At a Glance
- Tasks: Design and build innovative detection strategies while hunting for cyber threats.
- Company: Join the National Energy System Operator's new Cyber Security Operations team.
- Benefits: Competitive salary, bonus, 26 days leave, and a great pension scheme.
- Other info: Flexible working options available; we value diversity and inclusion.
- Why this job: Make a real impact on the UK's energy security with cutting-edge technology.
- Qualifications: Degree or equivalent experience in threat hunting and security engineering.
The predicted salary is between 49000 - 57000 £ per year.
The National Energy System Operator is embarking on the creation of a greenfield Cyber Security Operations function and is looking for a talented Threat Hunting and Detection Engineering (THaDE) Senior Analyst to be part of our growing THaDE team. This exciting opportunity will involve designing, shaping, and building novel detection strategies, executing threat hunting initiatives, and assisting in the creation of mature response frameworks. The role will also involve the creation of SOAR automations, bringing them through from concept to operational deployment.
The Threat Hunting and Detection Engineering Senior Analyst will work in collaboration with the wider Cyber Security Operations function to ensure a high level of cyber defence maturity, ensuring the security of the systems that govern the flow of energy around the United Kingdom. This role can be based from Wokingham or Warwick and we continue to offer hybrid working from office and home. We are open to full time and part time applicants, as well as flexible working arrangements.
Key Accountabilities
- Create novel detection content by utilising threat modelling and coverage gap analysis.
- Create novel SOAR automation strategies.
- Conduct proactive threat hunting following defined threat hunting frameworks, creating actionable output to feed to key stakeholders.
- Create response documentation to assist the SOC in the triaging of incidents generated by the THaDE team’s detections.
- Ensure continuous improvement of the THaDE detection content library by conducting proactive tuning and logic updates.
- Support the Cyber Security Operations Centre (CSOC) team in incident escalations where needed.
- Through the THaDE Manager, provide regular reports and metrics on the threat hunting and detection engineering activities and outcomes.
About You
- Passionate about threat hunting.
- Experience designing novel detection mechanisms.
- Solid experience using SIEM and EDR technologies.
- Strong communicator with excellent writing skills.
Qualifications
- Relevant degree-level qualification or equivalent experience with a strong background in providing threat hunting services in a large hybrid environment, within a government or critical infrastructure domain.
- Demonstrable experience in threat hunting, content development, security engineering, operations.
At NESO, we are committed to building a diverse, inclusive, and authentic workplace for everyone. If you’re excited about this role but your experience or qualifications don’t match exactly, we encourage you to apply anyway.
National Security Vetting
This role requires a National Security Vetting (NSV) clearance. The level of clearance is Security Check (SC). Applicants should have been resident in the UK for the last five years, though we invite expressions of interest from those who do not currently meet this residency requirement.
What You’ll Get
A competitive salary of £49,000 - £57,000 depending on experience and capability. In addition to your base salary, NESO’s core benefits include: you will receive a bonus based on company performance; 26 days annual leave as standard; a competitive contributory pension scheme where we will double match your contribution up to 12%; annual enrollment in the NESO Savings Plan, where we match 50% of your savings between £20-£500 a month.
Benefits Flexible Bank Holidays
Threat Hunting & Detection Engineering Analyst employer: National Energy System Operator
The National Energy System Operator is an exceptional employer, offering a dynamic work environment where innovation in cyber security thrives. With a commitment to employee growth, flexible working arrangements, and a strong focus on diversity and inclusion, we empower our team members to excel in their roles while contributing to the security of the UK's energy systems. Our competitive benefits package, including a generous pension scheme and performance-based bonuses, further enhances the rewarding experience of being part of our pioneering Cyber Security Operations function.
Contact Details:
National Energy System Operator Recruitment Team
StudySmarter Expert Advice🤫
We think this is how you could land Threat Hunting & Detection Engineering Analyst
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect on LinkedIn. The more people you know, the better your chances of landing that dream job.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your threat hunting projects and detection strategies. This gives potential employers a taste of what you can do.
✨Tip Number 3
Prepare for interviews by practising common questions related to threat hunting and detection engineering. We recommend doing mock interviews with friends or using online platforms to boost your confidence.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are genuinely interested in joining our team.
We think you need these skills to ace Threat Hunting & Detection Engineering Analyst
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Threat Hunting & Detection Engineering Analyst role. Highlight your relevant experience, especially in threat hunting and detection mechanisms, and don’t forget to showcase your communication skills!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to express your passion for cyber security and how your background aligns with our mission at StudySmarter. Be sure to mention any specific projects or achievements that demonstrate your expertise.
Showcase Your Technical Skills:We want to see your technical prowess! Make sure to include any experience you have with SIEM and EDR technologies, as well as any novel detection strategies you've designed. This will help us understand your capabilities right off the bat.
Apply Through Our Website:Don’t forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows you’re serious about joining our team at StudySmarter!
How to prepare for a job interview at National Energy System Operator
✨Know Your Threat Hunting Frameworks
Familiarise yourself with the latest threat hunting frameworks and methodologies. Be ready to discuss how you've applied these in past roles, especially in creating detection strategies or conducting proactive hunts.
✨Showcase Your Technical Skills
Prepare to demonstrate your experience with SIEM and EDR technologies. Bring examples of how you've designed novel detection mechanisms or created SOAR automations, as this will highlight your technical prowess.
✨Communicate Clearly and Effectively
As a strong communicator, practice articulating complex concepts in simple terms. Be prepared to explain your thought process behind detection strategies and how you would present actionable outputs to stakeholders.
✨Emphasise Continuous Improvement
Discuss your approach to continuous improvement in detection content. Share specific instances where you've conducted tuning or logic updates, and how these efforts have enhanced cyber defence maturity.
