Cyber Security Technical Specialist

Cyber Security Tech Specialist

Industry: Innovative Construction

Location: Dartford, other locations considered 

The IT function has renewed its strategy in response to Laing O'Rourke's ambition to help transform an industry, making it more sustainable, more productive, and fit for the future.

Our opportunity is to apply technology in ways that genuinely matter, shaping how complex projects are delivered, how decisions are made, and how innovation improves outcomes for people, communities, and the environment.

The mission is clear - to create a modern, resilient technology environment, where data underpins every decision, AI enhances every process, and digital capability accelerates progress at scale.

We are building a different kind of IT function to help achieve this, one that is trusted, forward-looking, and deeply connected to the success of the business.

Whether building deep technical expertise, developing broader capability, or stepping into leadership over time, individuals joining now will not simply inherit the status quo, they will help create what comes next.

In this role, you will work on meaningful technical challenges, contribute to important initiatives, and grow your capability in a supportive environment. You will be trusted with responsibility, encouraged to contribute ideas, and able to see the impact of your work.

We are looking for people who are curious, thoughtful and motivated by contributing to something larger than themselves.

About the role

The Cyber Security Tech Specialist plays a key role in operating and enhancing Laing O'Rourke's Cyber Security technology ecosystem.

A core part of this role is the hands‑on management and optimisation of critical security platforms, including Privileged Access Management (PAM), Application Control, and Data Loss Prevention (DLP),to ensure strong protection, positive end‑user experience, and compliance with our security certifications.

Success in this role requires a strong understanding of security standards, risk management, and the ability to proactively identify, respond to, and mitigate threats.

What will you be doing?

• Threat Awareness and Continuous improvement
• Operational ownership of core cyber security platforms – PAM, Application Control, Endpoint Protection & Control (EDR)
• Supporting testing and validation of cyber security controls
• Support Disaster recovery and Business Continuity Requirements (BCP)

In this role, you will:

• Collaborate and share knowledge with Cyber and Infrastructure teams
• Update documentation for security libraries
• Support the implementation of security best practice and provide guidance
• Research, assess and recommend responses to new threats
• Participating in incident response, containment and recovery

Who will you work with?

You'll work alongside IT colleagues, delivery partners and business stakeholders who value collaboration, openness and thoughtful problem‑solving. This is an environment where strong relationships, trust and clear communication are central to successful delivery.

Why this role?

You will have the opportunity to influence not just what is delivered, but how it is delivered. Your leadership approach, judgement and ability to bring people together will make a visible difference.

You will probably recognise yourself in many of the following:

Someone who understands and looks to enhance knowledge of Cyber Security & Infrastructure knowledge. You don't settle for standard and support enhancing process development, building technical documents and guidelines. You will be able to respond to incidents and analyse threats for lessons learned. Keeping up to date with regulatory and standards procedures comes second nature to you.

Experience required

• Knowledge of best practices of IT security hardware and software, security suites, identity and access management, and encryption
• Experience in IT, with an operational and customer-facing role
• Experience in managing / supporting PAM solutions in enterprise environments
• Familiarity with identity and access management (IAM) principles, including role-based access control (RBAC) and least privilege
• Understanding of Application Control concepts, tools, and technologies (e.g., whitelisting, blacklisting, application allowlisting). Experience in configuring and managing Application Control solutions in enterprise environments preferred
• Understanding of security frameworks such as NIST or CIS Controls, or ISO 27001
• Formal industry recognised Cyber Security qualification such as ISC2 CISSP, ISC2 CISM or Certified Ethical Hacker (CEH) (desired).
• Security and Network technology experience

Don't meet every requirement?

If you hold the essential criteria then we can support growth and welcome transferable skills.

About us

We are an international engineering and construction company delivering state-of-the-art infrastructure and buildings projects for clients in the UK, Middle East and Australia.

Certainty, reliability, quality – this is what our clients want. And at Laing O'Rourke, we have more than 150 years of experience delivering it. Laing O'Rourke's story is one of energy, passion, ambition, people and teamwork. We harness the power of our experience, stretching back over a century and a half to deliver certainty for our clients.

As part of the Disability Confident scheme, we would like to enable access to candidates with long term health conditions and disabilities through the ‘Offer an interview scheme'. This supports applicants that meet the essential criteria by offering an interview for the advertised position. Please let us know prior to interview what adjustments are required as well as discussing how we can support you in the workplace.

We want to ensure our recruitment process is accessible to all. If you need the application form in an alternative format or you would like to know more about our recruitment process, please email resourcingteam@laingorourke.com

#LI-SB1