Joining Arup
Arup’s purpose, shared values and collaborative approach has set us apart for over 75 years, guiding how we shape a better world.
Arup is a multi–disciplinary firm of designers, planners, engineers, consultants, and technical specialists, working across every aspect of today’s-built environment. Together we help our clients solve their most complex challenges – turning exciting ideas into tangible reality as we strive to find a better way and shape a better world.
Watch this short clip to discover how Arup are shaping a better world and how you could be a part of it!
The Opportunity
The role of a Senior Cyber Security Consultant in the built environment is of paramount importance, especially when it comes to safeguarding critical infrastructure. Critical infrastructure refers to systems and assets that are vital for the functioning of a society, including transportation networks, water and wastewater systems, power grids, communication networks, and more. These infrastructures are the backbone of our modern civilization, enabling the delivery of crucial services and ensuring the smooth operation of various sectors.
This role is to provide expert guidance and aid in ensuring the security and protection of digital systems, infrastructure, and data within the built environment. This will be achieved by implementing robust security measures, raising awareness, and developing effective response plans, which will contribute to the resilience and security of our essential systems, protecting both the integrity of our critical infrastructure and the well-being of our society.
We’re looking for a cyber-security professional, who is passionate about delivering the best outcomes for our clients, who is flexible and open to new challenges, and who brings strong social and communications skills.
You will be expected to:
1. Work directly with clients to identify and identify their cyber risks; then scope innovative and sustainable solutions to address those risks, including estimating cyber security engagements and assisting in proposal development.
2. Conduct comprehensive risk assessments to identify potential cyber threats and vulnerabilities in the built environment.
3. Develop and implement effective cyber security strategies and policies aligned with industry best practices and regulatory needs.
4. Deliver effective oversight and assurance programmes to identify, manage and mitigate cyber risk.
5. Manage project delivery, including task and commercial management and manage cyber security staff by recruiting, training, and coaching employees.
At Arup, you belong to an extraordinary collective – in which we encourage individuality to thrive. Our strength comes from how we respect, share and connect our diverse experiences, perspectives and ideas.
You will have the opportunity do socially useful work that has meaning – to Arup, to your career, to our members and to the clients and communities we serve.
Is this role right for you?
We're looking for:
6. A qualification in Engineering, Computer Science, Information Security, or a related field.
7. A relevant cyber-security professional qualification (or demonstrable evidence of working towards a qualification) including, but not exclusively, any of the following: NCSC Associate Cyber Professional (ACP) / Certified Information Security Professional (CISSP) / Certified Information Security Manager (CISM) / Certified Cloud Security Professional (CCSP) / Certified Wireless Security Professional (CWSP) / Certified in Information Systems and Risk Controls (CRISC) / Certified Information Systems Auditor (CISA).
8. A background in cyber security either as a consultant or within an organisation that operates physical assets
9. Proven people management background to provide coaching and development for others to maximize their potential.
10. Familiarity with built environment (ICS\OT) industry practices and technologies.
11. Knowledge of relevant regulations and standards, such as NIST Cybersecurity Framework, ISO 27001, and IEC 62443.
What we offer you
At Arup, we care about each member’s success, so we can grow together.
Guided by our values, we provide an attractive total reward package that recognizes the contribution of each of our members to our shared success. As well as competitive, fair and equitable pay, we offer a career in which all of our members can belong, grow and thrive – through benefits that support health and wellbeing, a wide range of learning opportunities and many possibilities to have an impact through the work they do.
We are owned in trust on behalf of our members, giving us the freedom, with personal responsibility, to set our own direction and choose work that aligns with our purpose and adds to Arup’s legacy. Our members collaborate on ambitious projects to deliver remarkable outcomes for our clients and communities. Profit Share is a key part of our reward, enabling members to share in the results of our collective efforts.
We also provide Private medical insurance, Life assurance, Accident insurance and Income protection cover. In addition, you’ll have access to flexible benefits to help you look after all aspects of your wellbeing and give you the freedom and flexibility to find the best solutions for you, your family, and your individual needs.
Different People, Shared Values
Arup is an equal opportunity employer that actively promotes and nurtures a diverse and inclusive workforce. We welcome applications from individuals of all backgrounds, regardless of age (within legal limits), gender identity or expression, marital status, disability, neurotype or mental health, race or ethnicity, faith or belief, sexual orientation, socioeconomic background, and whether you’re pregnant or on family leave. We are an open environment that embraces diverse experiences, perspectives, and ideas – this drives our excellence.
Our Application Process
Stay safe online – Arup will never ask for your bank details as part of our recruitment process.
Recruitment Agencies – We have a Preferred Supplier List of trusted partners to assist us when required and do not acknowledge any speculative CVs or unsolicited candidate introductions from agencies not on the list.
Closing date: 4th September 2025
We may close the role earlier than the advertised date should we receive a large number of applications, so please ensure you apply early.