Let’s get started
By clicking ‘Next’, I agree to the Terms of Service
and Privacy Policy
Jobs / Job page
Governance and Assurance Lead (Cyber) image - Rise Careers
Job details

Governance and Assurance Lead (Cyber)

Job Description

Governance and Assurance Lead (Cyber)

Are you ready to make a significant impact on the safety and effectiveness of IT services within Nuclear Operations?

As the Governance and Assurance Lead (Cyber), you'll lead the charge in developing and implementing governance frameworks, providing assurance, and overseeing projects and programmes that ensure safe, compliant, and value-driven IT services and products.

Your leadership and expertise will guide services and IT changes to meet regulatory, legal, and process requirements, driving operational safety and business effectiveness.

This role does require you to travel when needed to our sites throughout the UK, this could be once or twice a month. We are open to applications throughout the UK.

To be appointed to this role, you will need to meet the criteria for Security Vetting which will, ordinarily, require you to have a British Nationality for Citizenship for the last 5 years.

The Opportunity

In this role, you'll plan and lead assurance activities on contracted services provided to Nuclear Operations, ensuring compliance with ONR regulations and Nuclear Operations policies. You'll define, implement, and maintain a penetration testing framework, manage and perform penetration tests, and remediate findings in line with security and regulatory requirements.

Additionally, you'll ensure physical, and information assets are categorised against appropriate security clearance levels and support the development and maintenance of access control policies, managing access rights and privileged access procedures effectively.

Pay, Benefits & Culture

Alongside a market leading competitive salary, we offer a competitive benefits package, including a company pension scheme, and a wide range of flexible benefits to suit your lifestyle. You’ll be appointed based on the parameters outlined in the Personal Contract agreement. We’re talking about everything from enhanced parental leave to electric vehicle leasing, health insurance to product discounts, critical illness insurance to technology vouchers, gym membership to season ticket loans.

At EDF UK, we embrace flexibility while recognising that everyone's working needs are different. Whether you're in our office spaces, on site, or working remotely, we promote an environment that supports collaboration, connection, and comfort. No matter where you are, our priority is to make sure you feel safe, valued, and celebrated.

Here, we do right by each other and everyone’s welcome. We’re on an action-oriented journey, championing equity, diversity, and inclusion. We’d like our future workforce to have an equal gender balance, represent a broad mix of people from minority ethnic backgrounds, LGBTQ+, those with a disability and supporting social mobility.

We’re a disability confident employer and we’ll do all we can to help with your application. Please let us know if you need to request reasonable adjustments.

We take pride in fostering a dynamic and inclusive environment, where the diverse backgrounds and experiences of our employees drive fresh thinking and innovation. We understand that success means different things to different people. We believe there are multiple definitions of what it means to succeed. That’s why we support you to pursue a career that’s unique to you. Because success is personal.
 

What You’ll Be Doing

In this role, you'll ensure compliance with nuclear safety license conditions, security regulations, and IT project delivery standards. You'll lead assurance activities, manage penetration testing frameworks, and oversee the categorisation of physical and information assets against security clearance levels.

Your work will support the development and maintenance of access control policies, ensuring that authorised users and privileged access are managed effectively. Your expertise will be crucial in guiding IT services and changes to meet stringent regulatory and legal requirements, safeguarding the integrity and safety of Nuclear Operations.

Who You Are

You are a strong communicator with excellent interpersonal skills, capable of managing discussions with contractors and external regulators. Your ability to influence and build relationships at various levels within the company is key.

You possess strong analytical and problem-solving skills, understanding the broader implications of decisions and knowing when business input and authorisations are required. Your leadership and coordination skills will drive the success of IT projects and services, ensuring they align with regulatory and security standards. You are committed to fostering a collaborative and inclusive work environment, where diverse perspectives are valued, and innovation thrives.

Applications close for this role on 1st May, with interviews following shortly after.

To be appointed to this role, you will need to meet the criteria for Security Vetting which will, ordinarily, require you to have a British Nationality for Citizenship for the last 5 years.

#DestinationNuclear #EDFJobs

 

Additional Information

Success is personal. It's your journey, powered by us. Join us and we'll help Britain achieve Net Zero together.

Average salary estimate

$70000 / YEARLY (est.)
min
max
$60000K
$80000K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About Governance and Assurance Lead (Cyber), EDF UK

As the Governance and Assurance Lead (Cyber) at EDF UK in Manchester, you'll play a crucial role in enhancing the safety and effectiveness of IT services within Nuclear Operations. This position involves developing and implementing governance frameworks that ensure safe, compliant, and value-driven IT services and products, alongside overseeing a range of projects aimed at meeting regulatory and legal requirements. Your leadership will guide teams in carrying out assurance activities, managing penetration tests, and categorizing physical and information assets according to security clearance levels. The role does require occasional travel to various sites across the UK, so a willingness to be on the move is part of the job. To qualify, you will need British nationality and to fulfill specific criteria for Security Vetting. The opportunity with EDF UK also comes with a competitive salary and a diverse benefits package—ranging from a company pension scheme to flexible working arrangements. We value teamwork, safety, inclusion, and innovation; our aim is to ensure that you feel valued, supported, and celebrated in our dynamic environment. If you thrive in collaboration and are eager to influence positive change in IT services and nuclear safety, we would love to see your application by May 1st!

Frequently Asked Questions (FAQs) for Governance and Assurance Lead (Cyber) Role at EDF UK
What are the main responsibilities of a Governance and Assurance Lead (Cyber) at EDF UK?

The Governance and Assurance Lead (Cyber) at EDF UK is primarily responsible for developing and implementing governance frameworks, overseeing assurance activities, and managing penetration testing frameworks. This role ensures compliance with ONR regulations and helps guide IT projects to meet stringent regulatory standards, safeguarding the integrity of Nuclear Operations.

Join Rise to see the full answer
What qualifications do you need to become a Governance and Assurance Lead (Cyber) at EDF UK?

To be considered for the Governance and Assurance Lead (Cyber) role at EDF UK, you typically need to meet criteria for Security Vetting, which commonly necessitates British nationality and citizenship for the last five years. Strong skills in leadership, communication, and analytical problem-solving are also essential.

Join Rise to see the full answer
Is travel a requirement for the Governance and Assurance Lead (Cyber) position at EDF UK?

Yes, the Governance and Assurance Lead (Cyber) role at EDF UK does involve some travel across various sites in the UK, primarily about once or twice a month to oversee governance and assurance activities directly.

Join Rise to see the full answer
What kind of work environment can I expect as a Governance and Assurance Lead (Cyber) at EDF UK?

At EDF UK, you can expect a supportive and inclusive work environment that prioritizes safety and value. There is a strong emphasis on collaboration, whether you are in the office, on-site, or working remotely. The company also champions diversity and equal opportunity, ensuring everyone feels valued.

Join Rise to see the full answer
What benefits does EDF UK offer for the Governance and Assurance Lead (Cyber) position?

The benefits package for the Governance and Assurance Lead (Cyber) position at EDF UK includes a competitive salary, a company pension scheme, and diverse flexible benefits tailored to individual lifestyles. This may encompass options like health insurance, enhanced parental leave, fitness memberships, and technology vouchers.

Join Rise to see the full answer
Common Interview Questions for Governance and Assurance Lead (Cyber)
Can you explain your understanding of governance frameworks in IT?

Sure! Governance frameworks in IT are essential structures that define who makes decisions, how those decisions are communicated and executed, and the accountability measures in place. Discussing various models like COBIT or ITIL can show your deep understanding and adaptability to industry standards.

Join Rise to see the full answer
How do you manage penetration testing and remediation efforts?

Effective management of penetration testing involves defining a clear framework for tests, executing them methodically, and prioritizing findings based on potential risk impact. It's crucial to follow up with remediation efforts, ensuring that vulnerabilities are addressed promptly and effectively.

Join Rise to see the full answer
Describe a situation where you had to communicate complex IT security issues to non-technical stakeholders.

In such scenarios, it's vital to simplify the language and use analogies to convey risks. By correlating technical issues to everyday concerns (like financial risks), you can foster understanding and priority alignment among non-technical stakeholders.

Join Rise to see the full answer
What steps do you take to ensure compliance with ONR regulations?

I start by ensuring a thorough understanding of the regulations applicable to our operations. Then, I establish checkpoints and reviews in our governance processes to guarantee that all relevant aspects comply with ONR requirements. Regular training sessions can also significantly enhance team compliance.

Join Rise to see the full answer
How do you prioritize multiple compliance and assurance projects?

Prioritizing projects involves assessing risks, regulatory deadlines, and organizational impact. Effective communication with stakeholders can also help gauge urgency and ensure alignment for impactful outcomes.

Join Rise to see the full answer
Can you give an example of a successful IT project you've led?

Certainly! In a past role, I led a project to implement a new compliance tracking system. We completed the project ahead of schedule and under budget by streamlining workflows and directly involving key stakeholders from the start, which increased engagement and ownership.

Join Rise to see the full answer
What tools do you use for managing governance and assurance activities?

I utilize a combination of project management tools and compliance tracking software to manage governance and assurance activities. Systems like Jira for project tracking and Compliance 360 for governance help in maintaining thorough documentation and transparency.

Join Rise to see the full answer
How do you foster collaboration in your team?

Fostering collaboration begins with establishing open communication channels. Regular team meetings, brainstorming sessions, and creating a culture of feedback can encourage everyone to share ideas and work together effectively.

Join Rise to see the full answer
What strategies do you use to handle security breaches?

Handling security breaches begins with a swift response plan. Assessing the breach's scope, communicating with stakeholders, containing the threat, investigating its origins, and then implementing corrective measures are crucial steps in minimizing damage.

Join Rise to see the full answer
How do you stay updated on evolving cybersecurity threats?

I stay updated on cybersecurity threats by regularly reviewing security bulletins, attending industry conferences, and participating in professional networks. Engaging with thought leaders and relevant literature helps me maintain a proactive posture in security governance.

Join Rise to see the full answer
Similar Jobs
Photo of the Rise User
Posted 4 days ago

Lead the Configuration Team in ensuring adherence to high standards of configuration management for the Hinkley Point C nuclear project.

Photo of the Rise User
Posted 4 days ago

Join Sizewell C as an Issues Resolution Lead and play a crucial role in managing technical risks for one of the UK's largest infrastructure projects focused on sustainable energy.

Photo of the Rise User
Posted 8 days ago

As an Application Support Engineer, you will play a crucial role in enhancing application performance and delivery while ensuring a high standard of service.

Photo of the Rise User

Join AMERICAN SYSTEMS as a Senior Systems Administrator focused on optimizing IT infrastructure and applications in support of national priority programs.

Photo of the Rise User
Posted 10 days ago

As an Enterprise Storage Engineer at PingWind, you will play a critical role in managing secure and scalable storage infrastructures for federal clients.

Photo of the Rise User

Blackhawk Network is looking for a Principal Database Administrator to drive process automation and optimize database solutions remotely.

NCS Australia Hybrid Sydney NSW, Australia
Posted 9 days ago

Become a Cloud Ops Engineer at NCS Australia and contribute to innovative cloud solutions and exceptional customer experiences.

Photo of the Rise User
American Express Remote Phoenix, Arizona, United States
Posted 10 days ago
Inclusive & Diverse
Empathetic
Collaboration over Competition
Growth & Learning
Transparent & Candid
Medical Insurance
Dental Insurance
Mental Health Resources
Life insurance
Disability Insurance
Child Care stipend
Employee Resource Groups
Learning & Development

Step into the role of Senior Service Assurance Engineer with American Express and elevate the reliability of digital payment solutions.

Photo of the Rise User
Boskalis Remote Papendrecht, Nederland
Posted 7 days ago

Boskalis invites experienced Cloud Platform Architects to innovate and enhance their multi-cloud infrastructure landscape.

Photo of the Rise User
Posted 8 days ago
Customer-Centric
Rapid Growth
Diversity of Opinions
Reward & Recognition
Friends Outside of Work
Inclusive & Diverse
Empathetic
Feedback Forward
Work/Life Harmony
Casual Dress Code
Startup Mindset
Collaboration over Competition
Fast-Paced
Growth & Learning
Open Door Policy
Rise from Within
Maternity Leave
Paternity Leave
Flex-Friendly
Family Coverage (Insurance)
Medical Insurance
Dental Insurance
Vision Insurance
Mental Health Resources
Life insurance
Disability Insurance
Health Savings Account (HSA)
Flexible Spending Account (FSA)
401K Matching
Paid Holidays
Paid Sick Days
Paid Time-Off

Join our innovative team as a Remote EDI Integration Analyst, where you'll play a crucial role in integrating applications and enhancing our business operations.

Électricité de France SA produces, markets, and distributes electricity. It provides a wide range of natural gas, electricity and energy eco-efficiency services. It operates through five divisions Engineering, Generation, Optimization & Trading, T...

89 jobs
MATCH
VIEW MATCH
FUNDING
SENIORITY LEVEL REQUIREMENT
TEAM SIZE
EMPLOYMENT TYPE
Full-time, hybrid
DATE POSTED
April 19, 2025

Subscribe to Rise newsletter

Risa star 🔮 Hi, I'm Risa! Your AI
Career Copilot
Want to see a list of jobs tailored to
you, just ask me below!
LATEST ACTIVITY
E
Someone from OH, Cincinnati just viewed Administrative Assistant at Elevate and Delegate
Photo of the Rise User
8 people applied to DevOps Engineer 3 at Granicus
Photo of the Rise User
Someone from OH, Akron just viewed Customer Support Representative at ProVia
Photo of the Rise User
17 people applied to SOC Analyst I at CBIZ
Photo of the Rise User
80 people applied to Cybersecurity Intern at Dewberry
Photo of the Rise User
Someone from OH, Alliance just viewed Store Representative - Mid-Shift at Serv-U-Success
Photo of the Rise User
Someone from OH, Eastlake just viewed (REMOTE) Account Executive at Trellis
Photo of the Rise User
12 people applied to Junior Security Engineer at Epic
Photo of the Rise User
Someone from OH, Elyria just viewed Security Officer - Factory Patrol at Allied Universal
C
14 people applied to ISSE/ ISSO at Centuria
Photo of the Rise User
Someone from OH, Cincinnati just viewed Staff Software Test Engineer, Platform at Clari