Cyber Security Engineer (4581)

Laing O'Rourke


Date: 3 weeks ago
City: Dartford
Contract type: Full time
Cyber Security Engineer

Location: Office based in Dartford

Laing O'Rourke has set targets to transform its business. Our deliver 2025 mission is to become the recognised leader for innovation and excellence in the construction industry, to achieve this will require exceptional information, technology and data capabilities to enable all parts of the Laing O'Rourke business.

Position Purpose

Working in a global Cyber Security Team, the Cyber Security Engineer works closely with the Cyber Security Architect to produce detailed designs and implement all cyber security tools globally.

The Cyber Security Engineer works with stakeholders from across the business, projects and IT to research, design and deploy cyber security controls to meet business, compliance or security requirements whilst addressing new and emerging threats in line with the business risk tolerance and business risk management strategies.

The position requires a seasoned engineer with a detailed working knowledge of information security technologies, Infrastructure, policies, and processes in their application to a global business.

Key Accountabilities

  • Research, design and implements cyber security solutions that comply with applicable security policies and standards to reduce business risk.
  • Work with Laing O'Rourke's business units and with other risk functions to identify security requirements, using methods that may include risk and business impact assessments.
  • Collaborate with the Cyber Security Architect on security roadmaps based on sound architecture practices that ensure Laing O'Rourke can maintain and achieve relevant industry security certifications. Act in an advisory role in application development or business/organisational projects to assess security requirements and controls as per policies and risk exposure.
  • Keeping abreast of potential and emerging cyber security threats, vulnerabilities, and control techniques and the trade-offs required to manage the different levels of risk appetite and risk exposure across the business.
  • Develop and maintain security architecture artifacts (designs, templates, standards, baselines) that can be used to leverage security capabilities in projects and operational teams. Collaborate on IT projects to ensure that security issues are addressed throughout the project life cycle (Secure-by-Design).
  • Researches and assesses new threats and security alerts and recommends remedial actions. Play an active part in responding to and resolving critical security incidents (Prepare, Identify, Contain, Remediate, Recover) – Cyber Operations team handle day-to-day
  • Work with key suppliers, partners and vendors to drive maximum value and security benefit from security services and solutions. Review security technologies, tools and trends to make recommendations to the security team / leadership for use based on security, financial and operational metrics.

Desired Capabilities & Behaviours

  • Experience with common information security regulations, certifications and management frameworks, such as UK Cyber Essentials, European GDPR, Australian Essential 8, National Institute of Standards and Technology (NIST) and ISO 27001
  • Excellent technical knowledge of mainstream operating systems and security technologies (firewalls, honeypots, web application firewalls, SIEM, EDR, Vulnerability scanners, content filtering, etc.)
  • Knowledge of common vulnerabilities and exploitation techniques and methods available for application and system technology security testing.
  • Ability and willingness to work in a global team that collaborates closely with Australia – Early morning (7am) meetings
  • Knowledge and understanding of information risk concepts and principles as a means of relating business and project needs to security controls
  • Has the ability to interface with, and gain the respect of, stakeholders at all levels and roles in the business
  • The ability to understand business strategy and how it relates to the application of cyber security and controls within Laing O'Rourke. An understanding of the business operations and end user impact of cyber security controls.
  • Excellent written and verbal communications skills with the ability to communicate security and risk-related concepts to technical and non-technical audiences.
  • A driver and implementer who possesses the poise and ability to act calmly and competently in high-pressure, high-stress situations.
  • Knowledge of Regulations, Standards, and Compliance around cyber security. Audit, compliance, or governance experience is preferred.

Education & Experience

  • Minimum 5-8 years of experience in a combination of enterprise information security and/or cyber security functions.
  • Proficiency with security frameworks, standards and best practices for compliance (NIST, ISO27001, Cyber Essentials, Essential 8)
  • Knowledge of best practices of IT security hardware and software, security suites, identity and access management, and encryption
  • CISSP, CISM, CISA, CRISC preferred.

About Us

Laing O'Rourke are an international engineering and construction company delivering state-of-the-art infrastructure and buildings projects for clients in the UK, Middle East and Australia.

Certainty, reliability, quality – this is what our clients want. And at Laing O'Rourke, we have more than 150 years of experience delivering it. Laing O'Rourke's story is one of energy, passion, ambition, people and teamwork. We harness the power of our experience, stretching back over a century and a half to deliver certainty for our clients.

As part of the Disability Confident scheme, we would like to enable access to candidates with long term health conditions and disabilities through the ‘Offer an interview scheme'. This supports applicants that meet the essential criteria by offering an interview for the advertised position. Please let us know prior to interview what adjustments are required as well as discussing how we can support you in the workplace.

We want to ensure our recruitment process is accessible to all. If you need the application form in an alternative format or you would like to know more about our recruitment process, please email [email protected]

How to apply

To apply for this job you need to authorize on our website. If you don't have an account yet, please register.

Post a resume

Similar jobs

Band 5/6 Annex 20 Radiographer

Dartford & Gravesham NHS Trust, Dartford
2 weeks ago
As part of an expansion to our Radiology Services we are looking for enthusiastic individuals to come and join our dynamic Radiology Team at Darent Valley Hospital. We are looking for Band 5/6 Radiographers.The successful candidates will be based at Darent Valley Hospital and Gravesend Radiology departments working in normal hours, along with out of hours as part of the...

Delivery Driver

UPS, Dartford
2 weeks ago
Explore your next opportunity at a Fortune Global 500 organization. Envision innovative possibilities, experience our rewarding culture, and work with talented teams that help you become better every day. We know what it takes to lead UPS into tomorrow—people with a unique combination of skill + passion. If you have the qualities and drive to lead yourself or teams, there...

Senior Civil / Structural Engineer - Technology & Innovation (4941)

Laing O'Rourke, Dartford
3 weeks ago
Are you passionate about Technology and Innovation?Would you consider a role within one of the most vibrant and diverse areas of Laing O'Rourke?Then we'd love to hear from you!!The OpportunityLaing O'Rourke's Technology + Innovation Function have an exciting new role within their Digital Bridges Team. The role sits within the Infrastructure DfMA workstream and will balance construction product development and...