Information Security Officer

Specialized in civil engineering and engineering structures, Bouygues Travaux Publics is one of the world leaders in the fields of land use planning and sustainable infrastructure construction. Bouygues Travaux Publics is committed to diversity and is open to all talents.

We are recruiting for an Information Security Professional to join the Civil Works Alliance (CWA) as we deliver one of the UK’s most important infrastructure projects—Sizewell C. This 3.2-gigawatt power station will supply low-carbon electricity to around six million homes, securing a cleaner, reliable energy future for generations to come.

Joining CWA means taking a vital role in shaping the cyber security landscape of a major national project. Your work will be essential to ensure we meet the highest standards, including PAS 1192:2, ISO27001, and Cyber Essentials, and maintain robust protection for critical infrastructure and data.

What does the role involve?

• Deputising for the Information Security Manager and being an active member of our Information Security and Cyber Security Steering Team
• Acting as the main point of contact for all information and cyber security matters within the Alliance
• Taking on Data Protection Officer duties, supporting process owners with Data Protection Impact Assessments
• Developing deep knowledge of Alliance and Partner IT systems, and enhancing them from a security and GDPR perspective
• Promoting strong cyber security practices aligned to leading frameworks including ISO27001 and Cyber Essentials
• Agreeing and maintaining the Alliance Security Posture, shaping security principles and standards
• Collaborating with the wider security team to implement, monitor, and maintain cyber security controls
• Keeping up to date with cyber threats and counter measures to protect our operations
• Scheduling and interpreting penetration tests, ensuring findings are addressed quickly and effectively
• Leading vulnerability assessments, working to close or mitigate identified risks
• Hosting regular stakeholder meetings to share key incidents, risks, and changes in regulatory/threat landscapes
• Designing and delivering impactful training and awareness programmes, embedding cyber security in our culture
• Feeding into the alliance risk register to ensure proactive management of risks

• You hold current security clearance status
• You bring a broad range of IT technical skills, with hands-on experience in SIEM, logging systems, pen testing, and vulnerability identification
• You know how to interpret, respond to, and lead on cyber security incidents
• You are confident in negotiating, influencing, and managing projects or programmes
• You have a customer-focused approach and the ability to listen and translate stakeholder needs into secure solutions
• You can prioritise tasks and work proactively as a self-starter
• You are an effective report writer and communicator
• You hold a degree or equivalent experience in computer or cyber security
• You understand ISO27001 controls, UK GDPR, SANS 20 critical security controls, and Cyber

This is an opportunity to make a lasting difference to our national energy infrastructure in a role where your skills and expertise will be valued. If you have the drive to uplift our security posture, respond rapidly to threats, and champion cyber awareness across CWA, I want to hear from you.

Ready to shape the future with CWA? Click the following link to apply.