About the Role
The National Energy System Operator are embarking on the creation of a greenfield Cyber Security Operations function and are looking for a talented Threat Hunting and Detection Engineering (THaDE) Senior Analyst to be part of our growing THaDE team. This exciting opportunity will involve designing, shaping, and building novel detection strategies, executing threat hunting initiatives, and assisting in the creation of mature response frameworks. The role will also involve the creation of SOAR automations, bringing them through from concept to operational deployment. The Threat Hunting and Detection Engineering Senior Analyst will work in collaboration with the wider Cyber Security Operations function to ensure a high level of cyber defence maturity, ensuring the security of the systems that govern the flow of energy around the United Kingdom. This role can be based from Wokingham or Warwick and we continue to offer hybrid working from office and home. We are open to full time and part time applicants, as well as flexible working arrangements.
Key Accountabilities
* Create novel detection content by utilising threat modelling and coverage gap analysis.
* Create novel SOAR automation strategies.
* Conduct proactive threat hunting following defined threat hunting frameworks, creating actionable output to feed to key stakeholders.
* Create response documentation to assist the SOC in the triaging of incidents generated by the THaDE team’s detections.
* Ensure continuous improvement of the THaDE detection content library by conducting proactive tuning and logic updates.
* Support the Cyber Security Operations Centre (CSOC) team in incident escalations where needed.
* Through the THaDE Manager, provide regular reports and metrics on the threat hunting and detection engineering activities and outcomes.
About You
We’re forging the path, and we know we can’t do it alone. That’s why we need visionary minds like yours to join us on this transformative journey. In this case, we’re looking for someone who:
* Is passionate about threat hunting.
* Has experience of designing novel detection mechanisms.
* Solid experience of using SIEM and EDR technologies.
* Is a strong communicator with excellent writing skills.
Qualifications
* Relevant degree-level qualification or equivalent experience with strong background in providing threat hunting services in a large hybrid environment, within a government or critical infrastructure domain.
* Demonstrable experience in threat hunting, content development, security engineering, operations.
What You’ll Get
* A competitive salary of £49,000 - £57,000 dependent on experience and capability.
* A bonus based on company performance.
* 26 days annual leave as standard.
* A competitive contributory pension scheme where we will double match your contribution to a maximum company contribution of 12%.
* Annual enrollment to NESO Savings Plan, with a 50% matching contribution when you save between £20-£500 a month from your take-home pay.
* Flexible benefits programme including flexible bank holidays, additional birthday day off, cycle to work scheme, retail and gym discounts, private medical insurance, critical illness insurance, and personal accident insurance.
Additional Information
The role closes at 23:59 on the advertised closing date. We encourage you to apply as early as possible. We are committed to building a workforce that represents the communities we serve and to provide a working environment in which each individual feels valued, respected, fairly treated, and able to reach their full potential.
#J-18808-Ljbffr