Security Assurance Engineer

Job Description

Siemens Mobility requires a Cyber Security Assurance Engineer to perform cyber security assurance activities for Siemens Rail Infrastructure delivery projects. Reporting to the Head of Safety Assurance, the role is responsible for the development and provision of adequate and effective cyber security assurance processes according to company and client standards. This includes demonstrating to clients and appropriate regulatory authorities that the appropriate level of security assurance has been performed on projects.

The Security Assurance Engineer will be able to conduct the required security assurance for a portfolio of new and existing UK mainline and metro railway projects. The role requires the application of security assurance techniques and standards to projects throughout their lifecycle, according to company and client standards. It includes planning of security assurance activities, liaising with product and solutions security engineers and project RAMS engineers, gathering security assurance evidence, producing application cyber security case arguments and liaising with key stakeholders, including clients, external assessment bodies and appropriate regulatory authorities. The necessary technical and managerial support will be provided from the main project RAMSS team which is located at the Siemens Mobility Chippenham office.

Key Responsibilities
  • Develop effective security assurance strategies to ensure our applications are secure.
  • Develop the security assurance plan to demonstrate compliance with regulatory, legal, and customers’ security requirements and Siemens’ security processes and procedures.
  • Execute security assurance activities in accordance with the security assurance plan
  • Effectively contribute to the security threat and risk analysis workshops led by the project’s security engineers to identify and control security risks and deliver security risk management aligned to clients’ security assurance frameworks and Siemens Engineering Security Handbook.
  • Support project RAMS engineers in the transfer of security hazards that impact safety into the project safety hazard record and vice-versa
  • Production of the cyber security case by managing and collating security assurance evidence from project engineers through meetings, trackers, and review cycles.
  • Liaise with clients and/or assessment bodies to achieve the required level of security accreditation for the projects.
  • Provide direction and support to the project teams to help them understand the security assurance requirements.
  • Conduct investigations into reported cyber security incidents, compile reports and recommend controls that address procedural or technical failures.
  • Assist the Head of Safety Assurance in maintaining compliance with customers’ adopted security assurance certifications and standards and advising on the status of security assurance topics for engineering approvals.
  • Work closely with the project delivery teams to close out any outstanding security issues and to complete and gain acceptance of the security cases.
  • Support the Head of Safety Assurance in maintaining security standards, policies, and security assurance procedures.
  • Provide comprehensive and timely information to internal and external stakeholders regarding progress and status of cyber security assurance.

Job Skills, Experience and Qualifications:
  • Degree or equivalent in Electronic/Computer Science or related discipline.
  • A broad knowledge of cyber security design, application, and assurance.
  • Knowledge of technical assurance, ideally on UK railway infrastructure.
  • Knowledge of systems engineering and its implementation on a large railway infrastructure projects.
  • Knowledge of route-wide systems and their associated assurance requirements on a large infrastructure projects.
  • Understanding of the railway industry, including Network Rail's and London Underground limited's security assurance processes.
  • Excellent communication skills with the ability to work as part of security assurance team or alone as an individual contributor.
  • Membership of relevant professional organisation(s) aligned to information security or security assurance.
  • Experience of and successful track record in a similar role on a major rail or infrastructure project.
  • Substantial knowledge and experience of security assurance standards and accreditation in particular CENELEC 50701, Network Rail Security Assurance Framework, ISO 27001 and IEC 62443 or comparable government or industry standards. 

About us
We’re Siemens.  A collection of over 377,000 great minds who are all making the future and you could be one of them!   We have offices across the UK, full of talented individual’s helping us to challenge the today and work towards a brighter tomorrow.

Does creating the ways a new world moves sound like it requires your skills? How about ensuring we do it with net-zero emissions by 2050? Discover a engineering career combining innovation, sustainability and a rare opportunity to shape society at scale.
We are looking forward to receiving your online application.  Please ensure you complete all areas of the application form to the best of your ability to help us review your suitability for the role.  We will be in contact as soon as possible with an update on your application.

What else do you need to know?
Our compensation package includes a competitive salary, holiday allowance and pension. We celebrate the fact that our employees are individuals and have different wants and needs. With this in mind, we have a flexible benefits scheme where you can tailor your benefits package to suit you.

If we all thought the same, we would never think of anything new! That’s why we recruit great minds from all walks of life. We recognise that building a diverse workforce is essential to the success of our business, therefore we encourage applications from a diverse talent pool. We are proud to announce that we have partnered with VERCIDA, the UK's largest diversity and inclusion focused careers site where all our vacancies are in an accessible format. We welcome the opportunity to discuss flexibility requirements with our applicants to encourage agile working and innovation.


Organization: Siemens Mobility

Company: Siemens Mobility Limited

Experience Level: not defined

Full / Part time: Full-time

Can't find what you are looking for?