Job Purpose
The UK CSIRT Senior Analyst will deliver the actions and activities as required and detailed in Cyber Incident Response plans. Using technical expertise and co-ordination capabilities, they will work at times independently or to lead the CSIRT Analyst team to identify, prepare for and resolve incidents and issues.
This role requires that the holder will help to mentor and develop CSIRT Analyst team members to achieve high performance and individual ability.
Primary Roles and Responsibilities
- Be a point of focus on behalf of CSIRT when owning Cyber Security Incidents – acting as Subject Matter Expert and/or On Call
- Use their skillset to provide guidance with respect to Cyber Security, as a Subject Matter Expert during complex incident response
- Work alongside System Administrators and CSIRT Principals to ensure efficient and appropriate onboarding/offboarding of systems and applications.
- Be accountable for all aspects in their control with respect to the above
- Work alongside peers and co-workers to achieve goals, most notably UK CSIRT Team, US CSIRT Senior Analysts, CSIRT Incident Managers, CSIRT Principals
What you'll need
- Excellent written and verbal communication skills.
- Troubleshooting and negotiating in technical environments
- Experience of case management and ticketing systems
- Experience of security monitoring platforms
- Strong experience of working within Regulated environments
- Demonstrated ability to support response to security incidents using commercial and/or open-source technologies.
- Strong experience mentoring and developing analysts.
- Strong understanding of networking protocols and infrastructure designs; including cloud infrastructures, routing, firewall functionality, host and network intrusion detection systems, encryption, load balancing, and other network devices.
- Advanced first-hand experience with security technologies, including:
- Endpoint Detection & Response tools (EDR)
- Intrusion Detection & Prevention Systems (IDS/IPS)
- Security Information & Event Management (SIEM)
- Network Analysis tools - Wireshark, “tcpdump”
- Host Based Investigations – Log File and Memory Investigations
- Email Investigations – Including Header Analysis and Office Doc Investigations
- Advanced Malware Analysis
- Analysis of Event Logs
- Exceptional understanding of Windows and Linux Operating Systems
- Exceptional understanding of TCP/IP and underlying network protocols
- Ability to summarize events/incidents effectively to different constituencies such as legal counsel, executive management, and technical staff, both in written and verbal forms.
- First degree in a computer science related discipline or equivalent experience of
- At least two of the following certifications or equivalent experience: - GIAC Certified Forensic Analyst (GCFA), GIAC Reverse Engineering Malware (GREM), GIAC Cyber Threat Intelligence (GCTI), GIAC Certified Incident Handler (GCIH), GIAC Network Forensic Analyst (GNFA), GIAC Response and Industrial Defence (GRID), GIAC Certified Intrusion Analyst (GCIA), GIAC Penetration Tester (GPEN) or equivalent.
What you'll get
A competitive salary between £50,000 – 65,000 – dependent on capability
As well as your base salary, you will receive a bonus based on personal and company performance and a competitive contributory pension scheme where we will double match your contribution to a maximum company contribution of 12%. You will also have access to a number of flexible benefits such as a share incentive plan, salary sacrifice car and technology schemes, support via employee assistance lines and matched charity giving to name a few.
More Information
Security Clearance will be required for this role
About us
National Grid touches the lives of almost everyone, with an energy network that stretches across the Atlantic. We’re an international team, and our work underpins the lives of millions of people. Feet forwards, head up, and eyes bright, we’re working hard to create value for people today – and shape the future of energy tomorrow.
In the UK, we don’t generate or sell energy – we join the dots to get energy from A to B. From making a cup of tea in the morning, to keeping the lights on in hospitals, our electricity network puts power in the hands of people. Without it, the world as we know it would grind to a halt.
The world of energy is changing beyond recognition. Working at National Grid, you won’t just be touching the lives of almost everyone in the UK – you’ll be shaping the way we use and consume energy for generations to come.
Our values and principles
At National Grid, through listening to what our customers need, every day we do the right thing and find a better way.
As a National Grid employee, you’ll treat our customers as a priority, taking time to listen and work with them to help give them the best experience we possibly can. You’ll need to be proactive and flexible in your approach and continually look for ways to exceed their expectations – sometimes in unexpected and helpful ways. You’ll provide accessible information when our customers need it and make things simple by using your expertise to guide them. Above all, you’ll follow through on your promises to deliver value, drive efficiency and give them a great customer experience.
We offer inclusion and diversity training for everyone here at National Grid, with a view to building an inclusive working environment and developing all our employees. Training opportunities range from unconscious bias and reverse mentoring to targeted training initiatives which are tailored to support our diverse and innovative work force.