Senior Analyst, Cyber Operations

Company: NATIONAL GRID CO USA (NE POWER)
Location: Paxton
Posted on: May 12, 2022

Job Description:

About us
National Grid is hiring a US CSIRT Senior Analyst for our security operations team in the US.

This role offers remote working however you must reside within 50 miles of a US National Grid Office. (National Grid Office locations include: Northboro or FULLY REMOTE). Every day we deliver safe and secure energy to homes, communities, and businesses. We are there when people need us the most. We connect people to the energy they need for the lives they live. The pace of change in society and our industry is accelerating and our expertise and track record puts us in an unparalleled position to shape the sustainable future of our industry.

To be successful we must anticipate the needs of our customers, reducing the cost of energy delivery today and pioneering the flexible energy systems of tomorrow. This requires us to deliver on our promises and always look for new opportunities to grow, both ourselves and our business.

• In accordance with guidelines regarding companies classified as Federal contractors and consistent with our core commitment of safety, National Grid has made the decision to require all new hires to be fully COVID-19 vaccinated as a condition of hire. "Full vaccination" is defined as two weeks after both doses of a two-dose vaccine or two weeks since a single-dose vaccine has been administered. Anyone unable to be vaccinated, either because of a religious belief or a disability can request a reasonable accommodation.
  Job Purpose
  The CSIRT Senior Analyst is a technical leader within the CSIRT providing thought leadership on the implementation of innovative technical solutions across IT and OT environments. Alongside providing leadership on highly complex incident response activities and mentoring the broader team to improve the technical and necessary business skillsets across the team.
  
  In this hands-on role, the post holder will proactively look to improve the overall CSIRT capability and analyst workflow. This will incorporate working with the required key stakeholders to extract the complete capability from all CSIRT toolsets and streamline the analyst workflow to drive efficiencies into the CSIRT ways of working.
  
  Boast the following Benefits
  
  National Grid boasts the following:
  
  Financial
  
  • High 401(k) company match
  • Help with Student Loan payback
  • Tuition Assistance and Rewards
  • Comprehensive Discount program including electric vehicles
  • Pet Insurance
  • Adoption Assistance
    Professional development
    
    • A highly skilled team to work and learn from.
    • Multiple Avenues for On-Demand Training.
    • Commitment to promoting from within
    • Several Employee Resource Groups including Women in Non-Traditional Roles
      Work Life Balance
      
      • Excellent Healthcare and Dental Insurance
      • HSA plan with company seed
      • Generous Paid Time Off and Parental Leave
      • Caregiver program
      • Employee Assistance ProgramKey Accountabilities
        • 
          Provide subject matter expert level guidance and influence in order to extract as much value as possible from our existing capability and drive efficiencies into the CSIRT ways of working.
        • Effectively engage with required key stakeholders to ensure the platforms that the CSIRT relies on are optimized, robust and continuously evaluated to utilize the complete capability associated.
        • Provide technical leadership and guidance during complex incident response activities.
        • Work with project teams to seamlessly onboard new capability to the CSIRT ensuring requirements are provided and met prior to handover.
          Qualifications
          • 
            Extensive work experience in the Cyber Security industry, including but not limited to security monitoring and incident response activities.
          • Strong experience baselining, trending and improving existing capabilities.
          • Strong experience in all aspects of content development that adheres to a development lifecycle including SIEM rules, YARA rules, and SNORT signatures.
          • Demonstrated ability to lead the response to critical security incidents using proven Incident Response methodologies.
          • Demonstrated mentoring of less experienced staff.
          • Experience applying concepts associated with MITRE ATT&CK Framework, NIST, Cyber Kill Chain, etc.
          • Advanced hands-on experience with state of the art security technologies.
          • Advanced experience with the following SecOps processeso Host Based Investigations - Log File and Memory Investigations
            o Email Investigations - Including Header Analysis and Office Doc Investigations
            o Advanced Malware Analysis - Static and Dynamic analysis.
            
            • Experience leveraging scripting language such as Python, Bash, Powershell,
            • Ability to communicate highly technical matters to non-technical audiences.
              Qualifications Desired:
              Technical qualifications desired may include but are not limited to:
              
              • A higher degree in a computer related discipline or equivalent experience
              • Industry standard and/or vendor certifications.
                Key Interfaces
                • 
                  CSIRT staff
                • CSIRT Manager (UK & US)
                • Incident Management Team (UK & US)
                • Threat Analytics Team
                • Penetration Testing Team
                • Platform and Product teams
                • IT partners and Service providers (Service Delivery & Major Incident Management)
                  More Information
                  This position has a career path which provides for advancement opportunities within and across bands as you develop and evolve in the position; gaining experience, expertise and acquiring and applying technical skills. Candidates will be assessed and provided offers against the minimum qualifications of this role and their individual experience.
                  
                  National Grid is an equal opportunity employer that values a broad diversity of talent, knowledge, experience and expertise. We foster a culture of inclusion that drives employee engagement to deliver superior performance to the communities we serve. National Grid is proud to be an affirmative action employer. We encourage minorities, women, individuals with disabilities and protected veterans to join the National Grid team.

Keywords: NATIONAL GRID CO USA (NE POWER), Worcester , Senior Analyst, Cyber Operations, Professions , Paxton, Massachusetts