Cyber Security Consultant

At Jacobs, we’ll inspire and empower you to deliver your best work so you can evolve, grow and succeed – today and into tomorrow. With more than 55,000 people in 40+ countries, working at Jacobs offers an exciting range of opportunities to develop your career within a supportive and diverse team who always strive to do the right thing for our people, clients and communities.

People are Jacobs’ greatest asset, and we offer a competitive package to retain and attract the best talent.

In addition to the benefits you’d expect, UK employees also receive free single medical cover and digital GP service, family-friendly benefits such as enhanced parental leave pay and free membership of employee assistance and parental programmes, plus reimbursement towards relevant professional development and memberships. We also give back to our communities through our Collectively program which incorporates matched-funding, paid volunteering time and charitable donations.

Work-life balance and flexibility is a key focus area for Jacobs. We’re happy to discuss hybrid, part-time and flexible working hours, patterns and locations to suit you and our business.

About the Opportunity

We are looking for people who are ready to take their cyber security career to the next level and make the most of opportunities to work on a diverse and exciting portfolio of projects. You’ll join an experienced team that has the agility and energy of a start-up, but with all the benefits and support of the wider Jacobs organisation.

Our Cyber Security Consultant role will provide you with an environment to grow as a professional through exposure to a wide range of opportunties. You will work with the team to assess IT/OT environments across a wide range of sector, and then design and deliver cyber security solutions address risks and support secure and resilient digital transformation across information and operational technology environments.

Reporting to the Head of Cybersecurity, you will perform IT and OT cyber security consultancy and security engineering work for National Infrastructure, Government, Intelligence, and Defence clients.

We have a strong team culture at Jacobs where every member strengthens the team with their own experience, so even if you feel you don’t have experience in everything listed below, we’d still like to hear from you.

Experience
o At least 4 years’ Cyber Security work experience (with a significant focus on Operational Technology during that time)

Education
o Higher education qualifications in a relevant subject

Certifications
o Cybersecurity & Infrastructure Security Agency (CISA) Industrial Control Systems (ICS) Training
o AttackIQ - MITRE ATT&CK
o SANS Global Industrial Cyber Security Professional (GICSP)
o Certified Information Systems Security Professional (CISSP)
o Microsoft Azure Fundamentals (AZ-900)

Disciplines
o Practical experience of engineering environments, including safety cases
o Practical experience of developing IT and/or OT cyber security assessment approaches to ensure pro-active identification of threats, leading into proactive delivery of Jacobs’ cyber security services to clients
o Experience of undertaking cyber security risk assessments in OT environments and providing a risk mitigation strategy to the client
o Understanding of how OT environments, and systems within, function and how best to apply security practices to protect those systems
o Understanding of control system design considerations with emphasis on operational safety and the availability/security of operating environments across multiple sectors such as Energy (Oil & Gas, Nuclear), Transportation (Rail, Road), Utilities (Electrical, Water)
o Ability to identify security risks and to provide risk mitigations and recommendations to clients
o Understanding of design considerations with emphasis on operational safety and the availability/security of operating environments

Technologies
o Working knowledge and hands-on experience in a variety of operating systems ranging from Windows NT to Windows 10 and Linux Distributions
o Working knowledge and practical experience of IT environments
o Working knowledge and hands-on practical experience of Operational Technology environments including DCS, EWS, HMI, IIoT, PLC, RTU, SCADA, SIS, etc.
o Experience of security engineering and associated solutions (Endpoint Protection, IDS/IPS, Firewalls, etc.) for IT and/or OT environments
o Working knowledge and understanding of networking technologies including architectures, key components, and common IT/OT protocols
o Understanding of cloud computing e.g., Azure

Standards & Frameworks
o EU NIS Directive
o ISA/IEC 62443 Series / ISO 27000 Series
o MITRE ATT&CK
o NIST Cyber Security Framework (CSF)
o HMG Information Assurance Standard No. 1 – Technical Risk Assessment Method
o HMG Information Assurance Standard No. 2 – Risk Management and Accreditation of Information Systems
o Office for Nuclear Regulation (ONR) Security Assessment Principles, Technical Assessment Guides, and supplementary guidance

Sectors
o Experience working within infrastructure sectors such as Energy (Oil & Gas, Nuclear), Transportation (Rail, Road), Utilities (Electrical, Water)

General
o A passion for security
o Excellent presentation and written skills.
o Ability to analyse and break down complex problems
o Currently hold, or ability to hold, SC clearance
o Ability to work in a team and independently
o UK domestic and International travel may be required at times

Our Culture

Our values stand on a foundation of safety, integrity, inclusion and diversity. We put people at the heart of our business and we truly believe that by supporting one another through our culture of caring, we all succeed. We value positive mental health and a sense of belonging for all employees. Find out more about life at Jacobs.

We aim to embed inclusion and diversity in everything we do. We know that if we are inclusive, we’re more connected, and if we are diverse, we’re more creative. We accept people for who they are, regardless of age, disability, gender identity, gender expression, marital status, mental health, race, faith or belief, sexual orientation, socioeconomic background, and whether you’re pregnant or on family leave. This is reflected in our wide range of Global Employee Networks centred on inclusion and diversity – ACE, Careers, Enlace, Harambee, OneWorld, Prism, Vetnet, and Women’s – find out more about our employee networks here.

Jacobs partners with VERCIDA to help us attract and retain diverse talent. For greater online accessibility please visit www.vercida.com to view and access our roles. As a Disability Confident employer, we will interview all disabled applicants who meet the minimum criteria for a vacancy. We welcome applications from candidates who are seeking flexible working and from those who may not meet all the listed requirements for a role

If you require further support or reasonable adjustments with regards to the recruitment process (for example, you require the application form in a different format), please contact the team.

Your application experience is important to us and we’re keen to adapt to make every interaction even better. We welcome feedback on our recruitment process and if you need more from us before deciding to join Jacobs then please let us know.