National Grid (https:\\careers.nationalgridus.com)
What You'll Get
A competitive salary between £50,000– 60,000 – dependent on capability
As well as your base salary, you will receive a bonus based on personal and company performance and a competitive contributory pension scheme where we will double match your contribution to a maximum company contribution of 10%. You will also have access to a several of flexible benefits such as a share incentive plan, salary sacrifice car and technology schemes, support via employee assistance lines and matched charity giving to name a few.
We are National Grid, and we are at the heart of energy. From heating homes to making sure businesses fire on all cylinders, we’re using our engineering excellence to connect people and the planet. We’re also looking to the future – innovating, inventing, and transforming – to make possible the energy systems of tomorrow. And that’s why there’s never been a more exciting time to join us and help us to make a difference to people’s lives every day.
About the role
As the successful candidate, we are expecting you to manage IT risks (including risk identification, assessment/response, monitoring, reporting and exception processing) in accordance with documented processes. You are expected to challenge and improve processes in conjunction with the Risk Management Leads. We would see you as mentor and would like you to coach more junior members of the team and peer-review work by other team members.
You will act as Risk Manager for assigned risks, This will include presenting a summary of assigned risks to management as required, review work done by other members of the team as part of defined QA processes and develop expertise in the organisation and operation of assigned IT team(s), and act as primary point of contact within the Risk team for said team(s).
We are ideally looking for you to have information/cyber risk management certification such as CRISC but if this is something you don’t have we will provide training to help you achieve this goal.
Other key parts of your role will include to document, implement and improve/maintain IT Risk team processes.
To be successful at his role we would expect you must have at least 5 years of experience in managing information systems or information/cyber security risk according to an industry standard approach. Your experience would make it easy to demonstrate a high degree of credibility and influence senior stakeholders within the Organisation.
You must be able to communicate effectively both orally and in writing, and possess excellent knowledge of information/cyber security and related principles.
We would expect extensive knowledge of IT and information/cyber security controls. You must be self-motivated and able to deliver with minimal supervision. In addition to this you should have experience of relevant standards, frameworks and regulations including some of: NIS Directive, GDPR, NERC CIP, Sarbanes Oxley, PCI, NIST Cyber Security Framework, HIPAA, UK Directive 105, US Data Privacy related laws, CFATS.
Essential : Educated to degree level in maths, science or computing or equivalent experience
Desirable : Information security certifications such as CISSP,CISM or CEH
Who we are
At National Grid, we don’t just ask our people to deliver to the highest standards. We also support them to be the best they can be. We welcome and encourage applicants with diverse experiences and backgrounds. National Grid’s ambition is to drive, develop and operate our business in a way that results in a more inclusive culture. We are committed to building a workforce which represents the communities we serve and a working environment in which each individual feels respected, fairly treated, valued and able to reach their full potential.