• Categories

  • Construction Equipment & Supplies
  • Construction Jobs
  • Construction News
  • Construction Product News
  • Green Building
  • Green Living
  • Home Improvement
  • Lawn and Garden
  • Press Releases

• Tags

  bridge cemex civil engineering construction products association doors electricity hard hats Home Improvement Lawn Care leaks logistics pipes risk robots sensors southwest supply chain wales willmott dixon

Laing O'Rourke has set targets to transform its business. Our deliver 2025 mission is to become the recognised leader for innovation and excellence in the construction industry, to achieve this will require exceptional information, technology and data capabilities to enable all parts of the Laing O'Rourke business.

Position Purpose:

Working in a global Cyber Security Team, the Cyber Security Engineer works closely with the Cyber Security Architect to produce detailed designs and implement all cyber security tools globally.

The Cyber Security Engineer works with stakeholders from across the business, projects and IT to research, design and deploy cyber security controls to meet business, compliance or security requirements whilst addressing new and emerging threats in line with the business risk tolerance and business risk management strategies.

The position requires a seasoned engineer with a detailed working knowledge of information security technologies, Infrastructure, policies, and processes in their application to a global business.

Key Accountabilities:

• Research, design and implements cyber security solutions that comply with applicable security policies and standards to reduce business risk.
• Work with Laing O'Rourke's business units and with other risk functions to identify security requirements, using methods that may include risk and business impact assessments.
• Collaborate with the Cyber Security Architect on security roadmaps based on sound architecture practices that ensure Laing O'Rourke can maintain and achieve relevant industry security certifications. Act in an advisory role in application development or business/organisational projects to assess security requirements and controls as per policies and risk exposure.
• Keeping abreast of potential and emerging cyber security threats, vulnerabilities, and control techniques and the trade-offs required to manage the different levels of risk appetite and risk exposure across the business.
• Develop and maintain security architecture artifacts (designs, templates, standards, baselines) that can be used to leverage security capabilities in projects and operational teams. Collaborate on IT projects to ensure that security issues are addressed throughout the project life cycle (Secure-by-Design).
• Researches and assesses new threats and security alerts and recommends remedial actions. Play an active part in responding to and resolving critical security incidents (Prepare, Identify, Contain, Remediate, Recover) - Cyber Operations team handle day-to-day

Desired Capabilities & Behaviours:

• Experience with common information security regulations, certifications and management frameworks, such as UK Cyber Essentials, European GDPR, Australian Essential 8, National Institute of Standards and Technology (NIST) and ISO 27001
• Excellent technical knowledge of mainstream operating systems and security technologies (firewalls, honeypots, web application firewalls, SIEM, EDR, Vulnerability scanners, content filtering, etc.)
• Knowledge of common vulnerabilities and exploitation techniques and methods available for application and system technology security testing.
• Excellent written and verbal communications skills with the ability to communicate security and risk-related concepts to technical and non-technical audiences.
• Knowledge of Regulations, Standards, and Compliance around cyber security. Audit, compliance, or governance experience is preferred.

Education & Experience:

• Experience in a combination of enterprise information security and/or cyber security functions.
• Proficiency with security frameworks, standards and best practices for compliance (NIST, ISO27001, Cyber Essentials, Essential 8)
• Knowledge of best practices of IT security hardware and software, security suites, identity and access management, and encryption
• CISSP, CISM, CISA, CRISC preferred.

About us:

Laing O'Rourke are an international engineering and construction company delivering state-of-the-art infrastructure and buildings projects for clients in the UK, Middle East and Australia.

Certainty, reliability, quality - this is what our clients want. And at Laing O'Rourke, we have more than 150 years of experience delivering it. Laing O'Rourke's story is one of energy, passion, ambition, people and teamwork. We harness the power of our experience, stretching back over a century and a half to deliver certainty for our clients.

As part of the Disability Confident scheme, we would like to enable access to candidates with long term health conditions and disabilities through the 'Offer an interview scheme'. This supports applicants that meet the essential criteria by offering an interview for the advertised position. Please let us know prior to interview what adjustments are required as well as discussing how we can support you in the workplace.

We want to ensure our recruitment process is accessible to all. If you need the application form in an alternative format or you would like to know more about our recruitment process, please get in touch.

• Search for:

• Recent Posts

  • Senior Associate Fire Engineer
  • Senior Fire Engineer
  • Principal Fire Engineer
  • Ecologist
  • Fire Engineer
  • Senior Fire Engineer
  • Fire Engineer
  • Fire Engineer
  • Town Planner
  • Senior Fire Engineer

• Favorite Links

  • Green Building Products