Principal Cyber Analyst

Company: NATIONAL GRID CO USA (NE POWER)
Location: Wrentham
Posted on: January 12, 2022

Job Description:

In accordance with guidelines regarding companies classified as Federal contractors and consistent with our core commitment of safety, National Grid has made the decision to require all new hires to be fully COVID-19 vaccinated as a condition of hire. "Full vaccination" is defined as two weeks after both doses of a two-dose vaccine or two weeks since a single-dose vaccine has been administered. Anyone unable to be vaccinated, either because of a religious belief or a disability can request a reasonable accommodation.About us -National Grid is hiring a Principal Cyber Analyst for our security operations team in the US. - -This role offers remote working however you must reside within 50miles of a US National Grid Office. - (National Grid Office locations include: Northboro or Waltham in MA, Melville or Syracuse in NY, Bloomington in MN or San Francisco) - -Every day we deliver safe and secure energy to homes, communities, and businesses. We are there when people need us the most. We connect people to the energy they need for the lives they live. The pace of change in society and our industry is accelerating and our expertise and track record puts us in an unparalleled position to shape the sustainable future of our industry. -To be successful we must anticipate the needs of our customers, reducing the cost of energy delivery today and pioneering the flexible energy systems of tomorrow. This requires us to deliver on our promises and always look for new opportunities to grow, both ourselves and our business. -To find out more about us and what we do -
-About the role
The Principal Cyber Analyst is a technical leader within the CSIRT providing thought leadership on the implementation of innovative technical solutions. Alongside providing leadership on highly complex incident response activities and mentoring the broader team to improve the technical and necessary business skillsets across the team.
In this hands-on role, the post holder will proactively look to improve the overall CSIRT capability and analyst workflow. This will incorporate working with the required key stakeholders to extract the complete capability from all CSIRT toolsets and streamline the analyst workflow to drive efficiencies into the CSIRT ways of working. -
Key Accountabilities include: -

• Provide subject matter expert level guidance and influence in order to extract as much value as possible from our existing capability and drive efficiencies into the CSIRT ways of working
• Effectively engage with required key stakeholders to ensure the platforms that the CSIRT relies on are optimized, robust and continuously evaluated to utilize the complete capability associated
• Provide technical leadership and guidance during complex incident response activities
• Work with project teams to seamlessly onboard new capability to the CSIRT ensuring requirements are provided and met prior to handoverAbout you -Ideally you will have: -
  • Extensive work experience in the Cyber Security industry, including but not limited to security monitoring and incident response activities
  • Strong experience baselining, trending and improving CSIRT capabilities
  • Strong experience creating, tuning and managing content across all common security toolsets
  • Strong experience with operating security monitoring platforms (SIEM)
  • Strong experience working with key stakeholders to deliver both new and further improve existing capability within a CSIRT
  • Demonstrated ability to lead the response to security incidents using commercial and/or open-source technologies
  • Experience working with the MITRE AT&&CK Framework and tactics, techniques, and procedures (TTPs)
  • Experience in forensic analysis and the associated principles
  • Demonstrated ability in summarizing events/incidents effectively to different constituencies such as legal counsel, executive management and technical staff, both in written and verbal formsQualifications -Technical qualifications may include but are not limited to:
    • A higher degree in a computer related discipline or equivalent experience
    • The following certifications or equivalent experience: - GIAC Certified Forensic Analyst (GCFA), GIAC Reverse Engineering Malware (GREM), GIAC Cyber Threat Intelligence (GCTI), GIAC Certified Incident Handler (GCIH), GIAC Network Forensic Analyst (GNFA), GIAC Response and Industrial Defense (GRID), GIAC Certified Intrusion Analyst (GCIA), GIAC Penetration Tester (GPEN) or equivalent
      - -This position has a career path which provides for advancement opportunities within and across bands as you develop and evolve in the position; gaining experience, expertise and acquiring and applying technical skills. Candidates will be assessed and provided offers against the minimum qualifications of this role and their individual experience. -National Grid is an equal opportunity employer that values a broad diversity of talent, knowledge, experience and expertise. ?We foster a culture of inclusion that drives employee engagement to deliver superior performance to the communities we serve. ?National Grid is proud to be an affirmative action employer. We encourage minorities, women, individuals with disabilities and protected veterans to join the National Grid team. -

Keywords: NATIONAL GRID CO USA (NE POWER), Brockton , Principal Cyber Analyst, Professions , Wrentham, Massachusetts