Incident Response Specialist - NESO
National Grid
About the Role
Great Britain's electricity system is undergoing an ambitious, exciting and vital transformation. Together with industry, we are creating a cleaner, greener system, one that protects the planet and serves generations to come.
The National Energy System Operator (NESO) are now looking for a Cyber Security Incident Response Specialist to join us, as part of a new Security Incident Management team being formed within the ESO Security department in DD&T. The team will be responsible for managing the response to Cyber and Physical security incidents, documenting lessons learnt, and developing Incident Response readiness plans and processes, alongside leading the exercise and testing programme.
The Incident Response Specialist will manage security incidents following industry best practise incident management frameworks. They will form part of the new team to establish the Security Incident Response function, including the development of new governance, plans and processes.
This role can be based from Wokingham or Warwick, and we continue to offer hybrid working from office and home.
About us
At NESO, our mission is to meet the challenges of the future and deliver cleaner, affordable electricity. We constantly strive to do this better by using technology and innovation to transform the way we work.
About the National Energy System Operator (NESO)
In Autumn of 2024, the ESO transitioned to National Energy System Operator, or NESO for short. Previously denoted as the Future System Operator (or FSO), the new National Energy System Operator is the independent body responsible for planning Great Britain’s electricity and gas networks and operating the electricity system.
The ESO, including all of its existing roles, are now at the heart of the new National Energy System Operator. As NESO, we will build on our existing roles, capabilities, and ways of working significantly to create an organisation the energy system and its users’ need. Our new capabilities will enable us to look across vectors, including electricity, natural gas and hydrogen, and crucially consider the trade-offs between them.
The organisation is set up as a public corporation with its own Board of independent directors, with complete operational independence from government, the regulator and any and all commercial interest. As was the ESO, NESO will be licenced and regulated by Ofgem through price control agreements and obligated to identify optimal solutions to system operations and planning in the most sustainable, affordable and secure way for all.
The time to deliver is now. As part of our team, you won’t just be touching the lives of almost everyone in Great Britain – you’ll be shaping the way we use and consume energy for generations to come.
has context menu
Key Accountabilities
Delivery
- Effectively manage higher severity cyber and physical security incidents, ensuring resilience for the future system operator and the whole energy sector.
- Develop and maintain incident response plans, processes, and supporting documentation.
- Deliver information in formal reports or as presentations and briefings to internal and external customers.
- Focus on continuous improvement and personal development.
Outreach
- Support other business departments in the development and delivery of response plans.
- Plan and deliver Security exercises to a variety of audiences up to the Silver Team .
- Take the initiative to connect internal teams with similar issues or opportunities when defining how the FSO Incident Management Team works with the wider business.
- Develop relationships with government and energy sector stakeholders to improve understanding of threat intelligence for the future system operator and the whole energy sector.
- Take active involvement in industry forums and research groups.
Subject Matter Expertise
- Develop and implement the Incident Response process effectively to ensure successful remediation and restoration in the event of a security incident.
- Understand the need for, opportunities, and limitations of response capabilities, ensuring that incident investigations are timely and effective.
- Proactively share knowledge between the Incident Management function and other teams.
About You
- Significant experience in incident management or associated roles
- Experience applying best practise and industry leading incident management frameworks.
- Experience in a technical discipline associated with Incident Response.
- Team player and adept at working in multi-disciplinary and diverse teams.
- Proven analytical skills and capable of solving new and complex problems.
- Excellent written and verbal communication skills with the ability to communicate the impact and importance of detailed technical information to non-technical and senior audiences.
- Managing and building relationships with customers and stakeholders.
- Ability to work with senior management.
- Mentor and support junior team members.
- Previous experience in critical national infrastructure or similar sector, involving the analysis and delivery of threat intelligence
What You'll Get
A competitive salary between £55,000 – 65,000 – dependent on experience and capability.
As well as your base salary, you will receive a bonus based on company performance, 26 days annual leave as standard and a competitive contributory pension scheme where we will double match your contribution to a maximum company contribution of 12%.
You will also have access to a comprehensive benefits package tailored to support your well-being and professional success. From a competitive salary to flexible work arrangements, we promote your work-life balance. Enjoy fit for purpose wellbeing and lifestyle offerings, ongoing skill development aligned to our Purpose and Values, and be part of a supportive community that values your individuality and where you can belong.
More Information
We work towards the highest standards in everything we do, including how we support, value and develop our people. Our aim is to encourage and support employees to thrive and be the best they can be. We celebrate the difference people can bring into our organisation, and welcome and encourage applicants with diverse experiences and backgrounds, and offer flexible and tailored support, at home and in the office.
We're committed to building a workforce that represents the communities we serve, and a working environment in which each individual feels valued, respected, fairly treated, and able to reach their full potential.
On 1 October 2024, we're becoming the National Energy System Operator (NESO).
NESO’s new careers site goes live on Monday 7 October. In the meantime, you’ll still see National Grid branding. The job application process remains the same. If you have any questions, please contact: box.TalentAcquisition@nationalgrideso.com
#LI-BO1
#LI-HYBRID