As the Cyber Incident Management Lead you will play a critical role in developing, implementing and maintaining cyber incident management plans and processes which ensure Thames Waters ability to prevent, detect, respond to and recover from cyber incidents that could disrupt critical water and waste services, or compromise information/data.
You will play an integral role in ensuring the security and reliability of Thames Waters operations, reducing cyber risk to our essential services, and continuously improving our ability to respond to a cyber-attack.

WHO ARE WE?

We’re the UK’s largest water and wastewater company, with more than 16 million customers relying on us every day to supply water for their taps and toilets. We want to build a better future for all, helping our customers, communities, people and the planet to thrive. It’s a big job and we’ve got a long way to go, so we need help from passionate and skilled people, committed to making a difference and getting us to where we want to be in the years and decades to come.
Learn more about our purpose and values
Working at Thames Water
Thames Water is a unique, rewarding and diverse place to work, where every day you can make a difference, yet no day is the same. As part of our family, you’ll enjoy fast-tracked career opportunities, flexible working arrangements and excellent benefits.
Whether you’re interested in a role in one of our call centres or science labs, we’re looking for people like you with real passion and a burning desire to make things better.
So, if you’re looking for a sustainable and successful career where you can make a daily difference to millions of people’s lives while helping to protect the world of water for future generations, we’ll be here to support you every step of the way. Together, we can build a better future for our customers, our region and our planet.
Real purpose, real support, real opportunities. Come and join the Thames Water family. Why choose us? Learn more.
Our overarching aim is to ensure that Thames Water is great, diverse and inclusive place to work. We welcome applications from everyone and offer extra support for those who need it throughout the recruitment process. Our aim is to remove any real or perceived barriers to success, so if you need assistance, we’re here to help and support.
When a crisis happens, we all rally around to support our customers. As part of Team Thames, you’ll have the opportunity to sign up to support our customers on the frontline as an ambassador. Full training will be given for what is undoubtedly an incredibly rewarding experience. It’s also a great opportunity to learn more about our business, meet colleagues and earn some extra money along the way.

WHAT YOU’LL BE DOING AS A CYBER INCIDENT MANAGEMENT LEAD

• Develop, review, and update cyber incident response and recovery plans to address emerging threats and regulatory requirements.
• Work with third-party vendors, regulators, and governing bodies to ensure a cohesive response to major incidents.
• Provide feedback and recommend improvements based on exercise outcomes and lessons learned.
• Maintain records of cyber incidents, including root cause analyses and post-incident reviews.
• Prepare regular reports for leadership on the effectiveness of cyber incident management processes.
• Ensure cyber incident management compliance with applicable cybersecurity regulations and standards, such as NIS (Network and Information Systems) regulations, ISO 27001, NIST, MITRE