OTSN Cyber Risk Assessment Lead (54402)
Job Details
Full Job Description
National Grid Electricity Transmission (ET) is at the heart of energy in the UK. The electricity we provide gets the nation to work, powers schools and brings energy to life. Our energy network connects the nation, so it is essential that it is continually evolving, advancing, and improving.
In ET we
are passionate about both operating our network safely and providing
highly reliable quality of supply for our customers. At the heart of
achieving these outcomes is the effective control and operation of our
network.
As our lead security risk analyst, you’ll drive the strategic direction for the system level risk identification, management, and review for one of ET’s most critical networks – the Operational Technology Services Network (OTSN).
As a key
member in the Governance, Risk and Compliance section of the OTSN
team, you will work closely with the Network Lifecycle team to develop
the governance framework, supporting the creation of policies,
frameworks, and specifications to understand and manage security risk
in the OTSN environment.
Providing expert technical
support for the risk assessment of vulnerabilities and deviations from
the target state, you’ll agree mitigating actions to reduce risk. You
will manage the OTSN risk registers and support the business to
understand physical & cyber security threats through appropriate
reporting and communication of current risks and vulnerabilities.
This role is based at our office Warwick for 2 days of the
week and can be combined with hybrid working from home.
You’ll have a technical understanding of the LAN / WAN Networks and Operational Technology, as well as a detailed understanding of how security risks can manifest within networks, devices, and systems.
With relevant experience of managing
a risk framework for a critical system including experience of leading
a team of specialist risk analysts, you’ll have experience of using
and developing decision making frameworks and tools that support the
business in making economic assessments (NPV, CBA) and whole life
value asset assessments (WLV).
Familiarity with
international standards related to cyber security including IEC 62443
/ ISO27019 is key as is a relevant security risk qualification (e.g.
CRISC, FAIR). A good appreciation of the NIST CSF and audit processes
is desirable and ideally you will have an appreciation of asset
management principles.
You will have strong data
analytical skills and excellent written and communication skills with
the ability to interface comfortably with senior stakeholders. With
well-developed investigative and problem-solving skills, you’ll find
new ways to secure this critical network is intuitive.
A competitive salary of £60,000 – £70,000 per annum
- Annual Performance Based Bonus
- 37-hour week, with Hybrid working model between Home and Office
- 26 days annual leave, plus eight statutory days
- The option to buy additional or sell holiday days.
- Generous contributory pension scheme - we will double-match your contribution to a maximum company contribution of 12%
- Financial support to help cover the cost of professional membership subscriptions, course fees, books, exam fees and time off for study leave – so long as it is relevant to your role.
- Access to several flexible benefits such as a share incentive plan, salary sacrifice car and technology schemes, support via employee assistance lines and matched charity giving to name a few.
- Family care benefits including a back-up care service for when your usual care arrangements fall through (six paid days each year as standard with the option to purchase further days)
- Access to numerous apps which support health, fitness and wellbeing.
This role closes at midnight on 29th April 2024, however, we encourage candidates to submit their application as early as possible and not wait until the published closing date as this can vary.
Don’t meet every single requirement? Studies have
shown that women and people of colour are less likely to apply for
jobs unless they meet every single qualification. At National Grid, we
are committed to building a diverse, inclusive, and authentic
workplace for everyone. So, if you are excited about this role but
your experience or qualifications do not match the job description
exactly, we encourage you to apply anyway. You might just be the right
person for our growing business in this role or another one.
#LI-NB1
At National Grid, we work towards the highest standards in everything we do, including how we support, value and develop our people. Our aim is to encourage and support employees to thrive and be the best they can be. We celebrate the difference people can bring into our organisation, and welcome and encourage applicants with diverse experiences and backgrounds, and offer flexible and tailored support, at home and in the office.
Our goal is to drive, develop and operate our business in a way that results in a more inclusive culture. All employment is decided on the basis of qualifications, the innovation from diverse teams & perspectives and business need. We are committed to building a workforce so we can represent the communities we serve and have a working environment in which each individual feels valued, respected, fairly treated, and able to reach their full potential.