Cyber Security Consultant

**Your Impact**:
At Jacobs, we’ll inspire and empower you to deliver your best work so you can evolve, grow and succeed - today and into tomorrow. With more than 55,000 people in 40+ countries, working at Jacobs offers an exciting range of opportunities to develop your career within a supportive and diverse team who always strive to do the right thing for our people, clients and communities.

People are Jacobs’ greatest asset, and we offer a competitive package to retain and attract the best talent.

In addition to the benefits you’d expect, UK employees also receive free single medical cover and digital GP service, family-friendly benefits such as enhanced parental leave pay and free membership of employee assistance and parental programmes, plus reimbursement towards relevant professional development and memberships. We also give back to our communities through our Collectively program which incorporates matched-funding, paid volunteering time and charitable donations.

Work-life balance and flexibility is a key focus area for Jacobs. We’re happy to discuss hybrid, part-time and flexible working hours, patterns and locations to suit you and our business.

**About the Opportunity**

We are looking for people who are ready to take their cyber security career to the next level and make the most of opportunities to work on a diverse and exciting portfolio of projects. You will join an experienced team that has the agility and energy of a start-up, but with all the benefits and support of the wider Jacobs organisation.

Our Cyber Security Consultant role will provide you with an environment to grow as a professional through exposure to a wide range of opportunities. You will collaborate with the team to assess OT environments across a wide range of sectors, and then design and deliver cyber security solutions address risks and support secure and resilient digital transformation across information and operational technology environments.

You will perform OT cyber security consultancy and security engineering work for Critical National Infrastructure, Government, Intelligence, and Defence clients.

**Key Responsibilities**
- Work with customers to initiate and execute IT/OT security programs, define, and develop OT security strategies, policies, and guidelines
- Create and present technical design proposals and reports to customers and/or other senior engineering, management, and government groups
- Provide technical assistance to business development activities when necessary
- Support risk assessments of IT/OT environments for clients across various sectors, highlight areas of concern, and provide risk mitigation strategies and recommendation
- Design and implement cyber security solutions that help clients safely and securely transform their IT and OT environments. Develop OT security recommendations and level of effort estimates to support those recommendations
- Build and maintain relationships with internal and external stakeholders

What you can expect from us
- Training towards professional certifications.
- 1 to 1 mentorship led by seasoned professionals.
- The chance to work across an exciting and diverse portfolio of work to help you grow your experience.

**Here’s What You’ll Need**:
We have a strong team culture at Jacobs where every member strengthens the team with their own experience, so even if you feel you don’t have experience in everything listed below, we’d still like to hear from you.
- Cyber Security work experience (with a significant focus on Operational Technology during that time)
- Practical experience of IT and/or OT cyber security risk/threat assessment approaches to ensure proactive identification of threats, leading into proactive delivery of Jacobs’ cyber security services to clients
- Understanding of design considerations with emphasis on operational safety and the availability/security of operating environments
- Working knowledge and hands-on experience in a variety of operating systems and Operational Technology environments
- Experience of security engineering and associated solutions (Endpoint Protection, IDS/IPS, Firewalls, etc.) for IT and/or OT environments
- Working knowledge and understanding of networking technologies including architectures, key components, and common IT/OT protocols
- Certifications - Cybersecurity & Infrastructure Security Agency (CISA) Industrial Control Systems (ICS) Training, AttackIQ - MITRE ATT&CK, SANS Global Industrial Cyber Security Professional (GICSP), Certified Information Systems Security Professional (CISSP)
- Standards & Frameworks - EU NIS Directive, ISA/IEC 62443 Series / ISO 27000 Series, MITRE ATT&CK, NIST Cyber Security Framework (CSF), Office for Nuclear Regulation (ONR) Security Assessment Principles, Technical Assessment Guides, and supplementary guidance

**Our Culture**

Our values stand on a foundation of safety, integrity, inclusion and diversity. We put people at the heart of our business and we truly