Radioactive Waste Management is looking for an Information Security Operations Manager, to join them as they continue through a critical stage in one of the UK’s largest environmental projects.

You will work with key stakeholders to provide information security incident management services in response to breaches reported within the organisation. You will continually develop RWM’s portfolio of scenario-based cyber incident response plans to enable appropriate testing.


Role description

About RWM:

RWM’s vision as an organisation is to create a safer future by managing radioactive waste effectively, to protect people and the environment, collaborating with experts on multi-million pound research programmes and radioactive waste producers to find ways to package it that are suitable for disposal in a Geological Disposal Facility.


You will:

  • Engage key stakeholders to agree the design of the management framework that RWM will adopt for responding to and recovering from information security incidents in partnership with NDA and our Suppliers.
  • Expand the range of information security scenarios within the scope of RWM’s incident response plans, ensuring the necessary preparations and resources are tested for operational readiness.
  • Work with RWM and NDA stakeholders to triage and confirm the nature of an incident, ensuring appropriate management, business and technical resources are tasked with responding effectively to minimise the impact on the business
  • Manage and support the seamless transition from the response to the recovery phase of incident management, ensuring that all affected business operations, data and IT services are returned to “normal” with minimal business impact and delay.
  • Report progress against workstream plans, enabling the RWM CISO to make informed and effective leadership decisions and proactively address any newly identified delivery risks or issues.

Essential skills

You will have experience in defining the requirements for driving development of SOC/SIEM capabilities. Security incident investigations and capturing lessons learned to drive improvements will be key so membership with MCIIS and certifications in information security incident management (ISO22301, CREST, Etc.) would be ideal.


If you feel you are suitably qualified for this position, Thomas Thor would like to hear from you. Please contact Clare O’Brien on


We wish to thank all applicants for their interest and effort in applying for this position; however, we can only consider applicants who are eligible to work in the UK (citizen/permanent resident/work permit with sufficient length of validity).

Clare O'Brien