Risk Analyst (InfoSec) NESO

About the Role

National Energy System Operator (NESO) recognises the potential of bright and talented individuals and we encourage you to join us as Great Britains energy system undergoes an ambitious exciting and vital transformation. Together with industry we are creating a cleaner more sustainable energy future.

As we grow the Security team here at NESO we are looking for 2 Risk this role you will join an expanding & high-functioning Security team and will be assisting in the delivery of a comprehensive risk management function.

You will collaborate closely with internal teams to support implementation of the internal risk management framework build risk management capability within teams work with stakeholders to identify and manage security risks help to determine risk treatment strategies develop internal and external (e.g. regulatory) risk reporting and metrics and feed into wider Governance Risk and Compliance activities. You will stay informed about current security threats and industry standards to support the continuous development of risk management processes at NESO. You will develop and maintain strong relationships working with teams across the organisation to promote a proactive culture of risk management.

This role can be based from Wokingham or Warwick and we continue to offer hybrid working from office and home. We are open to full time and part time applicants as well as flexible working arrangements.

Key Accountabilities

• Supporting the implementation of the end-to-end Technology Risk Management framework to identify and manage security risk.
• Working with stakeholders across the business to help them to understand and utilise Technology Risk management processes.
• Ensuring risks are appropriately identified articulated assessed and evaluated.
• Supporting the selection of controls used to mitigate risks and feed into risk treatment plans.
• Developing and maintaining risk documentation standards procedures and risk registers.
• Developing metrics and reporting to senior management and provide input into relevant business communications / awareness activities.
• Maintaining and developing knowledge of the energy sector legislative changes and relevant threats.
• Building and maintaining strong working relationships with key internal and external stakeholders.

About You

Were forging the path and we know we cant do it alone. Thats why we need visionary minds like yours to join us on this transformative this case were looking for someone who has:

• Excellent understanding of Risk Management practices specifically the end-to-end risk management process.
• Excellent understanding of security controls and how these are used to manage risks.
• Previous experience in applying control frameworks such as ISO27001 and NIST 800-53.
• Knowledge and understanding of the NCSC Cyber Assessment Framework (CAF) and The Network and Information Systems (NIS) Regulations 2018 and how they apply to operators of CNI.
• Ability to translate cyber security guidance and information into business-relevant documentation.
• Ability to engage with a broad range of stakeholders including business stakeholders vendors and partners.
• Experience using risk management/GRC tooling.
• Previous experience managing security risk assessments.
• Strong analytical skills and ability to source data analyse and draw conclusions.
• Understanding of security risks posed to CNI through IT OT and physical environments.
• Awareness of current security threats in particular to the energy sector.
• Excellent organisational skills with an eye for detail.

Desirable Qualifications: Certified in Risk and Information Systems Control (CRISC) or Certified Information Security Manager (CISM) or equivalent

About What Youll Get

A competitive salary between 57000 - 65000 dependent on experience and capability.

As well as your base salary you will receive a bonus based on company performance 26 days annual leave as standard and a competitive contributory pension scheme where we will double match your contribution to a maximum company contribution of 12%.

You will also have access to a comprehensive benefits package tailored to support your well-being and professional success. From a competitive salary to flexible work arrangements we promote your work-life balance. Enjoy fit for purpose wellbeing and lifestyle offerings ongoing skill development aligned to our Purpose and Values and be part of a supportive community that values your individuality and where you can belong.

About Us

At National Energy System Operator (NESO) were aiming to operate a zero-carbon electricity system for Great Britain by 2030 when there is sufficient renewable generation. This means change is needed across the whole system to transition away from fossil fuels and deliver clean and affordable energy for everyone across the country.

Join a journey that matters.

Your energy our future together.

About The National Energy System Operator (NESO)

In Autumn of 2024 the ESO transitioned to National Energy System Operator or NESO for short. Previously denoted as the Future System Operator (or FSO) the new National Energy System Operator is the independent body responsible for planning Great Britains electricity and gas networks and operating the electricity system.

The ESO including all its existing roles are now at the heart of the new National Energy System Operator. As NESO we will build on our existing roles capabilities and ways of working significantly to create an organisation the energy system and its users need. Our new capabilities will enable us to look across vectors including electricity natural gas and hydrogen and crucially consider the trade-offs between them.

The organisation is set up as a public corporation with its own Board of independent directors with complete operational independence from government the regulator and all commercial interest. As was the ESO NESO will be licenced and regulated by Ofgem through price control agreements and obligated to identify optimal solutions to system operations and planning in the most sustainable affordable and secure way for all.

The time to deliver is now. As part of our team you wont just be touching the lives of almost everyone in Great Britain youll be shaping the way we use and consume energy for generations to come.

More Information

This role closes on 4th November at 23:59 however we encourage candidates to submit their application as early as possible and not wait until the published closing date as this can vary.

We work towards the highest standards in everything we do including how we support value and develop our people. Our aim is to encourage and support employees to thrive and be the best they can be. We celebrate the difference people can bring into our organisation and welcome and encourage applicants with diverse experiences and backgrounds and offer flexible and tailored support at home and in the office.

Were committed to building a workforce that represents the communities we serve and a working environment in which each individual feels valued respected fairly treated and able to reach their full potential.