Information Security Officer (Risk Managment)

We’re champions of the North West and we’re proud that it’s our electricity network that connects communities and helps keep the electricity flowing every minute of every day, from when you wake up to when you fall asleep and all the hours in between.

A key part of the UK’s journey to net zero carbon is the revolution of our electricity industry to enable clean, green economic growth. As the North West’s electricity network operator, it’s our responsibility to lead the way, help the region decarbonise and pave the way for the growth of renewable energy and a sustainable energy future for all.

We’re proud that in December 2024 we were named Utility of the Year by Utility Week magazine who said we punched above our weight and used innovation to solve some of the industry’s most difficult challenges. Come and be part of our team and make a difference.

Together we have the energy to transform our communities. We are switched on. We are adaptable. We take pride.

Our Information Security team has a fantastic opportunity for an Information Security Officer Risk Management to join them in Preston.

Our role

As an Information Security Officer you will become a trusted cyber security risk advisor, ensuring the business is compliant against security policy, acting as advisory, collaborating with stakeholders and management to assess risks, review and advise ratings for IT/OT/ Physical Cyber risks and support business coordinators in assessing their risk position.

What we’re looking for

• Proven IT experience with experience in an information security officer role or similar risk/ security audit type role;

Certifications:

• Certification in Information Security Management (CRISK/ CISM/COMPTIA Security+). This is not a replacement for experience
• OneTrust Platform experience preferred
• NIS/ NIST/ISO27001 audit experience preferred

The Information Security Officer must have the following:

• The ability to communicate and build strong relationships with business functions across ENWL, work effectively with external partners, and manage stakeholder risk engagement sessions;
• A background in an information security type role with real-world experience of cyber security risk management;
• Experience reviewing risks to ensure they are clear, understandable, developing metrics for tracking at risk board;
• Experience of using a centralised application risk management platform, and business applications;
• Experience of assessing vulnerability management platform data, and interpreting attack scenarios;
• Experience of interpreting policies, procedures, standards, and guidelines;
• The ability to articulate security risk simply and effectively with business managers and business stakeholders;
• An awareness of information security related law and regulations such as GDPR and NIS Regulations;
• Previous experience of working within a regulated organisation, preferably Utilities, Energy sectors;
• An awareness of cyber security frameworks and standards. I.e. NCSC CAF, NIST, ISO 2700x series, CIS;
• An understanding of different security testing strategies, with ability to support.

What we’re offering

As a vital team member and in return for your expertise, inclusive approach and commitment, we'll provide a favourable salary and the chance to join a passionate and welcoming team. We are committed to ensuring our people are supported and are proud of our reward and benefits offer, which includes:

• An annual bonus scheme
• 25 days annual leave increasing with length of service
• Private Healthcare
• An employee rewards portal offering discounts on several well-known brands
• A market-leading contributory pension scheme
• Employee assistance programme
• Opportunity for professional development through our L&D function.

Our people are important to us and we’re passionate about creating a great place to work where we can all be ourselves, reach our full potential and build long lasting careers. We’re striving to increase diversity of thought and talent in our people and to recruit highly skilled workforce that’s representative of the communities we serve. For us, embracing our differences is what makes us stronger.

Should you require any additional support with your application, or any adjustments please contact our Recruitment team at or on (option 2)

Any offer made will remain conditional until pre-employment checks are complete to a level deemed satisfactory by Electricity North West. Due to the of this role, the following pre-employment checks will be required; references from previous employers, Disclosure and Barring Service (DBS), Financial and BS7858 checks and a Drug & Alcohol test.

We reserve the right to close this vacancy early.

We don't accept speculative CVs from agencies. Any received we will assert ownership of the candidate and no fee will be payable.