Cybersecurity, Critical Infrastructure & AI Regulation Principal Inspector

CRR are seeking to appoint a Cybersecurity, Critical Infrastructure and Artificial Intelligence Regulation Principal Inspector. The Role : The Principal Inspector (PI) Cybersecurity, Critical Infrastructure and Artificial Intelligence Regulation (CCIAI) is a new post within the Commission. You will be directly responsible for the establishment, planning and implementation of the new division and its work programme, which will include two additional staff members. The Division will ensure the implementation of the required new procedures to oversee compliance by the rail and cableway sector with the new legislative framework. In addition to leading this area, the appointee will also form part of the senior management team within the CRR, which oversees all aspects of the Commissions operations, and will have a specific internal role focused on the digitisation of CRR processes. This is a key role requiring the development and maintenance of strong working relationships with regulated entities under the new framework, as well as broader engagement with other competent authorities and stakeholders. The Principal Inspector (PI) Cybersecurity, Critical Infrastructure and Artificial Intelligence Regulation will provide strategic leadership, direction, and oversight in establishing this new division within the Commission for Railway Regulation (CRR). The division will have overall responsibility for guidance, supervision, and enforcement in relation to the NIS2, CER in the rail sector and AIA in the cableways sector, ensuring that the CRR continues to operate as a highly capable and professional state body charged with regulating these critical areas. As a key member of the Senior Management Team, the Principal Inspector will contribute to the CRRs overall strategic and operational management and lead efforts to digitise the organisations internal processes, enhancing efficiency, transparency, and regulatory effectiveness. The appointee will also represent the CRR at both national and European levels, engaging with stakeholders and regulatory counterparts to build partnerships, share best practices, and ensure that the Commission approach to regulation is in line with other sectors and the approach of other competent authorities. Key Responsibilities include : The establishment and development of a new division responsible for the legislative oversight of entities in the rail transport sector relating to the requirement of CER, NIS2 and cableways in relation to AIA. Active involvement in the supervision and oversight process. The development of policy and procedures that govern the functioning of the new division for NIS2, CER, and AIA. Ensuring that the Commission has access to the required technical competency across the spectrum of network information systems, organisational resilience and artificial intelligence either directly or through external expertise. Managing direct reports including assigning tasks and targets, auditing and reviewing performance, and establishing and programming training and development needs. Being an active member of, and working with the senior management team, contributing to the CRRs compliance with a state bodies corporate governance requirements including, strategy development, financial oversight and the development and implementation and policy and procedure and having a specific responsibility for digitisation. Maintaining an appropriate level of knowledge of the developing risk trends in railway operations nationally and internationally as they relate to information network systems and resilience. Managing the CRR response to NIS2, CER and AI notifications including any necessary post occurrence activity. Ensuring CRR policy and procedures, guidelines, documents and processes are developed and reviewed to maintain a high standard and to align with the requirements of the legislative framework. Establishing and implementing an appropriate and proportionate oversight strategy including ensuring that the Commission is appropriately equipped to ensure its effective and efficient operation. Compiling and managing the development of aspects of the annual report and statement of strategy in their area of responsibility. Represent the CRR at relevant national competent authority fora and represent Ireland at relevant EU / International fora as required. Within the limits of responsibility and competency, providing support and advice to stakeholders. Maintaining appropriate communications with other stakeholders including as necessary, structured meeting programmes Other tasks as may be assigned by the Commissioner. Essential Criteria A third-level or professional qualification at Level 9 or higher on the National Framework of Qualifications in a discipline relevant to the role (e.g. Risk Management, Cybersecurity, Business Information Systems, or a related field). AND A minimum of five years relevant experience in cybersecurity governance, risk management, or compliance, including at least three years in a senior management role demonstrating strong leadership, operational, and organisational skills. In addition to : Strong understanding (or the proven ability to acquire such understanding) of the legislative and regulatory environment in the public sector and the compliance function of the CRR. In-depth knowledge of cybersecurity regulations, frameworks, and best practices relevant to critical infrastructure and digital resilience. A proven track record of effective leadership, team collaboration, and delivery at a senior level in a complex or high-risk environment. Medical fitness for railway access. Possession of a full, clean Category B drivers licence. Desirable Criteria Relevant professional certifications, such as Information Security Manager, Information Security Auditor, CISSP, or Risk and Information Systems Control. Experience in security audits, risk assessments, compliance reporting, or lead auditing roles. Proven ability to work independently and collaborate effectively across multidisciplinary teams. Demonstrated commitment to continuing professional development, including postgraduate qualifications. Understanding of, and experience in, risk evaluation and assessment in high-risk sectors. Strong analytical and decision-making skills, with the ability to assimilate complex data and develop strategies to address key issues impacting railway safety. Proven skills in developing and maintaining stakeholder relationships, with the ability to influence and network effectively across a broad range of interests. Excellent written, oral, and interpersonal communication skills. Proficiency in computer applications, including Microsoft Word, Excel, and PowerPoint. How to Apply : Conscia will be managing all aspects of the recruitment process on behalf of The Commission for Railway Regulation. Completed application forms must be uploaded via the Conscia Talent website. CVs will not be considered. Closing date for applications is Friday 14th November 2025 at 12 noon(Irish time). If you have any queries about the role, please contact Conscia Talent. Skills : cybersecurity artificial intelligence critical infrastructure regulation