements to enhance control coverage and resilience.
• Provide expert advice on technology, best practices, and delivery models.
• Support integration of security controls into SIEM and SOC processes for improved visibility and response automation.
• Develop and present dashboards and metrics demonstrating measurable risk reduction and technical debt reduction.
• Contribute to the advancement of Thames Water's strategic cyber capability roadmap and engineering maturity.

Base location

Hybrid - Clearwater Court, Reading.

Working pattern

36 hours Monday to Friday.

What you should bring to the role

• Experience in designing, implementing, and maintaining security controls, including automation of operational procedures and reporting methodologies.
• Hands-on knowledge of network, identity, host, and/or cloud-based security technology platforms.
• Experience supporting internal and/or external information security audits.
• Strong understanding of IT and OT systems, infrastructure, and security best practices.
• Familiarity with security engineering technologies, including Microsoft Azure, Defender, and Sentinel.
• Ability to clearly explain complex IT and security concepts to non-technical stakeholders.
• Strong analytical, problem-solving, planning, and organisational skills.
• Degree in Cyber Security, Computer Science, Information Technology, Engineering, or a related field.
• Industry certifications such as CCSP, SSCP, CompTIA Security+, or SC-200 are preferable.

It would be great if you also had

• Experience in Security Engineering, control design, and implementation within an enterprise environment.
• Previous experience working in the water utility industry or a large, complex infrastructure-based organisation.
• Experience supporting or implementing an Information Security Management System (e.g. ISO 27001).
• Hands-on experience with reporting and analytics tools such as Power BI.
• Security engineering vendor or product certifications such as Certified Vulnerability Assessor (CVA), Microsoft Certified: Azure Security Engineer Associate, or Tenable.

What's in it for you?

• Competitive salary between £52,000 and £67,000 per annum, depending on experience.
• Annual Leave - 26 days holiday per year, increasing to 30 with the length of service. (plus bank holidays)
• Generous Pension Scheme through AON.
• Performance-related pay plan directly linked to company performance measures and targets
• Access to lots of benefits to help you take care of you and your family's health and wellbeing, and your finances - from annual health MOTs and access to physiotherapy and counselling, to Cycle to Work schemes, shopping vouchers and life assurance.

Who are we?

We're the UK's largest water and wastewater company, with more than 16 million customers relying on us every day to supply water for their taps and toilets. We want to build a better future for all, helping our customers, communities, people, and the planet to thrive. It's a big job and we've got a long way to go, so we need help from passionate and skilled people, committed to making a difference and getting us to where we want to be in the years and decades to come.

Disclaimer

Disclaimer: due to the high volume of applications we receive, we may close the advert earlier than the advertised date, so we encourage you to apply as soon as possible to avoid disappointment.