OTSN Cyber Risk Assessment Lead

About the role

National Grid Electricity Transmission (ET) is at the heart of energy in the UK. The electricity we provide gets the nation to work, powers schools and brings energy to life. Our energy network connects the nation, so it is essential that it is continually evolving, advancing, and improving. 

In ET we are passionate about both operating our network safely and providing highly reliable quality of supply for our customers. At the heart of achieving these outcomes is the effective control and operation of our network. 

As our lead security risk analyst, you’ll drive the strategic direction for the system level risk identification, management, and review for one of ET’s most critical networks – the Operational Technology Services Network (OTSN).

As a key member in the Governance, Risk and Compliance section of the OTSN team, you will work closely with the Network Lifecycle team to develop the governance framework, supporting the creation of policies, frameworks, and specifications to understand and manage security risk in the OTSN environment.

Providing expert technical support for the risk assessment of vulnerabilities and deviations from the target state, you’ll agree mitigating actions to reduce risk.  You will manage the OTSN risk registers and support the business to understand physical & cyber security threats through appropriate reporting and communication of current risks and vulnerabilities.

This role is based at our office Warwick for 2 days of the week and can be combined with hybrid working from home.
 

What you'll need

You’ll have a technical understanding of the LAN / WAN Networks and Operational Technology, as well as a detailed understanding of how security risks can manifest within networks, devices, and systems.

With relevant experience of managing a risk framework for a critical system including experience of leading a team of specialist risk analysts, you’ll have experience of using and developing decision making frameworks and tools that support the business in making economic assessments (NPV, CBA) and whole life value asset assessments (WLV).

Familiarity with international standards related to cyber security including IEC 62443 / ISO27019 is key as is a relevant security risk qualification (e.g. CRISC, FAIR). A good appreciation of the NIST CSF and audit processes is desirable and ideally you will have an appreciation of asset management principles.

You will have strong data analytical skills and excellent written and communication skills with the ability to interface comfortably with senior stakeholders. With well-developed investigative and problem-solving skills, you’ll find new ways to secure this critical network is intuitive. 
 

What's in it for you?

A competitive salary of £60,000 – £70,000 per annum

• Annual Performance Based Bonus
• 37-hour week, with Hybrid working model between Home and Office  
• 26 days annual leave, plus eight statutory days 
• The option to buy additional or sell holiday days. 
• Generous contributory pension scheme - we will double-match your contribution to a maximum company contribution of 12%
• Financial support to help cover the cost of professional membership subscriptions, course fees, books, exam fees and time off for study leave – so long as it is relevant to your role.
• Access to several flexible benefits such as a share incentive plan, salary sacrifice car and technology schemes, support via employee assistance lines and matched charity giving to name a few.
• Family care benefits including a back-up care service for when your usual care arrangements fall through (six paid days each year as standard with the option to purchase further days)
• Access to numerous apps which support health, fitness and wellbeing.

More Information

This role closes at midnight on 29th April 2024, however, we encourage candidates to submit their application as early as possible and not wait until the published closing date as this can vary. 

Don’t meet every single requirement? Studies have shown that women and people of colour are less likely to apply for jobs unless they meet every single qualification. At National Grid, we are committed to building a diverse, inclusive, and authentic workplace for everyone. So, if you are excited about this role but your experience or qualifications do not match the job description exactly, we encourage you to apply anyway. You might just be the right person for our growing business in this role or another one.  

#LI-NB1

At National Grid, we work towards the highest standards in everything we do, including how we support, value and develop our people. Our aim is to encourage and support employees to thrive and be the best they can be. We celebrate the difference people can bring into our organisation, and welcome and encourage applicants with diverse experiences and backgrounds, and offer flexible and tailored support, at home and in the office.

Our goal is to drive, develop and operate our business in a way that results in a more inclusive culture. All employment is decided on the basis of qualifications, the innovation from diverse teams & perspectives and business need. We are committed to building a workforce so we can represent the communities we serve and have a working environment in which each individual feels valued, respected, fairly treated, and able to reach their full potential.