Cyber Security Lead

About Enzen We are a global knowledge enterprise specialising in the energy and water sector. We offer specialist domain, digital solutions and services. We work with energy and water networks, offering end-to-end solutions and services ranging from advisory, engineering services, operational technology, advisory, transformation, digital and data solutions, along with Cyber Security. Founded in 2006 in the UK, the business has grown and expanded globally, with a presence in Australia, India, Portugal, Spain, Turkey, the UK, and the USA. As a domain-focused organisation, we have a big ambition to leverage digital technologies and platform solutions to accelerate the energy transition and journey to net Zero. As part of our strategy to Digitalise, Decentralise and Decarbonise the energy sector, we are expanding our competency and capabilities to support the massive digital transformation needed to enable the transition. Enzen’s business model is underpinned by our Centre of Excellence (CoE) model. CoEs are our engines of innovation and growth; CoEs are business units to build and grow specialist areas of business and technology. The Cyber Enablement practice firmly sits at the centre of our Digital Enterprise CoE. It is critical in enabling enterprises’ cyber resilience journey and building specialisation in IT and OT cyber solutions, supporting our customers with compliance and regulatory remits. Role Summary This is an exciting opportunity to contribute and grow our Cyber Security CoE and be a member of Enzen’s growing Digital Enterprise family. Looking for a highly motivated and experienced Cyber Security Lead to work with us in providing Security solutions to major Energy clients across the UK. The Cyber Security Lead is a senior role responsible for developing, implementing, and managing the organisation and its cyber security environment. This critical position demands collaboration across departments and with client’s stakeholders to implement information security best practices through a combination of strategic planning, system implementation, training and awareness, and continuous improvement. The Cyber Security Lead will be accountable for working closely with technology teams and partners to review existing Architecture and Road map, its security posture, propose and Implement solution, meet objectives, and fulfil security standards requirements in line with regulatory mandates such as OFGEM/ OFWAT/ ONR. This will require to collaborate with various teams within Organisation, including IT, network administration, and software development, to identify potential risks, assess the effectiveness of existing security protocols and implement solution to mitigate vulnerabilities. It is important to have experience in design, implementation, and maintenance of security measures to protect sensitive information and ensure the integrity, confidentiality, and availability of systems. The ideal candidate will have a strong understanding of cyber security principles and practices, with experience in managing and leading cyber security teams and projects. Excellent communication and interpersonal skills are essential, as the role requires the ability to convey complex security concepts to a variety of audiences, including senior leaders, technical teams, and non-technical staff. As the Cyber Security Lead, a key remit of this role will be to spearhead the ongoing development, monitoring, and enhancement of the organisation and its clients’ cyber security environment. A solutions-focused and innovative approach is needed to strengthen Cyber Security capabilities, contribute to advancing national cyber security understanding, and identify opportunities for elevating the organisation's security posture. Success requires not only technical expertise, but excellent communication skills to convey complex security concepts, develop educational campaigns, and obtain buy-in at all levels. Skills and Requirements You will be required to attend client site twice per week and hold UK security clearance. Experience in the design and implementation of IT/OT cyber security solutions for Utilities Leading and managing the organisation and its clients’ cyber security environment, working with technology specialists and partners to deliver programmes/ projects, meet objectives, and fulfil security standards requirements. Collaborating closely with senior leaders, local organisations, and suppliers to ensure effective cyber incident response and recovery processes that are regularly tested and reported on. Contributing to national cyber security groups and networks to stay current on the latest threats and vulnerabilities, adapting the organisations systems accordingly. Driving business cases, funding requests, and discovery initiatives to identify and address information security gaps and risks. Manage budgets/ procurement related to cyber security staffing, tools, projects, and other operational costs. Forecast, plan, and monitor cyber security budgets to ensure effective utilisation of resources. Overseeing sensitive communications within the team and liaising effectively with stakeholders at all levels to convey complex security concepts clearly. Building long-term strategic security plans and monitoring progress against them. Educating staff at all levels on cyber threats and secure practices through training programs and events. Leading or supporting funding applications for applicable security initiatives. Planning, monitoring, and delivering funded cyber security projects and meeting required timelines and deliverables. Promoting security by design and best practices in an ethical manner that focuses on benefiting patients and clinical services. Authorising orders and expenditures related to cyber security within designated limits. Developing, reviewing, and implementing information security policies and processes Lead business cases and funding requests for new security initiatives and improvements. Analyse spends and cost effectiveness of existing security solutions and contracts. Identify opportunities for efficiencies. Develop proposals for short -term and long-term cyber security investments and capacity building to address client requirement. Ensure all cyber security expenditures adhere to financial policies and procedures. Provide insights for organisational budget planning to adequately resource information security. Define and document security requirements for supplier contracts. Ensure appropriate terms, controls, and protections are included. Coaching and mentoring team members to support development and career progression in Cyber Security Function. Collaborating with teams to ensure critical cyber incidents are effectively handled within enterprise-wide business continuity and disaster recovery plans. Implementing controls and safeguards to isolate and prevent the spread of cybersecurity attacks impacting operations. Putting in place crisis communications and escalation protocols for cyber incidents to support timely decision making. Essential Skills: Expert knowledge of cyber security disciplines - network, endpoint, application, data security etc. Strong technical skills and ability to grasp modern technologies. Excellent verbal and written communication skills are required, with the ability to clearly explain complex technical concepts to non-technical stakeholders. Negotiation and conflict resolution skills. Resilience and ability to positively manage pressure. Analytical thinking, problem solving and decision-making skills. Ability to interpret compliance regulations and technical requirements. Strong focus on continuous improvement.