Keolis UK & Ireland

www.keolis.co.uk

2 Jobs

33 Employees

About the Company

Keolis is a leading passenger transport business, operating in 13 countries around the world. Since 1996 we’ve operated some of the UK’s busiest rail franchises, delivering one in three rail journeys and employing over 9,000 people. We draw upon our international best practice as an operator of some of the world’s most advanced railways, and as the biggest operator of light rail services globally, to deliver innovative, partnership–led passenger transport services here in the UK. At the heart of everything we do is an understanding of the importance of integrated transport systems, and a track record of delivering them successfully the world over. We work with other operators to connect different modes of transport, creating single, simple networks. We think like a passenger, and use innovation and investment to continually drive improvements in their experience. Our collaborative approach to operating services sees us form close relationships with clients and stakeholders, helping to improve quality while reducing operating costs. Keolis UK franchises include: GTR, Docklands Light Railway, Manchester Metrolink and Nottingham Trams.

Listed Jobs

Company Name: Keolis UK & Ireland
Job Title: Ingénieur SecOps Sécurité Opérationnelle F/H
Job Description: **Job Title** Ops Security Engineer – SecOps (Male/Female) **Role Summary** Design, implement, and maintain operational security controls for the enterprise IT environment. Lead SecOps projects (CyberSOC, bastion, AD hardening), integrate security into new developments, manage security tools (EDR, SIEM, vulnerability scanners), monitor threats, and enforce compliance across on‑premises, Azure, and hybrid cloud infrastructures. **Expectations** - Deliver end‑to‑end security solutions within defined timelines. - Keep systems compliant with ISO 27001/27002/27005, EBIOS RM, and other relevant standards. - Independently triage alerts, perform incident response, and improve security posture. - Communicate findings and recommendations to technical and business stakeholders. **Key Responsibilities** - Pilot and execute SecOps initiatives: CyberSOC, bastion setup, AD hardening. - Embed security controls into projects following a prescribed methodology. - Benchmark and assess market security solutions; validate and integrate them into KB2M’s SI. - Conduct continuous vulnerability and threat monitoring; manage remediation workflows. - Deploy, administer, and operate security components (EDR, vulnerability scanners, SIEM, etc.). - Formalize, evolve, and enforce operational security processes and policies. - Track and report on patching cycles, maintain security incident metrics. - Coordinate with SOC partners, validate access authorizations, and generate cyber‑security indicators. - Produce and keep up‑to‑date security operational documentation (processes, technical guides). - Perform periodic compliance reviews: security rules, accounts, permissions, directory structures. - Utilize control tools for governance and audit. **Required Skills** - Expert in CrowdStrike, Cyberwatch, Lansweeper, WAPT, WSUS, Microsoft LAPS, Ambionics. - Proficient scripting: Bash, PowerShell, Python. - Experience in pentesting, forensic analysis, OSINT, incident response. - Deep knowledge of malware protection, EDR/XDR, SIEM, VPN, SASE, Zero‑Trust, WAF, IPS/IDS. - Strong networking fundamentals: IP addressing, routing, switching, VLANs, firewalls, proxies, ADC, 4G/5G, M2M. - Operating systems: Windows and Unix/Linux. - Identity governance: identification, authentication, authorization. - On‑premise, private cloud, Azure experience. - Familiarity with ISO standards (27001/27002/27005) and EBIOS RM risk analysis. - Project management, stakeholder communication, security awareness training. **Required Education & Certifications** - Bachelor +4/5 (Master) in Engineering or equivalent with a specialization in Information Security. - Minimum 1 year of operational security experience (internship or professional). - Preferred certifications: CISSP, CISM, CEH, CompTIA Security+, Azure Security Engineer Associate, CrowdStrike Certified Protection Analyst (CCPA), or equivalent.

Bordeaux, France

On site

22-10-2025

Company Name: Keolis UK & Ireland
Job Title: Chef de projet Cybersécurité Gouvernance, Risques et Conformité F/H
Job Description: Job title: Cybersecurity Governance, Risk, and Compliance Project Manager (F/M) Role Summary Lead the definition, implementation, and maintenance of cybersecurity governance, risk, and compliance (GRC) practices across a multi-country group. Drive alignment with business units and subsidiaries, ensuring that security requirements are understood, adopted, and monitored effectively. Expectations - Deliver a mature cybersecurity framework that meets group objectives and regulatory demands. - Balance practicality with compliance, filtering essential controls from adaptable ones. - Manage multiple concurrent projects with clarity, autonomy, and precision. Key Responsibilities - Define and specify cybersecurity requirements tailored to the group’s context. - Maintain and verify the operational status of the group cybersecurity repository. - Oversee the deployment of inherited cybersecurity mandates from the group‑wide repository. - Lead the cybersecurity stream: communicate, identify challenges, and facilitate synergies. - Drive the creation, monitoring, and updating of the cybersecurity risk map. - Establish pragmatic governance to enable effective risk‑based steering. - Support awareness initiatives when required. Required Skills - Strong analytical and risk‑management capabilities. - Excellent written and verbal communication, with a knack for clear, concise documentation. - Proactive, autonomous, and able to juggle multiple, cross‑functional assignments. - Strong interpersonal skills, adaptable to audiences from diverse backgrounds. - Trilingual: French (native), English (proficient), other languages a plus. - Familiarity with GRC tools and risk‑assessment methodologies. Required Education & Certifications - Bachelor’s degree or higher (BAC+5) in Engineering, Computer Science, Information Security, or a related discipline. - Minimum 3 years of experience in cybersecurity governance, risk, or compliance. - Relevant certifications (e.g., CISSP, CISM, CRISC, ISO/IEC 27001 Lead Implementer) are an advantage.