Senior Cyber Security Analyst

About Us

National Grid Electricity Distribution is the new name for Western Power Distribution. This is a very exciting time to be part of the largest UK electricity transmission and distribution business. We’ve changed our name, but our people and focus on providing great service to customers remains unchanged. We connect 8 million customers across the Midlands, South West England and South Wales and serve a population of over 18 million people. We do this whilst maintaining safety, reliability and excellent customer service.

National Grid employs over 29,000 people worldwide. Our vision is to be at the heart of a clean, fair and affordable energy future and we are doing this in a fast-moving industry with an increasing focus on tackling climate change, exploring new energy sources which are renewable, low carbon, and improve efficiency to meet demand.

We are an equal opportunities employer. Our desire is to bring in more employees from diverse backgrounds to build further on our inclusive culture. We value and celebrate individual difference and we believe that an inclusive culture will help the business grow as a positive, strong and innovative company.

Job Introduction

An opportunity is available for a Senior Cyber Security Analyst based at either Exeter or Plymouth.

Reporting to the Senior Cyber Solutions Architect, you will be responsible for the development, delivery and support of new cyber security systems and processes within the Cloud environments. You will also be a subject matter expert and point of escalation for the cyber security analysts.

*Please note the successful candidate may initially be appointed at a lower salary until all relevant courses and training are complete.

If you are offered a position, you will be required to undertake and successfully complete a Security Check (SC).

As part of our commitment to Diversity, Equity and Inclusion, all applications are automatically anonymised by our recruitment system. This is with the aim of realising our ambition to have a workforce which is reflective of the community we serve and eliminating unconscious bias, allowing employees to be appointed based on their talent, skills and experiences regardless of ethnicity, gender, sexual orientation or any other protected characteristic.

Our hiring managers will have no access to your name, age, gender or other diversity information until after shortlisting has taken place. This detail will become visible before interview to allow managers to prepare.

Interviews to be held w/c 23 January 2023

Main Responsibilities

• Responsible for the design and configuration of Cloud Security Controls.
• Conduct Cloud vulnerability assessments and resolve any identified vulnerabilities, in collaboration with system owners.
• Responsible for investigating and resolving security queries in relation to Cloud systems.
• Evaluating Cloud security processes against benchmarks.
• Developing specific Cloud cyber security metrics / KPI’s.
• Deliver Cloud service improvements, such as process automation, platform tuning and configuration management.
• Provide subject matter expertise to NGED in relation to Cloud Cyber risks and threats.
• Respond to Cloud cyber security incidents.
• Identify Cloud cyber security training needs.
• Carry out forensics on Cloud systems as & when required.
• Monitoring and assessment of Cloud threat intelligence feeds.
• Analyse the output of various Cloud security reports and advise/escalate where required.
• Liaise with Business System owners on Cloud security matters.
• Participate in and manage penetration tests.
• Responsible for the follow-up of penetration test findings.
• Plan and schedule allocated workload to ensure targets are met.
• Carry out forensics on systems and hardware as required.
• Investigate new tools and techniques to strengthen NGED Cyber Security.

The Ideal Candidate

You should be educated to degree level or have an appropriate level of experience of working within an IT Environment dealing with aspects of cybersecurity.

It would be advantageous to have or be working towards a recognised Cyber Security qualification from vendors such as, Google (GCP), Amazon (AWS) or Microsoft (Azure) as would any of the following CompTIA Security+, CySA, OSCP, CISSP, CCNA Security etc. Experience with using security assessment tools relating to Cloud and evaluating any risks in this area is essential.

About The Company

If this is your opportunity to join us, you’ll find we offer a supportive, rewarding and friendly working environment where you’ll be empowered to build a career. Along the way, you’ll be invested in, be enabled by the latest technology and find that we’re always interested in evolving our systems and processes so that we get even better, every day.

Our extensive benefits package includes:

• A competitive salary between £50,815 - £56,786
• 26 days paid leave plus 8 bank holidays, up to 28 days with continuous service
• Competitive contributory pension scheme (maximum company contribution up to 10%)
• Annual Share Save plan
• Contributory private healthcare scheme
• Flexible working hours – subject to 37 hours per week and some set core hours
• Progression & career opportunities
• Close mentorship and regular feedback
• Training and development opportunities
• Support via our Employee Assistance Programme, including musculoskeletal and physiotherapy services
• Home working kit including laptop, monitor & headset provided
• Free On-Site Parking

Additional Application Information

Recruitment correspondence is usually sent by email, so please do check your email account including spam/junk folders regularly after the closing date.

To enhance your candidate experience, we recommend using Google Chrome to complete your online application. Should you have any questions regarding this or require additional support to complete your online application, please email nged.recruitment@nationalgrid.co.uk

We reserve the right to close the vacancy early should sufficient numbers of suitable applications be received. We recommend that you submit your application as soon as possible.