Senior Security Assurance Analyst

As the National Energy System Operator (NESO), we are building a secure, resilient, and digital‑first energy system. Our Security function plays a central role in safeguarding the systems and data that underpin the transformation of the GB energy landscape.

We are now seeking a Security Assurance Analyst to help us deliver robust, risk‑based security assurance across NESO’s services and systems. In this role, you will join an expanding & high‑functioning Security team and will assess security controls, identify vulnerabilities, ensure adherence with security standards, and support NESO’s regulatory obligations (including NIS compliance).

You will work closely and develop strong relationships with delivery teams, system owners, and cyber specialists to ensure that security risks are identified, communicated, and managed effectively throughout the system lifecycle.

This role can be based from Wokingham or Warwick and we continue to offer hybrid working from office and home. We are open to full time and part time applicants, as well as flexible working arrangements.

• Conduct security assurance reviews across NESO systems, services, and projects, ensuring alignment with NESO security policies, control framework, NIS guidance and industry best practice.
• Support the development of metrics and measures for security assurance, including continual maintenance and improvement of those metrics.
• Report on assurance activities, producing clear insights and actionable recommendations.
• Manage and monitor findings from assurance activities, ensuring timely remediation and visibility.
• Support security audits, regulatory submissions and compliance activities relevant to NESO (including NIS and Ofgem reporting).
• Contribute to continuous improvement of NESO’s security assurance methodology, frameworks and tooling.
• Building and maintaining strong working relationships with key internal and external stakeholders.

We’re forging the path, and we know we can’t do it alone. That’s why we need visionary minds like yours to join us on this transformative journey.

• Previous experience in conducting security assurance activities, including testing the design, implementation, and operational effectiveness of security controls.
• Understands and applies recognised security and risk frameworks (e.g., ISO27001, NIST 800-53, NIS CSF, Cyber Essentials)

• Knowledge and understanding of the NCSC Cyber Assessment Framework (CAF) and The Network and Information Systems (NIS) Regulations 2018 and how they apply to operators of CNI.

• Can interpret complex technical documentation, system architectures, SOC processes, risk assessments, and security monitoring capabilities.
• Experience reviewing architectural designs to assess security‑by‑design principles and evaluating risk and threat assessments.
• Experience using GRC tooling
• Produces clear, concise, evidence‑based assurance reports that articulate findings, risks, good practice, and recommended actions.
• Builds strong working relationships with delivery teams, system owners, control owners, cyber specialists, and senior stakeholders.
• Communicates security risks effectively and ensures they are identified early and managed throughout the system lifecycle.
• Demonstrates analytical thinking, curiosity, and a continuous‑improvement mindset when evaluating control maturity and identifying enhancements.
• Thrives in a dynamic, high‑performing team delivering high‑quality, risk‑based security assurance across diverse technologies, including cloud, physical security, and critical national infrastructure.
• Excellent organisational skills, with an eye for detail.

• Lead Auditor or equivalent
• Degree‑level qualification or equivalent combination of education and experience with strong background in Risk/Compliance/Assurance.

Research shows that some people may hesitate to apply unless they meet every requirement. At NESO, we believe potential comes in many forms and we’re committed to a fair, inclusive recruitment process where everyone can show their talents. We celebrate the difference people can bring into our organisation, and welcome and encourage applicants with diverse experiences and backgrounds to build a workforce that feels valued and respected and represents the communities we serve.

A competitive salary between £56,000 – £62,000pa – dependent on experience and capability.

As well as your base salary, you will receive a bonus based on company performance, 26 days annual leave as standard and a competitive contributory pension scheme where we will double match your contribution to a maximum company contribution of 12%.

As we work towards creating a cleaner, greener, and more affordable future for all, we also work towards creating a place for our teammates to belong, with professional and personal growth and positive well‑being.

• Full support and career‑development resources to expand your skills, enhance your expertise, and maximise your potential along your career journey.
• A diverse and inclusive community of belonging, where teammates are empowered to bring ideas to the table.
• Generous Total Rewards Plan – comprising of health, finance and wealth, work/life balance, and career benefits.

National Energy System Operator’s (NESO) mission is to facilitate the decarbonisation of Great Britain’s energy network and ensure the delivery of reliable, affordable, and clean electricity for consumers. We work with stakeholders across the whole energy industry to plan for future network needs, using a wider adoption of technology and changes in consumer behaviour, as well as ensuring we have the right markets, networks, and frameworks in place, to transform the way we operate tomorrow.

Join us, and let’s energise progress.

Your energy, our future, together.

This role closes on 10th February 2026 at 23:59, however we encourage candidates to submit their application as early as possible and not wait until the published closing date as this can vary.

We work towards the highest standards in everything we do, including how we support, value and develop our people. Our aim is to encourage and support employees to thrive and be the best they can be. We celebrate the difference people can bring into our organisation, and welcome and encourage applicants with diverse experiences and backgrounds, and offer flexible and tailored support, at home and in the office.

We’re committed to building a workforce that represents the communities we serve, and a working environment in which each individual feels valued, respected, fairly treated, and able to reach their full potential.