We use cookies to improve your experience on our site. To find out more, read our privacy policy.

Our Ability Jobs

Job Information

National Grid Cyber Threat Intelligence Specialist - ESO in Wokingham, United Kingdom

About the Role

Great Britain's electricity system is undergoing an ambitious, exciting and vital transformation. Together with industry, we are creating a cleaner, greener system, one that protects the planet and serves generations to come.

The Energy System Operator (ESO) are now looking for a Cyber Threat Intelligence Specialist to join the team! The Cyber Security Threat Intelligence Specialist will have a deep understanding of the Cyber Security Threat Landscape and the intelligence cycle, and form part of the new team to establish the FSO threat intelligence function determining governance, requirements, inputs and outputs. Partnering with Security Operations and Incident Management, they will ensure technical and tactical threat intelligence is embedded into our detection and response capabilities.

This role can be based from Wokingham or Warwick, and we continue to offer hybrid working from office and home.

About Us

As Great Britain’s electricity system operator (ESO), we sit at the heart of the electricity system, using our outstanding engineering and commercial expertise to balance electricity supply and demand. Ultimately, we keep the electricity flowing directly to where it’s needed, second by second.

Becoming the Future System Operator

In 2021, government and Ofgem jointly consulted on proposals for an expert, impartial Future System Operator (FSO) with responsibilities across both the electricity and gas systems, to drive progress towards net zero while maintaining energy security and minimising costs for consumers. In October 2023, the Energy Act 2023 was passed, legislating for this Future System Operator to be created.

The ESO, including all of its existing roles, will be at the heart of the new Future System Operator. We will be taking on additional roles across vectors and sectors to create an organisation with a whole energy system mindset; enabling us to identify solutions to our energy system that are more sustainable, secure, and affordable for all.

The FSO will be set up as a public corporation with operational independence from government – bringing parties together to support optimised decision making and action. As now, it will be licenced and regulated by Ofgem through price control agreements. It is anticipated that the new organisation will be up and running in 2024.

The time to act on climate change is now. As part of our team, you won’t just be touching the lives of almost everyone in Great Britain – you’ll be shaping the way we use and consume energy for generations to come.

Key Accountabilities

Delivery

  • Provide expertise in cyber threat intelligence and communicate risk to the future system operator and the whole energy sector.

  • Identify requirements and develop appropriate Cyber Threat Intelligence outputs, including strategic, technical, and tactical intelligence.

  • Collate, record, evaluate, analyse and disseminate all source intelligence reporting with a focus on outputs relevant to the future system operator and the whole energy sector.

  • Provide primary and secondary source intelligence reports, updates and threat assessments to support operational understanding and threat awareness for the future system operator and the whole energy sector.

  • Deliver information in formal reports or as presentations and briefings to internal and external customers.

Outreach

  • Determine appropriate sources and stakeholders and establish relationships to provide intelligence fusion opportunities.

  • Develop partnership with Security Operations and Incident Management, to embed threat intelligence into detection and response capabilities.

  • Develop relationships with government and energy sector stakeholders to improve understanding of threat intelligence for the future system operator and the whole energy sector.

  • Take active involvement in industry forums and research groups.

Subject Matter Expertise

  • Implement the intelligence cycle effectively to advance understanding of current and emerging threats.

  • Support knowledge sharing and collaboration between the Threat Intelligence function and other teams.

  • Observe strict non-disclosure rules about your work, the extent of which may vary.

  • Conduct analysis and research to determine the identity, motivations, relationships, targets / victims, capabilities, tooling and infrastructure of threat actors relevant to the future system operator and the whole energy sector.

About You

  • Experience of using common frameworks such as MITRE ATT&CK, Diamond Model and the Cyber Kill Chain

  • Knowledge of SIEM tools and the analysis of their generated output.

  • Knowledge of IDS/IPS, Firewalls and associated rulesets.

  • Knowledge of Computer and Cloud networks and underlying network protocols (e.g. TCP/IP).

  • Knowledge of network traffic analysis.

  • Team player and adept at working in multi-disciplinary and diverse teams.

  • Proven analytical skills and capable of solving new and complex problems.

  • Excellent written and verbal communication skills with the ability to communicate the impact and importance of detailed technical information to non-technical and senior audiences.

  • Managing and building relationships with customers and stakeholders.

  • Previous experience in critical national infrastructure or similar sector, involving the analysis and delivery of threat intelligence.

What You'll Get

A competitive salary between £55,000 – 65,000 – dependent on experience and capability.

As well as your base salary, you will receive a bonus based on company performance, 26 days annual leave as standard and a competitive contributory pension scheme where we will double match your contribution to a maximum company contribution of 12%.

You will also have access to a comprehensive benefits package tailored to support your well-being and professional success. From a competitive salary to flexible work arrangements, we promote your work-life balance. Enjoy fit for purpose wellbeing and lifestyle offerings, ongoing skill development aligned to our Purpose and Values, and be part of a supportive community that values your individuality and where you can belong.

More Information

We work towards the highest standards in everything we do, including how we support, value and develop our people. Our aim is to encourage and support employees to thrive and be the best they can be. We celebrate the difference people can bring into our organisation, and welcome and encourage applicants with diverse experiences and backgrounds, and offer flexible and tailored support, at home and in the office.

We're committed to building a workforce that represents the communities we serve, and a working environment in which each individual feels valued, respected, fairly treated, and able to reach their full potential.

#LI-BO1

#LI-HYBRID

DirectEmployers