Head of Cyber Security Assurance

Help us to make a world of difference

Urenco is a global leader in the production of low carbon energy. We work at the cutting edge of the transition to a sustainable, net zero world.

We are seeking a Head of Cyber Security Assurance to lead and strengthen cyber security assurance across all Urenco IT and OT networks. Based at our Paddington site, this role sits within the Group CISO function and has overall responsibility for defining, leading and continuously improving the Cyber Security Assurance capability across the organisation. This is a hybrid position, with the flexibility to work remotely for up to two days per week on average.

You will lead, manage, and develop the Cyber Security Assurance team, ensuring that all group, IT and security-related projects comply with Urenco’s cyber security policies, standards and best practices. The role plays a critical assurance function, embedding security-by-design and providing oversight throughout the project lifecycle.

As a senior leader, you will work closely with the wider CISO leadership team, including Threat Defence and Governance, Risk and Compliance, to ensure a cohesive and effective cyber security strategy across the Group.

The position is also a key stakeholder in a multi-year programme to define, guide, and deliver Urenco’s OT security strategy and global improvement programme across all sites, with a primary focus on risk reduction and resilience.

Reporting directly to the CISO, the Head of Cyber Security Assurance is a member of the Information Security leadership team and plays a strategic role in shaping Urenco’s cyber security posture now and into the future.

Successful candidates will be required to obtain and maintain Developed Vetting (DV).

At Urenco we’re committed to giving you opportunities to be your best. If you feel you meet some, but not all of what we're looking for, please still apply. We believe in embracing the passion and potential of our people, and to achieve this we offer market leading training and development experiences. Along with the opportunity to be mentored and coached by some of the smartest minds in the industry.

What you’ll do:  

• Own and maintain Information Security standards, principles, and guardrails across all IT and OT networks, ensuring they remain current and adopted.
• Lead the Cyber Security Assurance function, including recruiting, managing, and developing a high-performing team.
• Ensure compliance with applicable cyber security regulations, laws and standards across all geographies.
• Provide assurance that all IT, OT and security projects comply with cyber security policies and Security by Design principles.
• Act as a senior Information Security representative across key governance and architecture forums.
• Partner with senior stakeholders across IT, OT, nuclear operations and executive leadership.
• Stay ahead of emerging cyber threats and technologies, driving innovation and continuous improvement.
• Act as an escalation point for complex assurance, risk and design issues.
• Oversee cyber risk identification, assessment, and treatment, including CAF assessments and OT risk register reviews.
• Work closely with risk, testing, and project teams to scope assessments, testing and remediation activities.
• Define and lead the OT cyber security strategy and global improvement programme, aligned to business objectives and risk priorities.
• Establish and maintain a robust OT security governance framework.
• Monitor assurance outcomes, KPIs and improvement initiatives, reporting insights, trends, and recommendations to C-level stakeholders.

What do you need to thrive in this role?

• A relevant degree in cyber security or a closely related discipline.
• Recognised cyber security certifications such as IEC 62443/ISA99, CISSP, or ISO 27001.
• Significant leadership experience within cyber security, leading teams and driving strategic initiatives.
• Proven experience defining and implementing security standards, patterns and guardrails.
• Strong understanding of the distinction between security architecture and security assurance.
• Demonstrated ability to lead, mentor and develop cyber security professionals, fostering a high-performance and continuous learning culture.

What can you expect from us?

More than just a job, we offer a future. More than just a place to work, we provide an opportunity to prosper.  As an employee of Urenco you will receive:

• Annual leave of 27 days per annum.
• A generous bonus scheme based on achievement of personal and company objectives.
• A diverse range of family friendly policies.
• A defined contribution pension scheme: contributions start at 4% (employee) and 10% (employer).
• Hybrid Working Pattern: up to two days working remotely on average per week. Flexible start and finish times, with a 1.30pm finish on Fridays.
• Flexible benefits package, including life assurance and income protection. In addition, you’ll have an opportunity to purchase additional benefits that suit your lifestyle.Paid time off for volunteering.
• The opportunity to join our private medical and dental insurance schemes.
• Education and training; we take pride in helping people learn and develop by supporting, accelerating and directing your learning. As well as the completion of mandatory health and safety courses, training packages will be offered to meet your specific needs.

Security vetting

Due to the nature of the industry that Urenco operates in, all personnel regardless of employment status working for Urenco are required to obtain security clearance at the level required for their role. Security clearances are assessed in accordance with regulations and official guidance issued by the relevant competent authorities for national security vetting. In certain circumstances, additional enhanced security clearance considerations apply to roles within Urenco owing to the particular activities that the Urenco Group undertakes in relation to uranium enrichment. Successful candidates will need to satisfy security requirements, and all offers of appointment are made subject to the successful approval of all checks initiated.

Creating a diverse and inclusive workforce

As a truly global company with a presence in the UK, USA, Germany, and the Netherlands, we know that our individual differences make us stronger. Putting people at the heart of our business, we strive to create an open and inclusive workplace that allows every voice to be heard and diversity to thrive. If you require any reasonable adjustments to the recruitment process, please let our talent acquisition team know.

Because together, we are one Urenco. We are enriching the world. And enriching your future.