Job Description

Posted 2 hours ago

System Engineer

Location: East London (Hybrid – office/home)
Rate: £450–£500 per day (Inside IR35)
Duration: Initial 3–4 month contract (backlog clearance) with strong potential for extension or permanent conversion
Client Environment: Major London Rail customers (TfL, Network Rail – station systems)

Overview

We are seeking a mid-to-senior Cybersecurity & Network Assurance Engineer to join a high-performing networks team supporting critical rail infrastructure in London.

This role will focus on cybersecurity governance, assurance, and technical documentation, ensuring networked systems meet customer, regulatory, and industry standards. You will play a key role in clearing an immediate backlog of assurance deliverables while providing technical oversight to junior engineers and supporting SIEM integration activities.

This is a hybrid East London role with no trackside/site access required.

Key Responsibilities

Cybersecurity Governance & Assurance

Produce and maintain:

Cyber Security Management Plans (CSMP)
Risk assessments and threat models
Assurance and compliance documentation
Control framework mappings

Align artefacts to client standards (TfL / Network Rail) and industry frameworks
Support continual improvement of cyber assurance processes
Standards & Compliance

Map controls and documentation to:

ISO/IEC 27001
IEC 62443 (OT security)
Customer-specific rail standards

Ensure deliverables meet governance and audit requirements
Network Security & Architecture Assurance

Provide design assurance for:

Secure communications
Firewalls (e.g., Cisco, Juniper)
Switching and routed network environments

Assess effectiveness of implemented security controls in networked systems
SIEM Integration Support

Produce documentation for SIEM onboarding:

Data source identification
Logging requirements
Use-case and control alignment

Support assurance activities for SIEM integration (e.g., Microsoft Sentinel environments)
Stakeholder & Team Engagement

Act as a technical interface to client stakeholders
Translate technical risk and assurance findings for non-technical audiences
Provide guidance and quality oversight to junior engineers/graduate staff

Essential Experience

Cybersecurity governance & assurance in enterprise or critical infrastructure environments
Proven delivery of:

Risk assessments
Threat modelling
Cyber security management documentation
Control framework mapping

Strong knowledge of ISO/IEC 27001 and IEC 62443
Solid understanding of network architecture and secure communications
Experience assessing firewalls, switching, and routed networks from a security perspective
Familiarity with SIEM concepts and onboarding processes (e.g., Microsoft Sentinel)
Ability to produce clear, client-aligned technical documentation
Experience working with stakeholders and presenting assurance outcomes

Desirable Experience

Experience in rail, transport, or OT environments
Hands-on network configuration (Cisco, Juniper)
Experience with network management and policy enforcement tools
Knowledge of Windows Server architectures
Prior contract/consulting experience
Experience aligning to customer templates or London-specific standards

Qualifications & Certifications

HND, degree, or equivalent experience in IT, networking, or cybersecurity
Cisco CCNA/CCNP (or equivalent experience)
Security certifications such as CISSP, CompTIA CySA+, or similar (desirable)
ITIL Foundation (desirable)

Clearance

Must be eligible for BPSS clearance

Key Behaviours

Strong written and verbal communication skills
Ability to operate at mid-to-senior level with minimal supervision
Comfortable guiding junior team members
Able to work in a governance, assurance, and documentation-heavy role
Collaborative approach in a multi-stakeholder environment