RIIO-2 Cyber Security submissions Role 2 – Project PMO Support/Analyst (CSC)

Closing date for applications: 01/11/2019

OVERVIEW OF ROLE

Specialist role	Cyber security consultant
Summary of the work	Understand and map cyber security control requirements (i.e. NIS regulations, industry best practice) against OES’s RIIO-2 submissions. Review OES’s submission costs, security improvement plans & project timelines. Perform security reviews, facilitate workshops, producing high quality decision reports covering the assigned OES scope, aligned with compliance & regulatory requirements.
Latest start date	25/11/2019
Expected contract length	50 days
Location	London
Organisation the work is for	Gas & Electricity Markets Authority (Ofgem)
Maximum day rate	Please specify required day rate

ABOUT THE WORK

Early market engagement	-
Who the specialist will work with	The Specialist will be working with other Cyber Security specialists working on the RIIO2 OES submissions. The NIS Regulations impose new duties on Operators of Essential Services (“OES”) and give relevant Competent Authorities (“CAs”) new powers and responsibilities to ensure OES are meeting those duties. Ofgem is a joint CA with BEIS, for the Downstream Gas and Electricity sectors in Great Britain.
What the specialist will work on	Project PMO support / Analyst (x1 resource) A project PMO/analyst with experience in cyber security, with extreme attention to detail, able to understand and map cyber security control requirements (i.e. NIS regulations, industry best practice) against OES’s RIIO-2 submissions. Ability to review OES’s submission costs, security improvement plans & project timelines. This role will require knowledge performing security reviews, facilitating workshops, producing high quality decision reports covering the assigned OES scope and aligned with compliance & regulatory requirements.

WORK SETUP

Address where the work will take place	The majority of the reviews will take place on Ofgem's premises at 10 South Colonnade, Canary Wharf, London E14 4PU
Working arrangements	The contract will be for total of 50 input days starting in November 2019. The selected company/candidate must be available to commence this assignment on mid November 2019 and be available until late January 2020.
Security clearance	Staff visiting Ofgem’s & OEM’s premises shall hold at least a minimum of BPSS (Baseline Personnel Security Standard) level security clearance. The Contractor is responsible for obtaining clearance for all Staff and shall bear all costs associated with the clearance process.

ADDITIONAL INFORMATION

Additional terms and conditions	-

EVALUATION CRITERIA

How many specialists to evaluate	6
Cultural fit criteria	Be able to engender confidence with OES and Ofgem Work well under pressure Take responsibility for delivering successfully Work well in a transforming environment Work well in a team and autonomously
Assessment methods
Evaluation weighting	Technical competence 50% Cultural fit 20% Price 30%

EXPERIENCE

Essential skills and experience

Three years’ proven track record of delivery of complex information security control reviews ideally in the industrial cyber security space
Have 3 years proven track record of cyber security assessments, report writing, programme management, project & budget reviews
Clear evidence of a track record of successful project engagements covering a minimum of 6 of the topics listed below:
(a) Industrial cyber security strategy & architecture
(b) Project Planning
(c) Security assessments
(d) Budgeting & timelines management
(e) Asset management
(f) Programme management responsibilities including tracking timelines, milestones & budgets
(g) Industrial control systems controls & regulations (NIS, NERC-CIP, ISA/IEC 6443, NIST 800-53/8, etc.)
(h) Data protection
(i) Application security
(j) Industrial Health & Safety requirements
(k) Identity & Access management
(l) Change management
(m) Malware & antivirus management
(n) Information Security processes & policies
(o) Incident response
(p) Vulnerability management
(q) System security
(r) Security awareness and training
(s) Security monitoring
(t) Third party vendors & access management
(u) Portable media
v) Resilience and business continuity

Nice-to-have skills and experience

Demonstrate their knowledge of the energy sector through direct experience with energy stakeholders
Demonstrate a knowledge of agile working practices

EXPRESS INTEREST

Closing date for applications: 01/11/2019

RIIO-2 Cyber Security submissions Role 2 – Project PMO Support/Analyst (CSC)

Closing date for applications: 01/11/2019

Specialist role:	Cyber security consultant
Location:	London
Organisation:	Gas & Electricity Markets Authority (Ofgem)
Maximum day rate:	Please specify required day rate

FULL DETAILS / EXPRESS INTEREST HERE

IT Recruitment Marketplace

The Hive Enterprise Centre, Victoria Avenue
Southend-on-Sea, Essex SS2 6EX

To change your subscription email us here

RIIO-2 Cyber Security submissions Role 2 – Project PMO Support/Analyst (CSC)

Closing date for applications: 01/11/2019

OVERVIEW OF ROLE

Specialist role

Summary of the work

Latest start date

Expected contract length

Location

Organisation the work is for

Maximum day rate

ABOUT THE WORK

Early market engagement

Who the specialist will work with

What the specialist will work on

WORK SETUP

Address where the work will take place

Working arrangements

Security clearance

ADDITIONAL INFORMATION

Additional terms and conditions

EVALUATION CRITERIA

How many specialists to evaluate

Cultural fit criteria

Assessment methods

Evaluation weighting

EXPERIENCE

Essential skills and experience

Nice-to-have skills and experience

RIIO-2 Cyber Security submissions Role 2 – Project PMO Support/Analyst (CSC)

Closing date for applications: 01/11/2019

Specialist role:

Cyber security consultant

Location:

London

Organisation:

Gas & Electricity Markets Authority (Ofgem)

Maximum day rate:

Please specify required day rate