UK CSIRT Analyst

  • Job Reference: 19129
  • Date Posted: 7 April 2021
  • Employer: UK Resourcing
  • Website:
  • Location: Warwick (CV34 6DA), United Kingdom
  • Salary: On Application
  • Sector: Information Technology (IT)
  • Job Type: Permanent
  • Duration: Undefined
  • Work Hours: Full Time

Job Description

CSIRT Analyst


We are looking for a new CSIRT (Cyber Security Incident Response Team) Analyst, you will perform 24/7/365 monitoring and response activities in the National Grid Global Cyber Security Operations Center for security detection and mitigation activities. Duties include monitoring networks, hosts and endpoints for malicious activity using our Security, Orchestration, Automation and Response (SOAR) platform alongside our Endpoint Detection and Response (EDR) tools and email security gateway.


Responsibilities cover initial triage, investigation and incident response, the development of new security monitoring use cases, and ensuring all investigative activity is properly documented in our case management system and followed up with relevant support teams. 


You will also take joint responsibility for developing and maintaining SOC documentation and processes and your position will be a rotating shift position that includes nights, weekends and occasional holidays.

Key Accountabilities



•    Responsible for working in a 24x7 Security Operation Center (SOC) environment.

•    Provide analysis and trending of security log data from a large number of heterogeneous security devices.

•    Provide Initial triage and Incident Response support when analysis confirms actionable incident.

•    Investigate, document, and report on information security issues and emerging trends.

•    Coordinate with Intelligence analysts on impacting National Grid and industry impacting issues.

•    Integrate and share information with other analysts and other teams.

About You


•    Relevant work experience in Cyber Security Operations, specifically monitoring, detection and incident response duties.

•    Experience with monitoring and operating SOAR, EDR and IDS/IPS solutions alongside other critical monitoring toolsets. 

•    Demonstrated ability to coordinate and respond to security incidents using commercial and/or open source technologies.

•    Experience with Incident Response methodology in investigations, and the groups behind targeted attacks and tactics, techniques, and procedures (TTPs).

•    Comprehension of how attacks exploit operating systems and protocols.

What you'll get


A competitive salary between £38,300 - £48,499 – dependent on capability + 26% Shift Allowance

As well as your base salary, you will receive a bonus based on personal and company performance and a competitive contributory pension scheme where we will double match your contribution to a maximum company contribution of 12%. You will also have access to a number of flexible benefits such as a share incentive plan, salary sacrifice car and technology schemes, support via employee assistance lines and matched charity giving to name a few. 

About us


National Grid touches the lives of almost everyone in the UK, with an energy network that stretches across the Atlantic. We’re an international team, and our work underpins the lives of millions of people. Feet forwards, head up, and eyes bright, we’re working hard to create value for people today – and shape the future of energy tomorrow. 


In the UK, we don’t generate or sell energy – we join the dots to get energy from A to B. From making a cup of tea in the morning, to keeping the lights on in hospitals, our electricity network puts power in the hands of people. Without it, the world as we know it would grind to a halt. 


The world of energy is changing beyond recognition. Working at National Grid, you won’t just be touching the lives of almost everyone in the UK – you’ll be shaping the way we use and consume energy for generations to come.  

More Information


The closing date for this vacancy is 21st April 2021 However, we encourage candidates to submit their applications as early as possible and not to wait until the published closing date. National Grid’s recruitment periods can and may vary. We reserve the right to remove this advert or close it to further applications at any point during the recruitment process.