Senior CSIRT Analyst

Senior CSIRT Analyst – Warwick, Hybrid

£50,000 - £62,000 DOE, plus 20.8% shift allowance

National Gas is securing Britain’s energy.  We are responsible for transporting gas to power stations, major industries, storage facilities, and more than half a million businesses and 24 million homes through nearly 5,000 miles of pipes across Britain. National Gas is also proud to lead the way in transforming the energy network for a clean energy future.

As Senior CSIRT (Computer Security Incident Response Team) Analyst you will join our world class CSIRT Security Operations Centre (SOC) team, to protect the National Gas systems, assets and people from Cyber Security threats, and ensure that the CSIRT can detect threats targeting the organisation. 

This role is working 8-hour shifts ranging between 6AM-2PM, 9AM-5PM and 2PM-10PM, providing 24/7 coverage 365 days a year, working in a hybrid manner. Onsite presence in the SOC within Warwick is a requirement for the role, based on the shift roster in operation.

Join us, and help be the energy behind the change.

About the role

As a Senior Cyber Security Incident Response Team (CSIRT) Analyst, you'll protect the National Gas systems, assets and people from cyber security threats. Key duties:

• Investigate cyber security cases and alerts from various sources, such as network, endpoint, cloud, and threat intelligence.
• Ensure all security cases follow the appropriate playbook and evidence is documented to a high standard.
• Take an active role in the development and improvement of daily operations and the associated documentation for CSIRT.
• Identify, document and communicate cyber security case trends and workflow issues to the CSIRT Principal Analysts or Manager.

About you

Essential:

• Experience of security monitoring of a variety of operating systems and environments
• Strong team player with attention to detail.
• Experience working within a CSOC/CSIRT function.
• Proven experience in a Cyber Security Operations Centre or CSIRT
• Strong team player.
• Good knowledge of cyber threat landscape and attack vectors.
• Strong experience in incident detection, analysis, and resolution.
• Understanding of CNI and OT technology, including SCADA, ICS, and PLC systems.
• Proficiency in relevant cybersecurity tools and technologies.
• Strong communication and stakeholder engagement skills.
• Knowledge of relevant regulations and compliance standards.
• Communication skills to explain your technical findings to a variety of audiences, including business stakeholders, officials and non-technical individuals.
• Cloud and on-premises enterprise security monitoring experience.

Desirable:

• Experience in monitoring security threats in OT and Industrial Control Systems.
• Experience in driving standards within a CSOC/CSIRT team.
• Experience working on complex security incidents.

What we can offer you

• Salary between £50,000 to £62,000, dependent on experience
• 20.8% Shift Allowance
• Annual performance bonus of up to 6%
• 26 days' holiday, plus 8 statutory days - plus option to buy 5 additional days

• Double-match pension - every £1 you put in, we add £2 (max company contribution 12%)
• Opt-In flexible benefit scheme, including salary sacrifice private healthcare, dental insurance, technology plans, car plan and more
• Financial protection with 10x salary death in service and financial support if you're unable to work due to long term illness or injury
• Excellent family friendly provisions - maternity/paternity/adoption/surrogacy/ shared parental leave
• Career progression, professional training and development
• Employee assistance programme offering free confidential professional counselling 24/7
• Financial support to cover the cost of professional membership subscriptions relevant to your role

Other 'nice to knows':

• This role is working 8-hour shifts providing 24/7 coverage 365 days a year, and an onsite presence in the SOC within Warwick is a requirement for the role.  You will need to be flexible and able to commute independently
• Free gym and exercise classes onsite at our Warwick office
• Canteen and coffee shop onsite
• Free parking

About us

Gas is an essential part of a secure energy supply in Britain and will continue to play a vital role in the energy system for decades to come. More than ever, we need the security that gas brings to keep the lights on, businesses running, and homes warm. National Gas provides that security.

Gas provides the energy security to support renewable electricity generation, and we are developing our infrastructure to transport hydrogen and carbon dioxide across the country. We are Britain’s national gas network, providing secure energy to power the country, achieve net zero and maintain our industrial competitiveness.

At National Gas, we’re committed to building a workforce that reflects the communities that we serve. We celebrate the different experiences our colleagues bring and encourage applicants of all backgrounds to apply. To that end we want to support you during the interview process, please advise your recruitment partner if you require any reasonable adjustments.

#LI-KK1 #LI-Hybrid

Security Clearance:

The successful candidate must be able to achieve and maintain Security Check (SC) security clearance for this role.

Many of the positions within our company are subject to national security clearance and Trade Control restrictions. This means that your eligibility for certain roles may be affected by your place of birth, nationality, current or former citizenship, and any residency you hold or have held. Further details are available at United Kingdom Security Vetting: clearance levels - GOV.UK (www.gov.uk).