CSIRT Principal Analyst - Hybrid

About us

At National Grid, our commitment to a cleaner, greener energy future is powered by the dedication and ingenuity of our people. Join our team as a Principal Analyst and be a part of something bigger—where your unique skills and passions can make a real difference. Together, we are superpowered.

The CSIRT Principal Analyst will deliver the actions and activities as required and detailed in Cyber Incident Response plans. Using technical expertise and co-ordination capabilities, they will work in the main, independently, and lead the CSIRT team to create monitoring, identify, prepare for, and resolve incidents and high-level technical incident response issues.

National Grid is hiring a Principal Analyst for our Computer Security Incident Response Team in. This is a hybrid role based out of Warwick.

Key Accountabilities

This role requires that the holder will help to mentor and develop CSIRT Analyst team members to achieve high performance and individual ability.

• Represent CSIRT as a Subject Matter Expert during various company projects and initiatives.
• Perform threat modeling on applications and systems to identify and streamline service delivery of detection and response.
• Create technical knowledge base articles that will be used by Tier 1 and 2 analysts.
• Create incident response processes, playbooks, and work instructions.
• Perform Dynamic and Static Malware Analysis in sandboxed environment.
• Create and maintain detection content in SIEM and EDR platforms.
• Work closely with Adversary Simulation and Threat Intelligence teams to improve fidelity and overall security posture.
• Exploring topics like Machine Learning, User Behavior/Risk Based Alerting and Artificial Intelligence to leverage them for new processes and capabilities. 

About You

• Passion for the Cyber security field and are up to date on the latest news, technology, and trends.
• Experience operating as a lead incident responder.
• Previous experience mentoring and developing analysts.
• Understanding of networking protocols and infrastructure, cloud platforms, host/network intrusion detection systems.
• Critical National Infrastructure and/or Operational Technology experience highly desirable.
• Experience with programming languages used for scripting and SIEM/threat detection. 
   

More Information

A competitive salary between £60,000 – £75,000 – dependent on capability

As well as your base salary, you will receive a bonus of up to 15% of your salary for stretch performance and a competitive contributory pension scheme where we will double match your contribution to a maximum company contribution of 12%. You will also have access to a number of flexible benefits such as a share incentive plan, salary sacrifice car and technology schemes, support via employee assistance lines and matched charity giving to name a few.

#LI-RL1
#LI-HYBRID