Cyber Incident Response Lead

CSIRT Lead

Glasgow

Salary: £61-77K + benefits (15% bonus, single healthcare)

Hybrid working, Permanent

**Due to the nature of the role, the successful candidate will need to be able to obtain NSV SC clearance – You will need to have lived continuously in the United Kingdom for a period of 5 years before being eligible to meet the Minimum Residency Criteria**

Help us create a better future, quicker

ScottishPower is embarking on a Cyber Security Transformation Programme. We\’re looking for a CSIRT Lead to oversee and lead the CSIRT function in the UK. This SME will be responsible for leading, coordinating, and executing a range of Security Services within the UK Cyber Fusion Centre, primarily focusing on Incident Response, Event Monitoring, Digital Forensics, Red Teaming and Threat Hunting.

What you\’ll be doing

The CSIRT Lead will be responsible for technical mentoring of the Senior Analysts and Analysts in the CSIRT team. You\’ll assist with the delivery of new tools, processes, and services within the CSIRT team, leading the successful delivery and operation of the tools.

The role reports to the CSIRT Manager and will regularly engage and coordinate with the Global Cyber Fusion Centre and Global Incident Response teams. This will also involve communicating and collaborating with other Group Cyber Security functions and Business Cyber Security teams.

Within this role, you\’ll provide subject matter expert input to the security strategy, developing and managing the strategic roadmap in the UK, defining and evolving the security tools, resources, and processes. You\’ll own the delivery of appropriate support models for all CSIRT tools.

The CSIRT Lead will be responsible for managing security incidents, along with the day-to-day oversight of operational activity and metrics, including managing supplier activity relating to operational security services for incident response and forensic analysis in the UK.

You will also participate in the 24/7 standby service provided by the UK CSIRT on a rotational basis to ensure the organisation responds effectively to critical security incidents out of hours.

You\’ll define a program of security initiatives, you\’ll manage senior stakeholders, and work closely with OT security functions to ensure the delivery of an integrated IT/OT security strategy.

What you\’ll bring

• Specialist knowledge of IT Security and Incident Response as evidenced by relevant industry qualifications (e.g. GCIH, GCFA or equivalent)

• Significant experience of IT Security Operations in an organisation of similar scope and scale to ScottishPower, with previous IT Security Operations experience in a global organisation preferred.

• Significant experience in all elements of the Incident Response lifecycle including leading the technical response during security incidents of all severities and managing key stakeholders.

• Experience in configuring and supporting security tools and services.

• Experience in managing security service providers and security software suppliers.

• Awareness of key legislation and regulation impacting the delivery of IT Security in an energy utility.

• Experience and understanding of OT Security challenges and solutions.

• Experienced in providing SME input into IT Security Operations Strategies and Product Roadmaps.

What\’s in it for you

As well as a competitive salary which is reviewed annually, you can also enjoy a number of other benefits. With our pension scheme, we\’ll double match your contribution up to a company contribution of 10%.

At ScottishPower, we believe it\’s the little things we do in life that make a big difference. From helping you look after your family\’s wellbeing, save for your future and take personal steps for climate action – our benefits are designed to help you do just that – so that you have everything you need to take care of your world – today and tomorrow. That\’s why our benefits include:

• 36 days annual leave

• Holiday purchase – perfect your work/life balance with extra annual leave

• Share Incentive Plan and Sharesave Scheme

• Payroll giving and charity matched funding

• Technology Vouchers – save more and spread the cost of your technology purposes

• Count us in – pledge to reduce carbon emissions and help fight climate change

• Electric Vehicle Schemes – to help you transition to green/clean driving

• Cycle to Work scheme and public transport season ticket loans

• Options to purchase dental insurance, private medical insurance, health cash plan and annual health assessments

• Life Assurance (4x salary)

• Access to nudge\’ financial wellbeing support

• Plus shopping, leisure, restaurant and gym discounts, and unique employee deals on travel insurance and more

Why ScottishPower

ScottishPower is part of the Iberdrola Group, one of the world\’s largest integrated utility companies and a world leader in wind energy. With a commitment to generate all of our energy from renewable resources and a drive to create the energy infrastructure of the future, we\’re at the forefront of the journey to Net Zero and investing over £6m every working day to make this happen. With diverse opportunities across our businesses and a commitment to invest in our own internal talent, ScottishPower can offer people real career opportunities that meet personal and professional goals, in a global organisation.

Inclusion, diversity, and a social purpose are at the heart of everything we do. Together with our values, they bring us together into a stronger, more sustainable business with direct links to the communities we serve. It takes all kinds of people to build a large-scale business like ours, so whatever your background, you\’ll fit right in.

ScottishPower is committed to providing reasonable support or adjustments in our recruiting processes for candidates with disabilities, long term conditions, mental health conditions, or who are neurodivergent or require pregnancy-related support. If you need support, please reach out to careers scottishpower.com .

#J-18808-Ljbffr