Cyber Security OT Engineer

81968 - Cyber Security OT Engineer

This Cyber Security OT Engineer will report to the Cyber Security OT Engineering Manager and will work within The Information Systems directorate based in our Ipswich office. You will be a permanent employee.

You will attract a salary of up to £66,000.00 depending on skills, qualifications and experience and a bonus of 7.5%. This role can also offer blended working after probationary period (6 months) - 3 days in the office and 2 remote

Close Date: 15/03/2026

We also provide the following additional benefits

• 25 Days Annual Leave plus bank holidays.
• Reservist Leave – Additional 18 days full pay and 22 unpaid
• Personal Pension Plan – Personal contribution rates of 4% or 5% (UK Power Networks will make a corresponding contribution of 8% or 10%)
• Tenancy Loan Deposit Scheme, Season Ticket Loan
• Tax efficient benefits: Cycle to Work, Home & Tech, and Green Car Leasing Schemes
• Occupational Health support
• Switched On – scheme providing discount on hundreds of retailers' products
• Discounted gym membership
• Employee Assistance Programme

Job purpose

You will support the Operational Technology (OT) Engineering Manager to ensure that UK Power Networks information systems that support the essential function and users are adequately protected from cyber threats. You will also ensure continuous safe and effective business operation, in line with the NCSC NIS Regulation goals. You will work with the IS managed service providers and all partners to implement and operate cyber security systems.

Dimensions

You will support the Implementation, Administration, Support and Maintenance of the Critical UK Power Networks OT Systems Security Infrastructure Portfolio. This includes FortiNet Firewalls, Switches and Products, Centralised Security Management and Logging Systems, SIEM, PAM, Endpoint, IDS and Cisco ISE Supporting Infrastructure.

• People – work collaboratively in a team of circa 8 permanent and temporary cyber security architecture resources.

• Financial – no direct budget responsibility.

• Suppliers – regular interaction with 3rd party service providers, specialist technical consultants and cyber security tooling vendors.

• Communication - the ability to communicate technical cyber security concepts to technical and non-technical colleagues across different levels of seniority to facilitate and ensure understanding of decisions taken across the business.

• Stakeholders - establish and maintain collaborative working relationships with internal and external technology teams and third-party providers, suppliers, and partners to improve outcomes and create agreement around a course of action.

Principal accountabilities

Ensure highest standards of safety are applied across all responsibilities

Work within the security team and together with Incident Management to resolve customer incidents to agreed SLA and provide timely and accurate feedback.

Work within the security team and in conjunction with Problem Management to resolve customer problems, providing in-depth root cause analysis.

Organise, prepare, test and implement production changes to the OT Security Infrastructure following strict Change Control Management Processes. Participate in the change authority board.

Support the OT Security Infrastructure Setup, Configuration, Performance, Monitoring and Preventative Maintenance tasks.

Involved in OT Projects driven by the business to support the security requirements and regulated NISD compliance.

Support OT specific cyber security testing concerning project-driven material change within the technology environment and support the wider team on tracking the implementation of resulting remedial actions

Help deliver activities within the continuous programme of cyber security improvement relating to OT security enhancements across the SCADA environment

Establish and maintain relationships with important partners that maintain business support for OT security measures and improvements

Support the wider team to guide root cause analysis of OT related security incidents to ensure prompt action is taken to prevent incident reoccurrence and strengthen relevant cyber security controls

Cyber security incident response and recovery activities in relation to OT systems to support the Cyber Security Operations Lead and the wider cyber security management capability.

Work with cyber security vendors when specifying and testing new hardware, systems or concepts.

Provide technical guidance in relation to WAN/LAN and SCADA Networks in relation to security design, implementation, and resilience.

You will be responsible for supporting the resilience of the network information systems in relation to the essential function are tested within the agreed schedule.

Deputise for the OT Security Engineer (Senior) as and when required.

Maintain awareness of emerging security trends, threats, and risks within the Operational Technology (OT) domain.

Nature and scope

The Technology Department works across UK Power Networks, supporting the company in the achievement of its strategy and vision to become the best performing DNO. The team achieve this through the provision of technology solutions, as well as the optimisation of current solutions to improve how the company operates. Continuous improvement, customer service and seamless delivery is at the heart of this ethos and are therefore strongly underpinned by effective cyber security.

You will work with the Operational Technology (OT) Security Lead, OT focused support teams and partners, the rest of Technology team, IT Service Providers and business stakeholders across UKPN to implement and optimise cyber security arrangements.

You will blend several skillsets including cyber security and network technology assessment, design, implementation, operation, governance, change management and communications. The main measure of success for this role is upholding the IT/OT and organisational resilience of UKPN concerning cyber threats and incidents.

The protective security infrastructure is critical for the safety and reliable communications from the control systems to the 33,000 secondary RTUs, 5,000 Primary RTU's as well as all integrated systems, interfaces and user connections.

Qualifications

You will have at least 5 years+ experience of Cyber Security or a Networking background in an industrial environment and be able to demonstrate a high level of initiative and commitment towards safety, meeting business objectives and finding solutions. Will be highly self-motivated and be able to work well within a team in providing a great place

Preferable Skills and Experience.

• Working knowledge of Industrial cyber security and data communications
• Understanding of Industrial protocols such as DNP3, ICCP, IEC 61850 – (MMS and GOOSE)
• Understanding of NISD Guidance and NCSC CAF, ISA-99/IEC 62443 ISO/IEC 27001/27002 Standards
• Understanding of the Purdue Model
• Understanding of SCADA systems within the electricity distribution environment
• Understanding of Network Communication Mediums (Mobile/Satellite/BGAN/ADSL/Fibre)
• Technical Expertise in Secure IPSec VPN Technologies
• Technical Expertise in Networking/Dynamic Routing
• Technical Expertise in Network Security (FortiNet Products)
• Technical Expertise in AAA Solutions (Cisco ISE)
• Technical Expertise in Securing Microsoft Operating Systems
• Technical Expertise in Securing Linux Operating Systems
• Technical Expertise in Virtualised Infrastructure (VMware)
• Understanding of PKI and Certificates
• Understanding of Scripting Languages such as PowerShell, Python
• Experience of managing cyber security in the IT/OT environment with both internal and external service provision notably in the area of continuous cyber monitoring and incident response
• Experience driving continuous cyber security improvements activities
• Establish excellent relationships with senior colleagues and external stakeholders
• A UK national suitable for completing UK Government security vetting up to SC level
• Beneficial in holding an industry renowned information security qualification such as NSE, CCNA, CCNP, CCIE)

Health & Safety Responsibilities:

Managers and supervisors carry both legal and company responsibilities for ensuring the health and safety of their employees, those under their control and those who might be affected by the work undertaken, i.e. public, visitors and employees of other organisations. This includes briefing individuals working for them and ensuring there is the necessary understanding, competence and application of requirements to work safely and without harming the environment.

Employees will ensure they understand the health and safety risks involved in their work activities and their responsibility to apply the controls needed to manage those risks to acceptable levels. Similarly where work activities can have an adverse impact upon the environment, and where there are legal requirements, employees will understand those impacts and the controls they must ensure are applied.

If in doubt ask!

We are committed to equal employment opportunity regardless of race, colour, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender, gender identity or expression, or veteran status. We are proud to be an equal opportunity workplace.

If you have any queries in connection to this vacancy or your application, please contact us at careers@ukpowernetworks.co.uk quoting the vacancy reference number and a member of the team will get in touch with you as soon as possible.