ALink Recruitment are working with an engineering and project management consultancy, looking for a Cyber Security Engineer to work on rail projects. Previous experience working on rail projects would be beneficial but not essential. 

1. Risk Assessment and Management:

- Identify and evaluate potential cyber threats in upgraded railway systems.

- Develop and implement strategies to mitigate risks in compliance with industry standards and TfL standards



2. System Security Integration:

- Collaborate with engineering teams to integrate security measures into new systems.

- Ensure controls are effective without compromising system performance.



3. Compliance and Standards Adherence:

- Ensure systems comply with cybersecurity regulations like NIS Regulations.

- Stay updated with evolving standards in the rail industry.



4. Security Testing and Validation:

- Conduct vulnerability assessments and penetration tests on new systems or oversee a service provider carrying it out.

- Validate all security measures before systems go live.



5. Training and Awareness:

- Provide cybersecurity training to line upgrade project staff.



6. Vendor and Third-Party Management:

- Assess and manage the cybersecurity practices and scope of vendors involved in the project.

- Ensure external parties meet TfL's security and project delivery standards.