Cyber Security Lead
Elexon
Job Description
Join Elexon as Cyber Security Lead to shape resilient, future-proof energy systems. Provide expert cyber risk, architecture, and regulator engagement that drives growth and trust. We’re looking for an SSES Cyber Security Lead to join the Information Security team at Elexon on a permanent basis.
In the Cyber Security Lead role, you’ll act as a senior Cyber Security Subject Matter Expert (SME) supporting the Smart Secure Electricity Systems (SSES) programme , providing authoritative technical and strategic advice to the Security Governance Group (SGG) . You’ll play a critical role in ensuring the cyber security, resilience, and future-proofing of the systems and standards underpinning the growth of Consumer Led Flexibility (CLF) across Great Britain. Working closely with Ofgem, NCSC, Government bodies, flexibility market participants, and industry stakeholders , the Cyber Security Lead will help shape the cyber security arrangements supporting the next generation of energy smart appliances, flexibility markets, and grid resilience.
What you’ll do: Provide technical and strategic cyber security advice to the SSES Security Governance Group and Chair Support the development and maintenance of Threat and Risk Assessments , identifying risks and recommending appropriate controls Maintain and evolve key security documentation, including Security Architecture, Trust Models, and Security Requirements Support Ofgem with the audit and assurance regime for organisations operating under the load control licence framework Monitor and assess emerging cyber security, IoT, and grid stability standards at UK and international levels Lead and support cyber security workstreams relating to flexibility markets and Energy Smart Appliances (ESAs) Provide SME input into industry change, governance, assurance, and regulatory developments Engage with regulators, Government departments, standards bodies, and industry stakeholders on cyber security matters Support the production of sector-wide cyber security reporting and assurance activities Contribute to consultation responses, engagement materials, and wider strategic initiatives across Elexon What you’ll bring: Significant experience in Cyber Security, Security Architecture, or Information Security leadership roles Strong knowledge of Cyber Risk Management frameworks and Security Architecture approaches Experience conducting Cyber Resilience Audits and Cyber Assessment Framework (CAF) assessments Extensive knowledge of NIS Regulations and the NCSC Cyber Assessment Framework (CAF) Experience undertaking and supporting ISO27001 audits and certification activities Strong understanding of threat modelling, risk assessment, and security assurance Ability to provide credible, authoritative guidance to regulators, stakeholders, and governance groups Strong presentation, communication, and stakeholder engagement skills Experience working within energy, utilities, or critical national infrastructure environments ISO27001 Lead Implementer and CISSP qualifications (essential) Knowledge of flexibility markets, ESAs, or smart energy systems (desirable) What’s in it for you: Excellent benefits including bonus, private medical insurance and generous pension scheme The opportunity to work within a thriving organisation which can support your growth and development We operate a hybrid working approach with 2 days in our London office #J-18808-Ljbffr