Job description
At Turner & Townsend we’re passionate about making the difference – we are committed to delivering Sustainable Net Zero outcomes for our clients, helping our people to realize their potential, and doing our part to create a prosperous society.
Every day we help our major global clients deliver ambitious Net Zero programmes from over 112 offices worldwide.
Digital Security is one of the fastest growing areas of risk and opportunity across every one of the sectors we work in – as an organisation we are currently prioritising the provision of defensive rather than offensive consulting services. The successful candidate will bring industry standard knowledge and experience, with the ability to look to the future and see how we should develop what we offer to our clients. They will be able to work across our infrastructure portfolio, who have daily cyber security threats, and an increasing demand for secure digital transformation strategies, governance advice, and implementation support.
Key Responsibilities
Team
- Work with other people within the organisation (and beyond, where applicable) to define and develop a market approach around our core Digital Security capabilities namely:
- Cyber Assurance
- Cyber Strategy
- Cyber Intelligence and
- Cyber Analytics
- Assist with the integration of Digital Security into all other appropriate services, teams, and commissions across Turner & Townsend’s infrastructure clients
- Represent the company at external Digital Security events
- Proactively engage with your line management team (and beyond) to share ideas, provide support, and where applicable mentor and develop others.
- Assist in the recruitment and retention of a Digital Security team
Individual
- Proactively provide trusted advice to our clients
- Deliver technical and Digital Security consultancy services across our commissions, including
- Cyber assurance, through policies and processes on the security and resilience of their networks and information systems. Includes staff awareness and training.
- Cyber strategy, around governance, risk (including mitigation), asset management and supply chain
- Cyber intelligence, in terms of how they can enable proactive security event discovery and security monitoring
- Cyber analytics, including the capturing of lessons learnt from incidents, and implementing those lessons to improve the resilience of essential functions
- Build client relationships and reinforce credibility as a subject matter expert (SME) to identify opportunities where T&T can assist.
- Demonstrate knowledge of cyber legislation(s) and how they affect our service lines, deliverables, and clients
- Maintain awareness of key industry trends; interpret and report to the wider team
- Input into and, if applicable, lead business generation activity (bid qualifications and proposals)
Behavioural Competencies
We operate a behavioural framework that sets out what we expect from every T&T employee – simple statements, with different detail at each role level, that we believe demonstrate what makes us different from other companies. To us they are more than just words on a page and are principles that we try to embed in our day-to-day activity. They are:
- Make change happen
- Do better every day
- Collaborate to delivery our best work
- Influence to build a better world
- Always learning
- Treat each other with care and respect
We are implementing a Digital Careers Pathway at Turner & Townsend, which is based upon a combination of both the Digital, Data and Technology (DDaT) Capability Framework, and the Skills Framework for the Information Age (SFIA). Whilst we are not using any one role or skillset for any position, we would expect the following to be relevant and encourage familiarity with their content.
Note: the ability to meet any role or skillset in totality is not essential and will not be method of judging future performance – these are only for learning and development.
DDaT: Security Architect, Business Analyst, Delivery Manager, Performance Analyst
SFIA: Skills for security professionals, Security programmes, Secure software development, Secure infrastructure, Security practice management and other Security related skills (strategic planning, consultancy, data management ect.)
Essential:
- Minimum of 2 A levels at C grade or above (or equivalent)
- Proven relevant experience of at least 3 years in a cyber security role
- For Senior Consultant: qualification in at least one relevant cyber security area e.g., CompTIA A+, Network+ or Cisco Certification (CCNP or CCNA), CEH (Certified Ethical Hacker) or technical project management, or business analysis
- Knowledge and experience in cyber security frameworks including ISO27001, NIST, CIS, COBIT and SOC
- The ability to pass both a Baseline Personnel Security Standard (BPSS) check and formal vetting through UKSV – these will be conducted during the probation period
Desirable:
- Proven relevant experience of at least 5 years in a similar cyber security role
- Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) qualification
- SANS training such as GIAC Security Essentials GSEC and/or GIAC Certified Forensic Examiner (GCFE)
- ISO27001 Lead Auditor or other related certification/experience and/or likewise NIST Certified Security Practitioner (NCSP)
- Experience in one of our key sectors (Defence, Transport, Natural Resources, Central/Secure Government)
Additional Information
Our inspired people share our vision and mission. We provide a great place to work, where each person has the opportunity and voice to affect change.
We want our people to succeed both in work and life. To support this we promote a healthy, productive and flexible working environment that respects work-life balance.
Turner & Townsend is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees and actively encourage applications from all sectors of the community.
Please find out more about us at www.turnerandtownsend.com/
#LI-AS1
SOX control responsibilities may be part of this role, which are to be adhered to where applicable.
Join our social media conversations for more information about Turner & Townsend and our exciting future projects:
It is strictly against Turner & Townsend policy for candidates to pay any fee in relation to our recruitment process. No recruitment agency working with Turner & Townsend will ask candidates to pay a fee at any time.
Any unsolicited resumes/CVs submitted through our website or to Turner & Townsend personal e-mail accounts, are considered property of Turner & Townsend and are not subject to payment of agency fees. In order to be an authorised Recruitment Agency/Search Firm for Turner & Townsend, there must be a formal written agreement in place and the agency must be invited, by the Recruitment Team, to submit candidates for review.