Specialist Cyber Security Operations Engineer - NESO
National Grid
We are one of the world’s largest investor-owned energy companies, committed to delivering electricity and gas safely, reliably and efficiently to the customers and communities we serve.
National Energy System Operator (NESO) is on a journey towards a sustainable and secure energy future. Together we build on this momentum, advancing the Electricity System Operator’s (ESO) plan for zero carbon operability of the electricity system by 2025.
National Energy System Operator (NESO) are now looking for a Specialist Cyber Security Operations Engineer to join us! As a Specialist Cyber Security Operations Engineer, you will be responsible for building and deploying innovative cyber technologies across the NESO estate, serving as the foundation of NESO’s Cyber Security Operations (CSO) capability.
This position requires a deep expertise in cyber security and will focus on the centralisation of forensic telemetry from across the various critical systems which balance the UK energy system.
You will provide guidance to the wider Cyber Operations Engineering function, assist in the identification of new disruptive technologies, spearhead process improvements and technological enhancements, collaborate with stakeholders throughout the business, and ensure the creation of a cohesive function.
If you build and experiment in your spare time and enjoy telling people about your homelab setup, this is the team for you!
This role can be based from Wokingham or Warwick, and we continue to offer hybrid working from office and home.
Key Accountabilities
* Build and deploy innovative technical solutions to advance the security capability of the Cyber Security Operations function.
* Manage and oversee the configuration of various security tools to enable key stakeholders, such as CSOC and Threat Hunting and Detection Engineering (THaDE).
* Collaborate with application administrators across the business to onboard data sources into the SIEM data lake.
* Optimise forensic telemetry collection mechanisms to ensure accurate and efficient parsing and ingestion to the SIEM.
* Build resilient forensic telemetry collection technologies to support 24/7/365 monitoring of NESO and its control systems by CSO.
* Spearhead process improvement and curate, update and develop an internal cyber engineering knowledgebase.
About You
We’re forging the path, and we know we can’t do it alone. That’s why we need visionary minds like yours to join us on this transformative journey. In this case, we’re looking for someone who:
* Is passionate about security and building secure infrastructure and secure foundations.
* Has curiosity and a willingness to take on the challenge of making sense of bespoke or less common data sources.
* Has strong analytical and problem-solving skills and ability to handle complex and dynamic situations.
* Has a keen awareness of current and emerging cyber threats, trends, and best practices.
* Has proven experience working with SIEM platforms and related tooling.
* Has a strong understanding of SIEM concepts and best practices.
* Is familiar with SIEM telemetry onboarding processes and techniques.
* Is experienced in treating cyber operations engineering with a Software Development Lifecycle mindset.
* Is knowledgeable about various data source formats and protocols (e.g., syslog, JSON, REST API).
* Is comfortable with scripting or programming languages (Python, Bash, PowerShell, etc).
* Has experience in troubleshooting and resolving data quality or ingestion issues.
* Has previously worked closely with security tooling such as EDR, Deception Tech, Malware Sandboxes, Vulnerability Management Tooling, etc.
* Has excellent problem-solving and analytical skills.
* Has strong communication and collaboration abilities.
* May have relevant certifications (e.g. GIAC), but this is not required.
About What You'll Get
A competitive salary between £55,000 to £65,000 – dependent on experience and capability.
As well as your base salary, you will receive a bonus based on company performance, 26 days annual leave as standard and a competitive contributory pension scheme where we will double match your contribution to a maximum company contribution of 12%.
You will also have access to a comprehensive benefits package tailored to support your well-being and professional success. From a competitive salary to flexible work arrangements, we promote your work-life balance.
About Us
Traditionally, Britain’s energy system has been split into two areas – gas and electricity – but to ensure that Britain’s energy system is secure and affordable there needs to be co-ordination across the whole energy system, with one single entity responsible for translating policy into immediate strategy. National Energy System Operator (NESO) will bring unparalleled change.
The ESO, including all of its existing roles, are now at the heart of the new National Energy System Operator. As NESO, we will build on our existing roles, capabilities, and ways of working significantly to create an organisation the energy system and its users’ need.
The organisation is set up as a public corporation with its own Board of independent directors, with complete operational independence from government, the regulator and any and all commercial interest. As was the ESO, NESO will be licenced and regulated by Ofgem through price control agreements and obligated to identify optimal solutions to system operations and planning in the most sustainable, affordable and secure way for all.
The time to deliver is now. As part of our team, you won’t just be touching the lives of almost everyone in Great Britain – you’ll be shaping the way we use and consume energy for generations to come.
More Information
We work towards the highest standards in everything we do, including how we support, value and develop our people. Our aim is to encourage and support employees to thrive and be the best they can be. We celebrate the difference people can bring into our organisation and welcome and encourage applicants with diverse experiences and backgrounds.
#J-18808-Ljbffr