OT Information Security Specialist

Overall, you will be responsible for general information and cyber security; planning for regulatory compliance, supporting operations connectivity, dealing with cyber attacks and assisting on audits. Day to day this role will involve:

• Writing & reviewing policies, standards, and processes - creating and updating
• Responding to security related incidents
• Planning for proactive projects in the InfoSec space
• Protecting Southern Water's assets from cyber-attacks
• Monitoring, hunting and defending from threats
• Reviewing architectural solutions
• Assessing 3rd party cyber security maturity
You will be responsible for:
• Documenting and updating, as appropriate the information security policy, standards and processes ensuring these are communicated and actively considered during solution and service design
• Conducting security assessments for Industrial Control Systems
• Monitoring, auditing and reporting on compliance to IT security standards: highlighting compliance breaches or potential risks
• Monitoring and actioning requests & queries to the OT Information Security Team
• Participating in strategic planning for the deployment of ICS technologies and program enhancements
• Providing advice and practical assistance on information security risk and control throughout the organisation.
• Promoting security awareness to all staff
• Vulnerability management reporting ensuring patching policies and process in place and that these are applied in a regular and controlled manner
• Researching and tracking information about current security threats and potential vulnerabilities
• Participating in ongoing quality assurance activities during the development and implementation stages of the IT security initiatives
• Maintaining and managing of security systems/devices
• Responding and reporting on NIS and DWI compliance and complete compliance submissions (e.g. DWI CAF)
• Visiting sites across the south of England to carry out Cyber Security assessments and improvements
  
  You will be an established Information Security Specialist who has had exposure to Critical National Infrastructures and the complexities and regulations of such organisations. You will be able to take a 'birds eye view' of how what you do, affects the wider organisation. You will be able to liaise and build rapport with stakeholders at all levels.
You will have:
• Experience in each of the following functional areas - Identity & Access Management, Network Security, Integration Security, Data Protection and Recovery
• Experience of threat assessment and vulnerability management across ICS
• Experience of Critical National Infrastructure
• General knowledge of control system protocols
• Full driving licence and access to a car to travel to sites across the south of England
  
  This role will be full time Monday to Friday with a hybrid approach to working between our Durrington (Worthing) office and home.
We are offering a salary of up to £75,000 per annum depending on skills and experience as well as other benefits.