Information Security Officer (Operational Technology)

We’re champions of the North West and we’re proud that it’s our electricity network that connects communities and helps keep the electricity flowing every minute of every day, from when you wake up to when you fall asleep and all the hours in between.

A key part of the UK’s journey to net zero carbon is the revolution of our electricity industry to enable clean, green economic growth. As the North West’s electricity network operator, it’s our responsibility to lead the way, help the region decarbonise and pave the way for the growth of renewable energy and a sustainable energy future for all.

We’re proud that in December 2024 we were named Utility of the Year by Utility Week magazine who said we punched above our weight and used innovation to solve some of the industry’s most difficult challenges. Come and be part of our team and make a difference.

Together we have the energy to transform our communities. We are switched on. We are adaptable. We take pride.

Our Information Security team has a great opportunity for an Information Security Officer Operational Technology to join them in Preston.

Our role

The primary purpose of the role is to ensure the Operational Technology (OT) area of business is compliant against security policy.

As the Information Security Officer, you will act as advisory, collaborating with stakeholders and management to improve security posture, review policies, and assist with incident, security reviews and ensure business processes comply with ENWL cyber security policy frameworks.

What we’re looking for

• Proven experience of IT/OT experience, with demonstrable experience in an information security officer role or similar risk/ security audit type role.

Certifications:

• Certification in Information Security Management (ISC2 CISSP, CRISK/ COMPTIA Security+ Network+);
• NIST, IEC 62443 experience required;
• ISO27001 audit experience preferred

The Information Security Officer must have the following:

• The ability to communicate and build strong relationships with business functions across ENWL, work effectively with external partners, and manage stakeholder risk engagement sessions;
• Confirmed background in an information security type role with real-world experience of reviewing policies and acting as advisory to the business on a day-to-day basis monitoring security compliance across diverse business functions, specifically focused and exposure to Operational Technology, (OT) environments;
• Experience of using a centralised application risk management platform, and business applications;
• Capacity to assist in incidents and support business and HR investigations into data breaches or misuse, ensuring lessons learnt are captured and adopted;
• Experience of assessing vulnerability management platform data, and interpreting attack scenarios;
• Experience of maintaining policies, procedures, standards, and guidelines
• Capability to become policy subject matter expert, and provide advice and guidance across the organisation in support of security compliance against policies;
• Ability to articulate security risk simply and effectively with business managers and business stakeholders;
• An appreciation of business drivers, security tools, technologies, and security best practice;
• Understanding of information security related law and regulations such as GDPR and NIS Regulations;
• Previous experience of working within a regulated organisation, preferably Utilities, Energy sectors;
• Exposure to cyber security frameworks and standards. I.e. NCSC CAF, NIST, ISO 2700x series, CIS;
• Understanding of different security testing strategies, with ability to support.

What we’re offering

As a vital team member and in return for your expertise, inclusive approach and commitment, we'll provide a favourable salary and the chance to join a passionate and welcoming team. We are committed to ensuring our people are supported and are proud of our reward and benefits offer, which includes:

• An annual bonus scheme
• 25 days annual leave increasing with length of service
• Private Healthcare
• An employee rewards portal offering discounts on several well-known brands
• A market-leading contributory pension scheme
• Employee assistance programme
• Opportunity for professional development through our L&D function.

Our people are important to us and we’re passionate about creating a great place to work where we can all be ourselves, reach our full potential and build long lasting careers. We’re striving to increase diversity of thought and talent in our people and to recruit highly skilled workforce that’s representative of the communities we serve. For us, embracing our differences is what makes us stronger.

Should you require any additional support with your application, or any adjustments please contact our Recruitment team at or on (option 2)

Any offer made will remain conditional until pre-employment checks are complete to a level deemed satisfactory by Electricity North West. Due to the of this role, the following pre-employment checks will be required; references from previous employers, BS7858 checks and a Drug & Alcohol test.

We reserve the right to close this vacancy early.

We don't accept speculative CVs from agencies. Any received we will assert ownership of the candidate and no fee will be payable.