Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Strengthen incident response capabilities and improve cyber security playbooks.
- Company: Join SP Energy Networks, a leader in cyber resilience and energy supply.
- Benefits: Flexible working, competitive pay, and opportunities for professional growth.
- Other info: Collaborative environment with opportunities to shape the future of cyber security.
- Why this job: Make a real impact on cyber security and help protect essential services.
- Qualifications: Experience in incident response and strong documentation skills required.
The predicted salary is between 40000 - 50000 £ per year.
Help us create a better future, quicker. SP Energy Networks (SPEN) has kicked off an ambitious security transformation programme to transparently reduce risk, achieve compliance with NIS regulations and deliver a cyber resilient business. The Incident Response Analyst is essential in achieving our goals. This role will be integrated into an active and ambitious global cyber security function, contributing to SPEN's cyber security purpose of delivering cyber resilient OT and IT, to enable a safe and reliable electricity supply to customers.
What you'll be doing
- You will play a central role in strengthening SPEN's incident response capability by developing, maintaining, and continuously improving cyber security playbooks, procedures, and associated documentation.
- You'll work closely with incident responders, detection engineers, and wider cyber teams to ensure processes are clear, repeatable, and aligned with best practice.
- You’ll support the full incident lifecycle—from preparation through to post incident review—ensuring lessons learned are captured, documented, and fed into future improvements.
- As part of this, you will contribute to the maturity of SPEN's cyber response framework, ensuring playbooks are operationally effective, compliant with NIS regulations, and tailored to our evolving OT and IT environments.
- You will also be responsible for developing and delivering an incident response exercise plan covering a range of scenarios designed to test team readiness, validate playbooks, and ensure operational effectiveness.
- These exercises may include tabletop scenarios, technical simulations, cross team coordination drills, and lessons learned reviews that contribute directly to capability uplift.
- Building strong working relationships across the business will be key. You'll engage with operational, engineering, legal, risk, communications, and technology stakeholders to understand their requirements, coordinate incident response activities when required, and ensure that documentation and processes reflect real world operational needs.
- You will also have the opportunity to help shape the wider strategy of the Incident Response function—identifying capability gaps, contributing to team roadmaps, supporting cross industry collaboration, and driving continual service improvement within SPEN's cyber resilience programme.
What you'll bring
- Experience developing, maintaining, or executing incident response playbooks, runbooks, or procedures within a cyber security environment.
- Strong documentation skills—with the ability to translate complex technical activities into clear, structured, and usable operational guidance.
- Ability to plan, deliver, and evaluate incident response exercises—such as tabletop scenarios, simulation based drills, or cross team coordination activities—with a focus on validating playbooks and improving operational readiness.
- Demonstrable experience building effective relationships with technical and non-technical stakeholders, with the ability to collaborate, influence, and communicate clearly during both day to day operations and during security incidents.
- A good understanding of the incident response lifecycle, common attack techniques (MITRE ATT&CK), and how incident response processes integrate with threat detection, monitoring, and wider security operations.
Incident Response Analyst employer: Morson Talent
Contact Detail:
Morson Talent Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Incident Response Analyst
✨Tip Number 1
Network like a pro! Reach out to folks in the industry on LinkedIn or at local meetups. We all know that sometimes it’s not just what you know, but who you know that can help you land that Incident Response Analyst role.
✨Tip Number 2
Prepare for those interviews by practising common incident response scenarios. We suggest running through some tabletop exercises with friends or colleagues to sharpen your skills and boost your confidence before the big day.
✨Tip Number 3
Don’t forget to showcase your documentation skills! Bring examples of how you've translated complex technical processes into clear guidance. We want to see how you can make things easy to understand for everyone involved.
✨Tip Number 4
Apply directly through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive about their job search!
We think you need these skills to ace Incident Response Analyst
Some tips for your application 🫡
Tailor Your CV: Make sure your CV speaks directly to the Incident Response Analyst role. Highlight your experience with incident response playbooks and any relevant cyber security projects you've worked on. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about cyber security and how you can contribute to SPEN's goals. Be sure to mention specific experiences that demonstrate your ability to build relationships and improve processes.
Showcase Your Documentation Skills: Since strong documentation skills are key for this role, include examples of how you've translated complex technical activities into clear guidance. We love seeing how you can make things simple and understandable for everyone involved!
Apply Through Our Website: Don't forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it gives you a chance to explore more about our team and culture!
How to prepare for a job interview at Morson Talent
✨Know Your Playbooks Inside Out
Make sure you’re familiar with incident response playbooks and procedures. Be ready to discuss how you've developed or improved these in past roles, as this will show your practical experience and understanding of the incident response lifecycle.
✨Showcase Your Documentation Skills
Prepare examples of how you've translated complex technical activities into clear operational guidance. This is crucial for the role, so having specific instances where your documentation made a difference will impress the interviewers.
✨Prepare for Scenario-Based Questions
Expect questions about how you would handle various incident scenarios. Think through potential tabletop exercises or simulations you’ve conducted and be ready to explain your approach and the outcomes.
✨Build Rapport with Stakeholders
Demonstrate your ability to build relationships with both technical and non-technical stakeholders. Share examples of how you’ve collaborated across teams to enhance incident response efforts, as this will highlight your communication skills and teamwork.