Senior Engineer (Cybersecurity)

Around the world, SYSTRA’s specialists plan, design, integrate, test, commission, project manage and deliver mass transit and mobility solutions that are relied on by more than 50 million people every day.

For more than 60 years, the Group has been committed to helping cities and regions contribute to their development by creating, improving and modernising their transport infrastructure with sustainability, accessibility and innovation at the heart of our designs. With over 10,300 colleagues globally and around 1000 in the UK & Ireland we are growing significantly and seeking out the very best talent to join the SYSTRA signature team and be part of leading the way in infrastructure design.

We currently have an opportunity for a Senior or Principal Cyber Security Engineer to join our growing our Cyber Security team within our Systems Engineering and Assurance discipline. This position will suit a committed and ambitious professional who can demonstrate strong leadership and interpersonal skills combined with commercial awareness and the ability to play their part in growing a dynamic high-performance team.

The Senior/Principal Cyberssecurity Engineer will work with the Team Lead (Security and Software Assurance) to provide the following to our clients, including:

• Supporting the Team Lead (Cybersecurity and software assurance), you will deliver cybersecurity solutions, to our rail & infrastructure clients, on projects from the Concept phase up to the Operation and Maintenance Phase, managing the cybersecurity governance and lifecycle activities and actively contribute to the creation of relevant evidence.
• Supporting the Team Lead (Cybersecurity and software assurance) in cybersecurity strategy definition.
• Maintain good working relationships with clients and ensure that their requirements are being fulfilled by the business.
• Be able to adapt to design challenges and find workable solutions that take into account quality, cost and other disciplines.
• Ensure that all relevant cybersecurity standards are being met throughout the cybersecurity process and liaise with the other disciplines teams and other cybersecurity engineers if any issues are identified.
• Support the management of Cybersecurity schedules and deliverables.
• Attend standards briefings run by the Team Lead (Cybersecurity and software assurance) and assist if required.
• Liaise with clients and ensure their requirements are effectively communicated to the team.
• Review deliverables, including technical documents and reports and assist in the preparation of expressions of interest and tenders.

Essential requirements for the role include:

• BSc in Cybersecurity, BSc in Computer Science, BSc in Computer Science Engineering or similar
• At least 3 years’ experience in OT cyber security and cyber security risk management
• Ability to independently define and manage cyber security strategy/planning and establish the OT cyber security governance
• Experience in Threat Identification and Cyber Security Risk Management (Analysis and Assessment) for complex systems
• Working knowledge with the major OT cyber security standards (including IEC 62443 series)
• Ability to support supply chain management and perform cyber security audits
• Experience in producing Zones and Conduits Partitioning Diagrams, Cyber Security Requirements definition and cyber security Assurance
• ISO 27005 / NIST 800-82 / NIST 800-53 Knowledge

Desirable requirements for the role include

• NIS / NIS2 knowledge
• Railway industry experience and TS 50701 Knowledge
• Understanding of Railway frameworks (e.g. EN 50126 / 9 or IEC 62278 and IEC 62425) and/or System engineering standards (e.g. ISO 15288, 12207, ..)