About Us
National Grid is at the heart of the UK energy network keeping people connected and society moving. In order to support and enable the Big Work and the dramatic shift in today's cyber-risk landscape, our security decision-making and implementation processes are shifting from centrally controlled, stage-gated, waterfall approaches to more decentralized and agile methods. Instead of being confined to a centralized authority, risk decisions are to be made at the edge by delegated CISOs using agile processes and cyber judgment.
To facilitate this shift, cybersecurity requires scalable processes that can effectively address conflicts, excess residual risks, and exception requests. These processes should be able to provide hands-on support at the tempo required by the business. The Global CISO is embracing an approach that involves centrally creating cybersecurity policies and capabilities with input from delegated CISO’s. These policies and capabilities are then adapted locally into standards, guidelines, and operating procedures. The "what" is defined centrally, while the "how" is resolved locally.
About The Role
Our vision is to be recognised as a world leading Information Technology and Digital function in the energy sector and a trusted partner across National Grid businesses. In the Security Policy Lead role, your purpose is in developing, and maintaining security policies, standards, guidelines, and procedures in alignment with the Global CISO and as defined by the National Grid Cyber Security Senior Leadership team. Your contributions will help drive adoption and adherence to policies and standards and ensure the organization's approach to GRC is fit for purpose, current, and effectively managed.
Utilising the NIST CSF v2.0 as a framework to align to, the Security Policy Lead shall (under the direction of the National Grid Cyber Security Senior Leadership team) develop and have communicated organizational cybersecurity policy as directed. As an employee in the Security Policy Lead role, your key roles and responsibilities will include:
- Develop and maintain comprehensive security policies and procedures, owned by the Global CISO, as directed and approved by the National Grid Cyber Security Senior Leadership team.
- Maintain a central repository that is available to employees
- Collaborate with cross-functional teams to align security policies with technology and business objectives.
- Collaborate with cross-functional teams to ensure security policies align to and integrate/support wider group policies.
- Collaborate with cross-functional teams to ensure audit and compliance requirements are met
- Provide guidance and leadership in the area of security policy development and enforcement.
- Stay informed of the latest security threats and regulatory requirements to ensure policies remain relevant and effective.
- Provide support and guidance to business entity CISOs for any security policy requirements specific to a business entity.
About You
- Bachelor's degree in a relevant discipline, or an equivalent combination of education, training, and experience.
- 7 or more years of related experience.
- Collaborate effectively with colleagues and suppliers in different time zones.
- Strong analytical and problem-solving skills for making sound decisions under pressure.
- Foster positive work environment with teamwork and effective communication.
- Ability to influence, build relationships, and demonstrate team leadership skills in fast-paced, ambiguous, and autonomous professional service environment.
More Information
A competitive salary between £60,000 - £72,000 – dependent on capability
As well as your base salary, you will receive a bonus of up to 15% of your salary for stretch performance and a competitive contributory pension scheme where we will double match your contribution to a maximum company contribution of 12%. You will also have access to a number of flexible benefits such as a share incentive plan, salary sacrifice car and technology schemes, support via employee assistance lines and matched charity giving to name a few.
#LI-RL1
#LI-HYBRID
At National Grid, we work towards the highest standards in everything we do, including how we support, value and develop our people. Our aim is to encourage and support employees to thrive and be the best they can be. We celebrate the difference people can bring into our organisation, and welcome and encourage applicants with diverse experiences and backgrounds, and offer flexible and tailored support, at home and in the office.
Our goal is to drive, develop and operate our business in a way that results in a more inclusive culture. All employment is decided on the basis of qualifications, the innovation from diverse teams & perspectives and business need. We are committed to building a workforce so we can represent the communities we serve and have a working environment in which each individual feels valued, respected, fairly treated, and able to reach their full potential.
