UK CSIRT Senior Analyst - Hybrid

About The Role

At National Grid, we keep people connected and society moving. But it’s so much more than that. National Grid supplies us with the environment to make it happen. As we generate momentum in the energy transition for all, we don’t plan on leaving any of our customers in the dark. So, join us as a UK CSIRT Analyst, and find your superpower.

The UK CSIRT Senior Analyst will deliver the actions and activities as required and detailed in Cyber Incident Response plans. Using technical expertise and co-ordination capabilities, they will work at times independently or to lead the CSIRT Analyst team to identify, prepare for and resolve incidents and issues. This role requires that the holder will help to mentor and develop CSIRT Analyst team members to achieve high performance and individual ability.
 

This role is based in Warwick and will be a shift role, of which the shifts range from 6 am – 9 pm, with compensated shift allowance, and home work available.
 

Key Accountabilities

• Be a point of focus on behalf of CSIRT when owning Cyber Security Incidents – acting as Subject Matter Expert and/or On Call.
• Use your skillset to provide guidance with respect to Cyber Security, as a Subject Matter Expert during complex incident response.
• Work alongside System Administrators and CSIRT Principals to ensure efficient and appropriate onboarding/offboarding of systems and applications.
• Be accountable for all aspects in their control with respect to the above. 
• Work alongside peers and co-workers to achieve goals, most notably UK CSIRT Team, US CSIRT Senior Analysts, CSIRT Incident Managers, CSIRT Principals. 

About You

• Troubleshooting and negotiating in technical environments
• Experience of case management and ticketing systems
• Experience of security monitoring platforms
• Strong experience of working within Regulated environments
• Demonstrated ability to support response to security incidents using commercial and/or open-source technologies.
• Strong experience mentoring and developing analysts.
• Strong understanding of networking protocols and infrastructure designs; including cloud infrastructures, routing, firewall functionality, host and network intrusion detection systems, encryption, load balancing, and other network devices.

• Advanced first-hand experience with security technologies, including:

o    Endpoint Detection & Response tools (EDR)
o    Intrusion Detection & Prevention Systems (IDS/IPS)
o    Security Information & Event Management (SIEM)
o    Network Analysis tools - Wireshark, “tcpdump”
o    Host Based Investigations – Log File and Memory Investigations
o    Email Investigations – Including Header Analysis and Office Doc Investigations
o    Advanced Malware Analysis
o    Analysis of Event Logs
o    Exceptional understanding of Windows and Linux Operating Systems
o    Exceptional understanding of TCP/IP and underlying network protocols

Qualifications : 

• A degree in a computer science related discipline or equivalent experience of
• At least two of the following certifications or equivalent experience: - GIAC Certified Forensic Analyst (GCFA), GIAC Reverse Engineering Malware (GREM), GIAC Cyber Threat Intelligence (GCTI), GIAC Certified Incident Handler (GCIH), GIAC Network Forensic Analyst (GNFA), GIAC Response and Industrial Defence (GRID), GIAC Certified Intrusion Analyst (GCIA), GIAC Penetration Tester (GPEN) or equivalent.
   

What You'll Get

A competitive salary between £52,000 – £67,000 – dependent on capability

As well as your base salary, you will receive a bonus based on personal and company performance and a competitive contributory pension scheme where we will double match your contribution to a maximum company contribution of 12%. You will also have access to a number of flexible benefits such as a share incentive plan, salary sacrifice car and technology schemes, support via employee assistance lines and matched charity giving to name a few.

#LI-RL1
#LI-HYBRID
 

At National Grid, we work towards the highest standards in everything we do, including how we support, value and develop our people. Our aim is to encourage and support employees to thrive and be the best they can be. We celebrate the difference people can bring into our organisation, and welcome and encourage applicants with diverse experiences and backgrounds, and offer flexible and tailored support, at home and in the office.

Our goal is to drive, develop and operate our business in a way that results in a more inclusive culture. All employment is decided on the basis of qualifications, the innovation from diverse teams & perspectives and business need. We are committed to building a workforce so we can represent the communities we serve and have a working environment in which each individual feels valued, respected, fairly treated, and able to reach their full potential.