×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Consultant Information Security

Risk Analyst - NESO

Job in Sindlesham, RG41, England, UK
Listing for: National Energy System Operator
Full Time, Part Time position
Listed on 2026-02-14
Job specializations:
  • IT/Tech
    Cybersecurity, IT Consultant, Information Security
Salary/Wage Range or Industry Benchmark: 57000 - 64000 GBP Yearly GBP 57000.00 64000.00 YEAR
Job Description & How to Apply Below
Location: Sindlesham

About the Role

National Energy System Operator (NESO) recognises the potential of bright and talented individuals, and we encourage you to join us as Great Britain’s energy system undergoes an ambitious, exciting, and vital transformation. Together with industry, we are creating a cleaner, more sustainable energy future.

As we continue to develop the Security team here at NESO, we are looking for a Risk Analyst. In this role, you will join an expanding & high-functioning Security team and will be assisting in the delivery of a comprehensive risk management function.

You will collaborate closely with internal teams to support implementation of the internal risk management framework, build risk management capability within teams, work with stakeholders to identify, and manage security risks, help to determine risk treatment strategies, develop internal and external (e.g. regulatory) risk reporting and metrics, and feed into wider Governance, Risk and Compliance activities. You will stay informed about current security threats and industry standards to support the continuous development of risk management processes  will develop and maintain strong relationships, working with teams across the organisation to promote a proactive culture of risk management.

This role can be based from Wokingham, or Warwick, and we continue to offer hybrid working from office and home. We are open to full time and part time applicants, as well as flexible working arrangements.

Key Accountabilities
  • Supporting the implementation of the end-to-end Technology Risk Management framework to identify and manage security risk.
  • Working with stakeholders across the business to help them to understand and utilise Technology Risk management processes.
  • Ensuring risks are appropriately identified, articulated, assessed, and evaluated.
  • Supporting the selection of controls used to mitigate risks and feed into risk treatment plans.
  • Developing and maintaining risk documentation, standards, procedures, and risk registers.
  • Developing metrics and reporting to senior management and provide input into relevant business communications / awareness activities.
  • Maintaining and developing knowledge of the energy sector, legislative changes, and relevant threats.
  • Building and maintaining strong working relationships with key internal and external stakeholders.
About You
  • Excellent understanding of Risk Management practices, specifically the end-to-end risk management process.
  • Excellent understanding of security controls, and how these are used to manage risks.
  • Previous experience in applying control frameworks such as ISO
    27001 and NIST 800-53.
  • Knowledge and understanding of the NCSC Cyber Assessment Framework (CAF) and The Network and Information Systems (NIS) Regulations 2018 and how they apply to operators of CNI.
  • Ability to translate cyber security guidance and information into business-relevant documentation.
  • Ability to engage with a broad range of stakeholders, including business stakeholders, vendors and partners.
  • Experience using risk management/GRC tooling.
  • Previous experience managing security risk assessments.
  • Strong analytical skills and ability to source data, analyse, and draw conclusions.
  • Understanding of security risks posed to CNI through IT, OT and physical environments.
  • Awareness of current security threats, in particular to the energy sector.
  • Excellent organisational skills, with an eye for detail.
Desirable

Qualifications:

Certified in Risk and Information Systems Control (CRISC) or Certified Information Security Manager (CISM) or equivalent

Don’t meet every single requirement? Studies have shown that women and people of colour are less likely to apply for jobs unless they meet every single qualification. At NESO, we are committed to building a diverse, inclusive, and authentic workplace for everyone. So, if you’re excited about this role but your experience or qualifications don’t match the job description exactly, we encourage you to apply anyway.

You might just be the right person for our growing business in this role or another one.

About What You'll Get

A competitive salary between £57000 - £64000 – dependent on experience and capability.

As well as…

Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search