Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Strengthen incident response capabilities and improve cyber security playbooks.
- Company: Join SP Energy Networks, a leader in cyber resilience.
- Benefits: Flexible working, competitive pay, and opportunities for professional growth.
- Other info: Collaborative environment with opportunities to shape cyber security strategy.
- Why this job: Make a real impact on cyber security and help protect essential services.
- Qualifications: Experience in incident response and strong documentation skills required.
The predicted salary is between 40000 - 50000 £ per year.
Scottish Power HQ, Glasgow
Flexible & Hybrid working pattern
Negotiable rate, Inside IR35, PAYE and UMB options available
Help us create a better future, quicker. SP Energy Networks (SPEN) has kicked off an ambitious security transformation programme to transparently reduce risk, achieve compliance with NIS regulations and deliver a cyber resilient business. The Incident Response Analyst is essential in achieving our goals.
This role will be integrated into an active and ambitious global cyber security function, contributing to SPEN's cyber security purpose of delivering cyber resilient OT and IT, to enable a safe and reliable electricity supply to customers.
What you'll be doing:
- You will play a central role in strengthening SPEN's incident response capability by developing, maintaining, and continuously improving cyber security playbooks, procedures, and associated documentation.
- You’ll work closely with incident responders, detection engineers, and wider cyber teams to ensure processes are clear, repeatable, and aligned with best practice.
- You’ll support the full incident lifecycle - from preparation through to post incident review - ensuring lessons learned are captured, documented, and fed into future improvements.
- As part of this, you will contribute to the maturity of SPEN's cyber response framework, ensuring playbooks are operationally effective, compliant with NIS regulations, and tailored to our evolving OT and IT environments.
- You will also be responsible for developing and delivering an incident response exercise plan covering a range of scenarios designed to test team readiness, validate playbooks, and ensure operational effectiveness.
- These exercises may include tabletop scenarios, technical simulations, cross team coordination drills, and lessons learned reviews that contribute directly to capability uplift.
- Building strong working relationships across the business will be key. You’ll engage with operational, engineering, legal, risk, communications, and technology stakeholders to understand their requirements, coordinate incident response activities when required, and ensure that documentation and processes reflect real world operational needs.
- You will also have the opportunity to help shape the wider strategy of the Incident Response function - identifying capability gaps, contributing to team roadmaps, supporting cross industry collaboration, and driving continual service improvement within SPEN's cyber resilience programme.
What you'll bring:
- Experience developing, maintaining, or executing incident response playbooks, runbooks, or procedures within a cyber security environment.
- Strong documentation skills - with the ability to translate complex technical activities into clear, structured, and usable operational guidance.
- Ability to plan, deliver, and evaluate incident response exercises - such as tabletop scenarios, simulation based drills, or cross team coordination activities - with a focus on validating playbooks and improving operational readiness.
- Demonstrable experience building effective relationships with technical and non-technical stakeholders, with the ability to collaborate, influence, and communicate clearly during both day to day operations and during security incidents.
- A good understanding of the incident response lifecycle, common attack techniques (MITRE ATT&CK), and how incident response processes integrate with threat detection, monitoring, and wider security operations.
Incident Response Analyst in Central employer: Morson Edge
Contact Detail:
Morson Edge Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Incident Response Analyst in Central
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect with people on LinkedIn. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Prepare for interviews by practising common incident response scenarios. Think about how you'd handle different situations and be ready to discuss your thought process. This will show employers that you're not just knowledgeable but also proactive.
✨Tip Number 3
Don’t underestimate the power of follow-ups! After an interview, drop a quick thank-you email to express your appreciation and reiterate your interest in the role. It keeps you fresh in their minds and shows your enthusiasm.
✨Tip Number 4
Check out our website for the latest job openings! We’re always looking for talented individuals to join our team. Applying directly through our site gives you a better chance of being noticed by hiring managers.
We think you need these skills to ace Incident Response Analyst in Central
Some tips for your application 🫡
Tailor Your Application: Make sure to customise your CV and cover letter for the Incident Response Analyst role. Highlight your experience with incident response playbooks and your strong documentation skills, as these are key to what we're looking for.
Showcase Your Skills: Don’t just list your skills; demonstrate them! Use specific examples from your past experiences that show how you've developed or executed incident response procedures. This will help us see how you can contribute to our cyber resilience programme.
Be Clear and Concise: When writing your application, keep it clear and to the point. We appreciate structured and usable operational guidance, so make sure your application reflects that clarity in your communication style.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for this exciting opportunity to help shape our incident response function!
How to prepare for a job interview at Morson Edge
✨Know Your Incident Response Playbooks
Make sure you’re familiar with the incident response playbooks and procedures relevant to the role. Be ready to discuss how you've developed or improved these in past roles, as this will show your practical experience and understanding of the incident response lifecycle.
✨Showcase Your Documentation Skills
Prepare examples of how you've translated complex technical activities into clear operational guidance. Being able to articulate your documentation process will demonstrate your strong communication skills, which are crucial for this role.
✨Prepare for Scenario-Based Questions
Expect questions about how you would handle specific incident scenarios. Think through various tabletop exercises or simulations you’ve conducted and be ready to explain your approach, what you learned, and how it improved team readiness.
✨Build Rapport with Stakeholders
Highlight your experience in building relationships with both technical and non-technical stakeholders. Be prepared to discuss how you’ve collaborated with different teams during incidents and how you ensure that everyone is on the same page during a crisis.