Senior Cyber Engineer

Job Category: Engineering

Job Description: Remarkable people, trusted by clients to design and advance the world. Wood is recruiting for a Senior Cyber Engineer with experience in Automation and Control Network design and implementation to join our Systems Integration team as part of the Wood Consulting business unit to support across UK projects. This is a hybrid role that can be based at Aberdeen, Staines, Reading, Glasgow or Northampton with travel as required. Applicants must be able to pass the HMG Baseline Personnel Security Standard (BPSS) check. Wood is committed to developing their people and growing a talented team of professionals with expertise in Digital Consulting for the Energy sectors that we support.

The Senior Cyber Engineer will support the implementation of projects in line with company objectives, including improving margin, customer satisfaction, schedule, working capital and safety performance. You will assist in providing cyber security, networking, secure architectures, solutions, vulnerability and risk assessments, technologies and procedures to support Wood assignments, project teams and clients. This role is ideal for someone with project experience who can identify vulnerabilities and risks in networks, software systems and data centers through ongoing vulnerability scans, monitoring network data and ensuring hardware and software applications are updated.

• Meaningful and interesting projects delivered to high profile clients across the Energy and materials sectors
• Flexible working arrangements with hybrid and remote options where relevant
• Commitment to Diversity and Inclusion; we are an organisation actively committed to diversity and inclusion across our business
• Competitive remuneration package with regular reviews in line with market
• Flexible benefits package including 33 days annual leave (including public holidays), plus potential for one additional ‘flex day’ per month; generous contributory pension, private medical cover, 4x base salary life insurance, and other adaptable benefits
• Commitment to continued professional development with tailored development plans
• Global connections: join experts around the world at the leading edge of the industry
• Energy Transition Academy: a community of experts sharing knowledge and exposure to existing and emerging energy systems

• Assess the robustness of cybersecurity architectures, technologies, and procedures in customer facilities
• Design solutions that meet client requirements and implement measures to mitigate security risks (e.g., antivirus, patch management, insider threat protection, incident response, regulatory compliance)
• Conduct vulnerability assessments and audits on client systems and network devices with consideration for OT testing
• Provide expertise in network design, implementation and testing for networks supporting Integrated Automation and Control Systems Solutions
• Identify and define network requirements to support automation and controls solutions for clients
• Develop detailed network architecture and network dataflow diagrams
• Produce network schedules (IP addresses, data communication, servers/VMs, switches/firewalls) and testing procedures (FAT)
• Prepare material requisitions and contribute to technical bid evaluations
• Review vendor drawings and consolidate comments from other disciplines
• Carry out Cyber Security Risk Assessments and advise on mitigating actions
• Support in evaluating client security posture, identify vulnerabilities and areas for improvement
• Stay up to date with the latest security trends, threats and best practices
• Apply integration concepts across systems and multiple vendor platforms
• Engineer technical aspects of automation project network design and implementation for assigned activities
• Prepare engineering studies and network & cyber design documentation
• Resolve engineering issues by applying accepted principles, codes and standards

Skills and Qualifications

• Minimum BSc Degree or equivalent demonstrable experience
• Certifications such as CCNA, CCNP, CWNP, ISA/IEC 62443 cybersecurity certificates, or GICSP are highly desirable
• Significant experience in Control System Network Design Engineering
• Good understanding of IEC62443 Industrial Cyber Security
• Good understanding of IEC27001/2 Information Security Management
• Good general knowledge of automation and control engineering disciplines
• Knowledge of industrial communication protocols (e.g., Modbus, DNP3, OPC) and their security implications
• Experience with multiple system implementation projects and/or control system platforms
• Experience in brownfield upgrades / replacement automation projects
• Thorough knowledge of engineering practices, methodologies, standards, procedures and specifications
• Knowledge of modern automation and control applications, tools and methodologies
• Understanding of the interplay between physical security and cybersecurity in OT environments
• Familiarity with safety standards and regulations relevant to OT environments
• Good working knowledge of current industry technology and engineering software/tools
• Organised, detail-oriented and inquisitive

• Experience with networks containing Rockwell, Honeywell and Schneider PLC/SCADA systems
• Familiarity with telecom protocols, satellite communication and radio-link technologies
• Experience of OT Intrusion Detection Systems

Wood is a global leader in consulting and engineering, helping to unlock solutions to critical challenges in energy and materials markets. We operate in 60 countries and employ around 35,000 people. Diversity: We are an equal opportunity employer that recognises the value of a diverse workforce. All suitably qualified applicants will receive consideration for employment on the basis of objective criteria and without regard to protected characteristics in accordance with governing laws. Apply for this job: Apply For Job