Senior Security Assurance Analyst - NESO

As the National Energy System Operator (NESO), we are building a secure, resilient, and digital-first energy system. Our Security function plays a central role in safeguarding the systems and data that underpin the transformation of the GB energy landscape. We are now seeking a Security Assurance Analyst to help us deliver robust, risk-based security assurance across NESO’s services and systems. In this role, you will join an expanding & high-functioning Security team and will assess security controls, identify vulnerabilities, ensure adherence with security standards, and support NESO’s regulatory obligations (including NIS compliance).

You will work closely and develop strong relationships with delivery teams, system owners, and cyber specialists to ensure that security risks are identified, communicated, and managed effectively throughout the system lifecycle. This role can be based from Wokingham or Warwick and we continue to offer hybrid working from office and home. We are open to full time and part time applicants, as well as flexible working arrangements.

Key Accountabilities

• Conduct security assurance reviews across NESO systems, services, and projects, ensuring alignment with NESO security policies, control framework, NIS guidance and industry best practice.
• Support the development of metrics and measures for security assurance, including continual maintenance and improvement of those metrics.
• Report on assurance activities, producing clear insights and actionable recommendations.
• Manage and monitor findings from assurance activities, ensuring timely remediation and visibility.
• Support security audits, regulatory submissions and compliance activities relevant to NESO (including NIS and Ofgem reporting).
• Contribute to continuous improvement of NESO’s security assurance methodology, frameworks and tooling.
• Building and maintaining strong working relationships with key internal and external stakeholders.

About You

We’re forging the path, and we know we can’t do it alone. That’s why we need visionary minds like yours to join us on this transformative journey. In this case, we’re looking for someone who:

• Has previous experience in conducting security assurance activities, including testing the design, implementation, and operational effectiveness of security controls.
• Understands and applies recognised security and risk frameworks (e.g., ISO27001, NIST 800-53, NIS CSF, Cyber Essentials).
• Has knowledge and understanding of the NCSC Cyber Assessment Framework (CAF) and The Network and Information Systems (NIS) Regulations 2018 and how they apply to operators of CNI.
• Can interpret complex technical documentation, system architectures, SOC processes, risk assessments, and security monitoring capabilities.
• Has experience reviewing architectural designs to assess security-by-design principles and evaluating risk and threat assessments.
• Has experience using GRC tooling.
• Produces clear, concise, evidence-based assurance reports that articulate findings, risks, good practice, and recommended actions.
• Builds strong working relationships with delivery teams, system owners, control owners, cyber specialists, and senior stakeholders.
• Communicates security risks effectively and ensures they are identified early and managed throughout the system lifecycle.
• Demonstrates analytical thinking, curiosity, and a continuous-improvement mindset when evaluating control maturity and identifying enhancements.
• Thrives in a dynamic, high-performing team delivering high-quality, risk-based security assurance across diverse technologies, including cloud, physical security, and critical national infrastructure.
• Exhibits excellent organisational skills, with an eye for detail.

Qualifications

• Lead Auditor or equivalent.
• Degree-level qualification or equivalent combination of education and experience with strong background in Risk/Compliance/Assurance.

Research shows that some people may hesitate to apply unless they meet every requirement. At NESO, we believe potential comes in many forms and we’re committed to a fair, inclusive recruitment process where everyone can show their talents. We celebrate the difference people can bring into our organisation, and welcome and encourage applicants with diverse experiences and backgrounds to build a workforce that feels valued and respected and represents the communities we serve.

About What You’ll Get

• A competitive salary between £56,000 - £62,000pa – dependent on experience and capability.
• As well as your base salary, you will receive a bonus based on company performance, 26 days annual leave as standard and a competitive contributory pension scheme where we will double match your contribution to a maximum company contribution of 12%.
• Full support and career-development resources to expand your skills, enhance your expertise, and maximise your potential along your career journey.
• A diverse and inclusive community of belonging, where teammates are empowered to bring ideas to the table.
• Generous Total Rewards Plan – comprising of health, finance and wealth, work/life balance, and career benefits.

About Us

National Energy System Operator’s (NESO) mission is to facilitate the decarbonisation of Great Britain’s energy network and ensure the delivery of reliable, affordable, and clean electricity for consumers. We work with stakeholders across the whole energy industry to plan for future network needs, using a wider adoption of technology and changes in consumer behaviour, as well as ensuring we have the right markets, networks, and frameworks in place, to transform the way we operate tomorrow.

Join us, and let’s energise progress. Your energy, our future, together.

About The National Energy System Operator (NESO)

In Autumn of 2024, the ESO transitioned to National Energy System Operator, or NESO for short. Previously denoted as the Future System Operator (or FSO), the new National Energy System Operator is the independent body responsible for planning Great Britain’s electricity and gas networks and operating the electricity system.

The ESO, including all of its existing roles, are now at the heart of the new National Energy System Operator. As NESO, we will build on our existing roles, capabilities, and ways of working significantly to create an organisation the energy system and its users’ need. Our new capabilities will enable us to look across vectors, including electricity, natural gas and hydrogen, and crucially consider the trade-offs between them.

The organisation is set up as a public corporation with its own Board of independent directors, with complete operational independence from government, the regulator and any and all commercial interest. As was the ESO, NESO will be licenced and regulated by Ofgem through price control agreements and obligated to identify optimal solutions to system operations and planning in the most sustainable, affordable and secure way for all.

More Information

This role closes on 10th February 2026 at 23:59, however we encourage candidates to submit their application as early as possible and not wait until the published closing date as this can vary.

We work towards the highest standards in everything we do, including how we support, value and develop our people. Our aim is to encourage and support employees to thrive and be the best they can be. We celebrate the difference people can bring into our organisation, and welcome and encourage applicants with diverse experiences and backgrounds, and offer flexible and tailored support, at home and in the office.

We’re committed to building a workforce that represents the communities we serve, and a working environment in which each individual feels valued, respected, fairly treated, and able to reach their full potential.