Cyber Security Analyst

Post: Cyber Security Analyst (CSA)

Reports to: IT Manager

Responsible for: No direct reports

Location: IUK London office + working remotely as required, with travel as required for performance of the role

Key Relationships/Interfaces:

External entities: Working with Ofgem to ensure compliance and National Cyber Security Centre (NCSC). Sit on the E3CC steering group for Cyber in the energy industry. Sit on the Cyber Advisory Group (CAG) for shareholder updates.

Internal entities: Working closely with the Operations teams in IBT / IZT. Working with Engineering team on new projects.

Financial Accountability:

Not a budget holder

Purpose:

The Cyber Analyst (CA), will work closely with the IT Manager and the Engineering Department. The role will be responsible for supporting the IT Manager in implementing Cyber security guidelines laid out by Ofgem as part of the NCSC's CAF framework. This will be done via a roadmap of improvements to ensure Interconnector are compliant with current legislation for Operators of Essential Services (OES).

Working with third parties to ensure my clients OT environment is optimized and protected against the threat of Cyber events, looking at evolving threats and ways to mitigate or eradicate before they cause disruption to the core business.

Working with the Engineering and Operations teams on new projects looking at these from an impact to cyber security and making recommendations to ensure new and evolving technologies meet the secure standards required.

Key Responsibilities/Accountabilities:

1. Work to deliver the Cyber roadmap. Help to devise / evolve the cyber roadmap alongside the IT Manager

2. Act as the Deputy NIS Responsible Officer (DNRO). Working as one of the two named individuals with Interconnector with Ofgem / NCSC to implement any cyber policy or procedures.

3. Act as deputy for the Cyber Advisory Group - a group that meets quarterly to update Shareholders on work undertaken and any actions identified / outstanding

4. Work with Fluxys Cyber Teams for alignment and cross over from IT into OT

5. Act as a Technical resource for new IT / OT projects to ensure security first mentality from a Cyber perspective.

6. Prepare material for presentation at internal and external meetings (CAG, E3CC, Ofgem, internal Departmental meetings)

7. Work with Third parties brought in to help deliver a more robust delivery mechanism of cyber - this includes third party outsourced Security Operations Centre (SOC)

8. Maintain and develop effective working relationships with colleagues across the Group to leverage knowledge sharing, call upon a wider skills pool and participate in Group wide cyber activities

9. Develop relationships and maintain contact with industry counterparts to gain understanding of developing industry and market trend