Job summary
ONR is not a Civil Service department, however, we are an arms length body of Department of Work and Pensions.
The Office for Nuclear Regulation regulates all aspects of security for civil nuclear materials and sensitive nuclear information in the United Kingdom. We regulate against our outcome focused Security Assessment Principles in accordance with the Nuclear Industries Security Regulations 2003. ONR also supports the development and�
improvement of good practice for nuclear security both domestically and internationally.�
ONR also regulates the transport of nuclear and radioactive materials by road, rail, air, and inland waterways, and as of January 2021 operates the UK�s State System of Accountancy for and Control of Nuclear Materials (SSAC) and a domestic safeguards regime.�
As part of its 2025 strategy ONR is committed to being a modern and transparent regulator, delivering trusted outcomes and value. We are making substantial investments in new digital technologies and skills to enhance our regulatory processes and management of information.
Job description
About the role�
Job Purpose/Key Responsibilities
The role of the Cyber Security & Information Assurance Inspector is to deliver security regulation across the civil nuclear industry to ensure that it manages cyber security and information risks appropriately and effectively. This is achieved primarily through:�
�
� Assessment of duty holders� cyber security arrangements to provide confidence that risks are being adequately managed.�
� Undertaking regulatory inspections with duty holders to ensure the effective implementation of technical cyber security controls to protect information technology, operational technology, and sensitive nuclear information.�
� Conducting inspections of facilities across the nuclear supply chain to ensure information security risks are effectively managed.�
� Contributing to the development of regulatory policy and influencing the development of good practice both nationally and internationally.�
� Liaison with other regulators (including those in security and safety disciplines) and various Government security and intelligence agencies, including the co-ordination of the sector�s response to high profile cyber security events and incidents.�
� Representing ONR at security events and meetings, such as those organised by the International Atomic Energy Agency, the World Institute for Nuclear Security, the UK Cyber Security Council, and those organised directly by the UK Nuclear industry. Training to expand and deepen knowledge and experience in specific nuclear, cyber security, information assurance and regulatory topics will be given throughout the successful candidate�s career, however successful applicants will already have demonstrable experience in the field.
As experience of regulating nuclear security increases, all inspectors are given the opportunity to progress and achieve promotion.�
�
Line Management Responsibilities
� None currently, however, at this level there could be an expectation to manage staff in the future and to support graduate and apprentice staff through mentoring.�
Person specification
Location/Travel
This post may be undertaken from a base at any one of ONR�s office locations (Bootle, Cheltenham, or London). You may be eligible for relocation package up to �15,000.
It should be noted that during the first twelve months of appointment staff will be required to spend a significant amount of time (approximately 1 week in 4) at the Bootle office (or on occasion our other offices) in order to undertake mandatory warranting (legal and regulatory) and develop business relationships with colleagues.�
This post requires some travel including overnight stays predominantly across the United Kingdom and occasionally abroad.�
ONR operates hybrid working (working in the office and or at home) as part of our flexible working policy. There is an expectation that everyone will spend time in the office on a regular basis, recognising that some work is better done face to face. Managers will collaborate with their teams on what works best to meet individual, team, business and organisational needs to enable collaboration, as well as balancing personal choice and wellbeing.
The successful applicant requires a full driving licence which permits the holder to drive in the UK unless reasonable adjustments can be made under the Equality Act 2010.�
Security Clearance�
The successful candidate must hold or achieve and retain National Security Vetting clearance at SC level.�
Person Specification�
ONR recognises it has a role to play in helping those leaving the Armed Forces (veterans) and have introduced a Guaranteed Interview Scheme for veterans. This is part of a government initiative known as the �Great Place to Work for veterans. Veterans are officially defined as anyone who has served for at least one day in Her Majesty�s Armed Forces (Regular or Reserve). All veterans who meet the minimum criteria for a role will be invited to interview and they have the choice to opt into this scheme when completing their application. To be eligible to apply for roles under the initiative, veterans must meet certain eligibility criteria below.�
1. have served for at least one year in Her Majesty's Armed Forces (as a Regular or Reserve)
2. be in transition from, or ceased to be a member of, Her Majesty�s Armed Forces; and
3. not already be employed by ONR
Essential Qualifications
We expect all Cyber Security & Information Assurance Inspectors to:�
4. Hold a relevant qualification (for example, an NCSC certified degree, or Level 6 qualification or higher in a Cyber Security or Information Security related discipline).�
5. Hold Full Professional Membership and or Chartership of an appropriate professional body (, ChCSP, CNSSP, MBCS, MCIIS or MSyI).
Applicants who feel they possess equivalent experience, qualifications and/or professional memberships are invited to apply, however must clearly evidence how their background and skills meet these expectations.�
Job Related Expertise�
To be effective, the candidate will require a breadth and depth of expertise and skills in technical areas (such as cyber defence, detection, response, and recovery); and a firm understanding of personnel/procedural areas (such as leadership and management, culture, and competence) related to information risk management and cyber security. This is likely to include:�
6. Extensive understanding of the principles, processes and challenges of information risk management and its practical application in a nuclear or highhazard environment.
7. Knowledge of current cyber threats and technical security vulnerabilities.
8. Application of Government protective security procedures and making balanced judgements on adequacy.
9. Proficiency at managing security risks in a regulated environment.
10. Leadership in the assessment of cyber security arrangements, including the conduct of audits, assurance activities and/or compliance inspections
11. Delivery of concise, accurate, high quality written reports to tight deadlines.
12. Proven effective judgement and decision-making skills, including an understanding of strategic impact, gathering, and analysing relevant information, evaluating options, applying logical reasoning, and making effective and proportionate risk-based recommendations.
13. Being open and communicative through the ability to demonstrate highly articulate verbal and written communication skills, including the ability to present complex technical matters to a non-expert audience.
14. Demonstrable strong influencing skills and an ability to persuade by working collaboratively and flexibly with all stakeholders, showing appropriate interpersonal sensitivity, self-awareness, and assertiveness.
15. Evidence of managing projects through sound planning, prioritisation, and timely delivery of work to very high standards.
16. Evidence of effective and professional behaviours throughout delivery of roles.
We would ideally like you to have experience in the nuclear sector or alternative high hazard industry. But don�t worry if you don�t! We are happy to consider applicants with a non-nuclear/non-high hazard background who, if appointed, would undertake a structured nuclear training programme to reach Nuclear Security Inspector level (subject to alternative salary range whilst training �51,502 - �61,368).
Benefits
Alongside your salary of �66,622, Office for Nuclear Regulation contributes �19,300 towards you being a member of the Civil Service Defined Benefit Pension scheme.
17. Learning and development tailored to your role
18. An environment with flexible working options
19. A culture encouraging inclusion and diversity�
20. A civil service pension�