Cyber Security Consultant - Built Environment

A career at Arup offers you the chance to make a positive difference in the world. Independently owned and independently minded, Arup is the creative force at the heart of many of the world’s most prominent projects in the Built Environment. We believe that flexible arrangements, such as hybrid working, create a more inclusive way of working that supports our diversity and the wellbeing of our people.

Dedicated to sustainable development, Arup is a collective of designers, consultants and experts working globally. Founded to be humane and excellent, we collaborate with our clients and partners using imagination, technology, and rigour to shape a better world.

Cyber Security Consultant - Built Environment

The role of a Cyber Security Consultant in the Built Environment is of paramount importance, especially when it comes to safeguarding critical infrastructure. Critical infrastructure refers to the essential systems and assets that are vital for the functioning of a society, including transportation networks, water and wastewater systems, power grids, communication networks, and more. These infrastructures are the backbone of our modern civilization, enabling the delivery of crucial services and ensuring the smooth operation of various sectors.

This role is to provide expert guidance and support in ensuring the security and protection of digital systems, infrastructure, and data within the Built Environment. This will be achieved by implementing robust security measures, raising awareness, and developing effective response plans, which will contribute to the resilience and security of our essential systems, protecting both the integrity of our critical infrastructure and the well-being of our society.

This role aims to promote inclusivity and equal opportunities. The specific requirements and accommodations may vary based on individual needs and organizational capabilities.

Your responsibilities

• Conduct comprehensive risk assessments to identify potential cyber threats and vulnerabilities in the Built Environment.
• Develop and implement effective Cyber Security strategies and policies aligned with industry best practices and regulatory requirements.
• Deliver effective oversight and assurance programmes to identify, manage and mitigate cyber risk.
• Evaluate the security architecture of Built Environment projects to identify vulnerabilities and recommend appropriate controls.
• Provide ongoing maintenance and support to ensure the effectiveness of implemented security measures.
• Design and implement secure digital systems and networks, ensuring appropriate encryption, access controls, and monitoring mechanisms are in place.
• Perform security reviews where relevant inputs are considered including, penetration testing and vulnerability assessments, to identify weaknesses and recommend remedial actions.
• Evaluate business continuity and disaster recovery plans, ensuring the correct level of resilience is considered to support organizations in effectively responding to and recovering from Cyber Security incidents.
• Manage project delivery, including task and commercial management.
• Manage Cyber Security staff by recruiting, training, and coaching employees
• Support the delivery of training programs to raise awareness about Cyber Security best practices and potential threats specific to the Built Environment.
• Stay updated with evolving Cyber Security regulations and standards relevant to the sector.

Please don’t be discouraged if you don’t meet every point above – if you meet most, and are strongly motivated by the role, and willing to learn, we are still interested in hearing from you.

Essential Qualifications and Skills

• More than 4 years’ experience in Cyber Security either as a consultant or within an organisation that operates physical assets
• Strong understanding of Cyber Security principles, best practices, and emerging trends in the Built Environment sector.
• Proven people management experience to provide coaching and development for others to maximize their potential.
• Familiarity with Built Environment (ICS\OT) industry practices and technologies
• Proficiency in risk assessments, and understanding of vulnerability assessments, and penetration testing.
• Ability to understand the implementation of secure networks, systems, and infrastructure.
• Knowledge of relevant regulations and standards, such as NIST Cybersecurity Framework, ISO 27001, and IEC 62443.
• Excellent problem-solving and analytical skills to identify vulnerabilities and recommend appropriate controls.
• Effective communication skills to engage with stakeholders, and deliver technical reports.
• Attention to detail and ability to focus on complex tasks.
• Capacity to work independently and in a team environment.

Desired Qualifications and Skills

• Bachelor's degree in Computer Science, Information Security, or a related field
• Ideal candidates should have certifications in one or more of the following qualifications: ISACA certifications (CISA, CRISC, CISM, CGEIT, COBIT), ITIL v3 Foundation, CISSP, CCSP, CIA, PRINCE2, ISO 27001 Lead Auditor/Implementer.
• CISSP, CISM, and CCSP preferred.
• Experience undertaking ICS and operational technology assessments
• Knowledge of security technologies, including firewalls, intrusion detection systems, endpoint protection, and security information and event management (SIEM) solutions.
• Ability to think creatively and offer innovative solutions to security challenges.
• Strong organizational and time management skills.
• A working understanding of Data Protection (GDPR)
• Able to continuously improve project delivery documents and methodologies

What to expect at Arup:

• A multicultural and informal working environment where you can develop professionally by being part of a team who enjoy what they do.
• We believe that flexible arrangements, such as hybrid working, create a more inclusive way of working that supports our diversity and the wellbeing of our people.
• Opportunities for short or long assignments at Arup’s offices and projects anywhere in the world.
• Employees are eligible for the Global Profit Share scheme, which is dependent on the firm’s financial performance.
• Competitive performance-based salary growth.
• A strong corporate culture committed to its values: quality of work, holistic approach, humane organization, straight and honourable dealings, social usefulness and reasonable prosperity.
• Continuous training and professional development that will allow you to adapt to the growing needs of our clients as we embrace digital transformation.

Join us in shaping a better world.

Our goal is to shape a better world, finding solutions for some of the world’s most complex problems. From climate action to social value, we consider the most expansive impacts of our work. Our drive to build a more sustainable, resilient and equitable future shapes our culture and has made us leaders in sustainable development. The successful candidate will join our multi-disciplinary design teams focusing on technical excellence and innovative solutions that create a better future for people, places, and the planet.

'A better way'- Sustainability and Social Equity

At Arup, we strive to bring environmental sustainability and social equity together. We put sustainability at the heart of our projects and invest in research and development that helps tackle issues such as climate change and poverty. We have made a commitment to reach net zero by 2030 and to contribute meaningfully to the UN Sustainable Development Goals, creating shared value for our clients and our communities while safeguarding our planet. Read our net zero carbon plan here. Read our net zero carbon plan here.

A career at Arup gives you the chance to have a positive impact on the world. For us, corporate responsibility is not just a policy; it’s a way of working.

Equality, Diversity, and Inclusion is at the heart of what we do

We are committed to creating an inclusive working environment for talented people of any background based on merit, fairness and respect. At Arup, you’ll be a welcomed member of the team with opportunities to participate in social, cultural and educational events with the local community (e.g. as a STEM ambassador) or with your colleagues by joining staff networks such as those for women, culture or the LGBTQ+ community.

We are a certified CPD accredited employer with Engineers Ireland and we were named Engineers Ireland CPD Employer of the year in 2023

Recruitment Agencies We have a Preferred Supplier List of trusted partners to assist us when required and do not acknowledge any speculative CVs or unsolicited candidate introductions from agencies not on this list. Thank you’