Security Analyst

Vacancy Overview

As a member of the Enterprise Information Security Team, you will help Enterprise IT provide a quality service to meet our customers needs by:

Being responsible for the analysis, operations and maintenance of systems security.
Assessing systems and networks and identifying where those systems/networks deviate from acceptable configurations.
Using data collected from a variety of cyber defence tools (e.g., IDS alerts, firewalls, network traffic logs) to analyse events that occur within their environments for the purposes of mitigating threats.
Investigating, analysing and responding to cyber incidents.

Operating Environment

Operating within a federated IT Operating Model, which consists of Enterprise IT (EIT) and Business Unit IT delivery portfolios, EIT owns, secures, maintains and supports a portfolio of Enterprise IT services and provides functional leadership and support to the Business Units. EIT aims to deliver the Enterprise IT services portfolio to the right quality and best value for EDF UK and its stakeholders.

The Enterprise IT operating environment is complex, meaning our stakeholders needs are constantly shifting and evolving, in several dimensions:

Supporting a rapidly evolving energy supply market, both in industry and in the home;
Supporting the need to move beyond supply, to provide innovative energy services and products;
Supporting our existing generation assets through to end of life and beyond;
Supporting our new build programme;
Meeting our cost targets set by the Executive; and
Digitalising the workplace to support ever more efficient ways of working.

In order to meet the challenges presented by a complex environment, the Enterprise IT team needs to work with the right culture and in an effective way. This means we are:

Business Centric – so that we structure ourselves and our work around the needs of customers
Empowered – so that we give our people the ability to solve problems with our customers
Agile – so that we continually adapt to the changing needs of our customers
Value Focused – so that we always focus on the most valuable things for our customers
Accountable – so that it’s clear who is accountable for what and that accountability is visibly discharged

Principal Accountabilities

As Security Analyst, you will:

Apply security policies to meet security objectives of the system.
Verify minimum security requirements are in place for all applications.
Work with stakeholders to resolve computer security incidents and vulnerability compliance.
Use cyber defence tools for continual monitoring and analysis of system activity to identify malicious activity.
Monitor external data sources (e.g., cyber defence vendor sites, Computer Emergency Response Teams, Security Focus) to maintain currency of cyber defence threat condition and determine which security issues may have an impact on the enterprise.
Perform analysis of log files from a variety of sources (e.g., individual host logs, network traffic logs, firewall logs, and intrusion detection system [IDS] logs) to identify possible threats to network security.
Perform cyber defence incident triage, to include determining scope, urgency, and potential impact, identifying the specific vulnerability, and making recommendations that enable expeditious remediation.
Provide timely detection, identification, and alerting of possible attacks/intrusions, anomalous activities, and misuse activities and distinguish these incidents and events from benign activities.
Perform real-time cyber defence incident handling (e.g., forensic collections, intrusion correlation and tracking, threat analysis, and direct system remediation) tasks to support Incident Response Teams (IRTs).
Implement security measures to resolve vulnerabilities, mitigate risks, and recommend security changes to system or system components as needed.
Track and document cyber defence incidents from initial detection through to final resolution.
Document and escalate incidents (including event’s history, status, and potential impact for further action) that may cause ongoing and immediate impact to the environment.
Perform cyber defence trend analysis and reporting.
Maintain knowledge of applicable cyber defence policies, regulations, and compliance documents.

Abilities

Ability to conduct vulnerability scans and recognize vulnerabilities in security systems.
Ability to analyse malware.
Ability to apply techniques for detecting host and network-based intrusions using intrusion detection technologies.
Ability to interpret the information collected by network tools (e.g. Nslookup, Ping, and Traceroute).
Ability to identify systemic security issues based on the analysis of vulnerability and configuration data.
Ability to share meaningful insights about the context of an organization’s threat environment that improve its risk management posture.
Ability to design incident response for cloud service models.
Ability to function effectively in a dynamic, fast-paced environment. Ability to effectively teams collaborate via virtual.

Knowledge

Computer networking concepts and protocols, and network security methodologies
Laws, regulations, policies, and ethics as they relate to cybersecurity and privacy
Cyber threats and vulnerabilities
Operational impacts of cybersecurity lapses
Vulnerability information dissemination sources (e.g., alerts, advisories, errata, and bulletins)
Cybersecurity and privacy principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation)
Information Technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption)
Service management concepts for networks and related standards (e.g., Information Technology Infrastructure Library [ITIL])
Cyber defence and vulnerability assessment tools and their capabilities
New and emerging information technology (IT) and cybersecurity technologies
Network tools (e.g., ping, traceroute, nslookup)
Incident response and handling methodologies
Security operations and incident response in cloud service models

Skills

Computer networking concepts and protocols, and network security methodologies
Laws, regulations, policies, and ethics as they relate to cybersecurity and privacy
Cyber threats and vulnerabilities
Operational impacts of cybersecurity lapses
Vulnerability information dissemination sources (e.g., alerts, advisories, errata, and bulletins)
Cybersecurity and privacy principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation)
Information Technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption)
Service management concepts for networks and related standards (e.g., Information Technology Infrastructure Library [ITIL])
Cyber defence and vulnerability assessment tools and their capabilities
New and emerging information technology (IT) and cybersecurity technologies
Network tools (e.g., ping, traceroute, nslookup)
Incident response and handling methodologies
Security operations and incident response in cloud service models

Qualifications and Experience

Essential

Awareness of the technology and best practice pertinent to their domain, and interest in maintaining that awareness
Proven ability to collaborate and communicate with both IT and business-facing colleagues
Experience of security operations and incident management in large complex business environments
Experience of working with third parties such as solutions vendors, outsourced and research partners
Experience of working with IT security operations, compliance, risk and governance practices
It is a requirement of this role that the post holder either holds or can obtain and maintain Security Check (SC) clearance.
Ability to work discreetly and confidentially with robust outlook on life

Desirable

An appreciation of key utility industry concepts
Experience of working in regulatory environments
SAFe (Scale Agile Framework) qualified or aware
AWS and Microsoft Azure qualified or aware

Related Jobs

Clear All

Filter

Email Me Jobs Like These

Showing 1–8 of 12 jobs

Quantity Surveyor

United Utilities

England, United Kingdom, Warrington

Job Accountabilities Managing the conflicting business priorities of various stakeholders Provide support and timely escalation to the Senior Quantity Surveyor and/or Commercial Manager Ensure compliance of the business strategy and policy Proactively manage and mitigate commercial and business risk Provide commercial expertise and guidance Ensure collaborative working across the commercial directorate Work collaboratively with the regulatory procurement team, to ensure

Save

4 years ago

Operating Technician

National Grid

Appleford, Bedford, United Kingdom

About the role As Operating Technician, you will operate process equipment to safely complete shipping operations, the storage of LNG, gas production to local distribution zone/National Transmission System and LNG export via a road tanker facility. You will ensure the continued safe and reliable operation of Grain LNG’s assets through the efficient maintenance and operation of those assets

Save

4 years ago

Senior Strategy Manager

National Grid

London, United Kingdom

About the role The energy system will continue to change rapidly and fundamentally on the path to net zero in 2050. National Grid are at the heart of these changes, which pose strategic questions for us as a business and for the wider sector. Group Strategy leads on answering high-level strategic questions for National Grid and working with external stakeholders

Save

4 years ago

TECHNICAL SERVICES MANAGER [ENG00040827]

ENGIE

Appleford, Bedford, United Kingdom

ENGIE ENGIE are recruiting for Technical Services Manager to be based within the Knowsley Schools contract, L24 9HJ. This is a permanent full-time role working 40 hours per week. On offer is a salary of £45,000 per annum, company vehicle/allowance and excellent benefits package. The Technical Services Manager will be responsible for the technical performance and maintenance of standards on

Save

4 years ago

COMMERCIAL MANAGER [ENG00039484]

ENGIE

United Kingdom

ENGIE ENGIE are recruiting for a Commercial Manager to be based in the South East/London area, E14 5LQ. This is a permanent full-timerole working 40 hours per week. On offer is a competitive salary, company vehicle or allowance, bonus and benefits package. Working hours: 40hr per week Standard: 09:00-17:00 Monday-Friday. About the Role: As the Commercial Manager, you will provide an influential pre-

Save

4 years ago

Energy Specialist – Customer Operations – Nottingham

E.ON

United Kingdom

A taste of what you’ll be doing Invest in us and we’ll invest in you; You’ll receive a company laptop 26 days holiday plus bank holidays – this includes a guarantee of for your birthday if you want There are no mandated shift patterns We’ll round off the week as a family, as we down tools at the Friday social

Save

4 years ago

Supervisor Substations

Exelon

United Kingdom

At Exelon, we’ve got a place for you! Join the nation’s leading competitive energy provider, with one of the largest electricity generation portfolios and retail customer bases in the country. You will be part of a family of companies that strives for the highest standards of power generation, competitive energy sales, and energy delivery. Our team of outstanding professionals is

Save

4 years ago