CSIRT Team Opportunities: Analyst, Senior Analyst, and Principal Positions Available

About us

Are you intrigued as to how malicious actors compromise an environment, their motivations, and how they achieve their goals? Do you have an investigative and logical mindset? Would you like to defend against such actors for the benefit of the United Kingdom?  

We respond as one global team, US & UK, comprising of Analysts, senior Analysts, Principal Analysts, this affords you a team you can query, learn, and rely upon. Additionally, we have procedures ingrained within our technology to assist your investigations from triaging to containment. At National Grid, we keep people connected and society moving. But it’s so much more than that. National Grid supplies us with the environment to make it happen. As we generate momentum in the energy transition for all, we don’t plan on leaving any of our customers in the dark. 

National Grid Cyber Security Incident Response Team (CSIRT) is hiring for our Warwick site with flexible, hybrid working available. All successful applicants will be subject to national security vetting. 

Analyst

The UK CSIRT Analyst will play a vital role in executing Cyber Incident Response plans by monitoring, responding to, and investigating cybersecurity incidents within the Cyber Security Operations Centre (CSOC). As an analyst, you will work as part of a global team, collaborating with colleagues from the US and UK to ensure thorough triage and containment of security events. This position requires a proactive and curious mindset, with opportunities to learn and develop skills in various cybersecurity tools and technologies while working shifts that range from 6 am to 9 pm.

A salary between £46,000 - £55,000, shift allowance of 20%, a bonus based on personal and company performance and a competitive contributory pension scheme where we will double match your contribution to a maximum company contribution of 12%.

Senior Analyst

The UK CSIRT Senior Analyst will play a key role in executing Cyber Incident Response plans, leading the CSIRT Analyst team to identify, prepare for, and resolve security incidents. This position requires strong mentorship skills to develop team members and ensure high performance, while also acting as a Subject Matter Expert during complex incident responses. The analyst will collaborate with various teams to enhance incident management and support the overall security posture of the organisation. 

A salary between £52,000-£67,000, a bonus based on personal and company performance and a competitive contributory pension scheme where we will double match your contribution to a maximum company contribution of 12%. 

Principal Analyst

The UK CSIRT Principal Analyst will take a technical leadership role in executing Cyber Incident Response plans, primarily working independently while guiding the CSIRT team in monitoring, identifying, and resolving high-level technical incidents. This position requires the individual to act as a Subject Matter Expert, providing direction to shift and senior analysts, and mentoring team members to enhance their skills and performance. Additionally, the Principal Analyst will engage with various stakeholders to develop incident response processes, explore new tools and methodologies, and ensure the effective onboarding of systems and applications to strengthen the organization's security posture.

A salary between £60,000-£70,000, a bonus of up to 15% of your salary for stretch performance and a competitive contributory pension scheme where we will double match your contribution to a maximum company contribution of 12%. 

What You'll Be Using

Our estate comprises Windows enterprise technology, Microsoft Azure Cloud, and Operational Technology relating to our core business, energy transmission & distribution. You’ll mainly utilise technologies such as Splunk SIEM to aggregate information & produce alerts and Splunk SOAR for investigation, case management, contextualisation, and automation. Alongside the individual security tooling itself such as Endpoint Detection & Response (EDR), Anti-Virus (AV), Network Proxies, Email Security Gateways, Sandboxing (Malware detonation), RiskIQ (OSINT), and Intrusion Detection/Prevention Systems (IDS/IPS).

Why Join Us

At National Grid, you will be part of a dynamic and collaborative environment where your contributions directly impact our cybersecurity efforts. As a member of the CSIRT team, you will have the opportunity to work alongside experienced professionals who will mentor you and help you develop your skills in incident response and security operations.

We offer competitive compensation, shift allowances, and a commitment to your professional development, ensuring you have the resources and support needed to thrive in your career. Join us in our mission to protect critical infrastructure and make a meaningful difference in the energy sector!

#LI-RL1
#LI-HYBRID
 

At National Grid, we work towards the highest standards in everything we do, including how we support, value and develop our people. Our aim is to encourage and support employees to thrive and be the best they can be. We celebrate the difference people can bring into our organisation, and welcome and encourage applicants with diverse experiences and backgrounds, and offer flexible and tailored support, at home and in the office.

Our goal is to drive, develop and operate our business in a way that results in a more inclusive culture. All employment is decided on the basis of qualifications, the innovation from diverse teams & perspectives and business need. We are committed to building a workforce so we can represent the communities we serve and have a working environment in which each individual feels valued, respected, fairly treated, and able to reach their full potential.