Cyber Incident Response Specialist

Job Description

EDF UK Sites – with a requirement to attend Gloucester Business Park on a weekly basis.

Are you a dedicated Cyber Security professional looking to take the next step in your career? Do you have experience in incident response, with strong communication and stakeholder engagement skills? Do you thrive in a fast-paced environment where each day brings new challenges and opportunities to make an impact? If so, join EDF as a Cyber Incident Response Specialist!

The Opportunity

As a Cyber Incident Response Specialist, you’ll support the development and implementation of a coordinated and resilient end-to-end capability for managing cyber security incidents across nuclear licensees. You’ll also contribute to maintaining an effective pool of first responders, engaging with stakeholders to ensure response capabilities remain robust.

Additionally, you’ll support the development and implementation of cyber response and recovery capabilities, including exercises aligned with the Nuclear Cyber Security Strategy target operating model based on the NIST Framework. Where required, you’ll assist licensees in responding to major cyber security incidents.

Pay, benefits and culture

Alongside a salary from £45,000 to £65,000 and a market-leading pension scheme, your package will include a range of benefits, from the big and formal to the small and personal.

We’re talking about everything from enhanced parental leave to electric vehicle leasing, health insurance to product discounts, critical illness insurance to technology vouchers, gym membership to season ticket loans.

At EDF UK, we embrace flexibility while recognising that everyone's working needs are different. Whether you're in our office spaces, on site, or working remotely, we promote an environment that supports collaboration, connection, and comfort. No matter where you are, our priority is to make sure you feel safe, valued, and celebrated.

Here, we do right by each other and everyone’s welcome. We’re on an action-oriented journey, championing equity, diversity, and inclusion. We’d like our future workforce to have an equal gender balance, represent a broad mix of people from minority ethnic backgrounds, LGBTQ+, those with a disability and supporting social mobility.  

We’re a disability confident employer and we’ll do all we can to help with your application. Please let us know if you need to request reasonable adjustments.

We take pride in fostering a dynamic and inclusive environment, where the diverse backgrounds and experiences of our employees drive fresh thinking and innovation. We understand that success means different things to different people. We believe there are multiple definitions of what it means to succeed. That’s why we support you to pursue a career that’s unique to you. Because success is personal.

What you’ll be doing

You'll be an integral part of the Incident Response group, providing services across EDF nuclear licensees. A key focus will be developing and strengthening the pool of first responders, embedding effective incident response arrangements, and ensuring cyber incident response protocols are integrated into licensee processes and policies. Additionally, you'll support forensic analysis of incidents, ensuring proper handling of evidence and advising on assurance activities to enhance detection capabilities.

Identifying and implementing lessons learned from incidents will be essential to improving cyber security resilience. This includes supporting the dissemination of operational experience (OPEX) and leading elements of a comprehensive cyber exercising program across multiple licensees. You'll also coordinate internal cyber workshops and exercises to ensure response strategies remain effective. Working closely with Business Continuity and Emergency Preparedness teams, you'll help integrate cyber incident response into broader emergency frameworks.

You'll assist in developing incident response communications and procedures while maintaining an awareness of cyber threat intelligence to provide informed advice. Managing service contracts, advising on cyber risks, and collaborating with stakeholders across EDF Energy and external partners, including the NCSC, will be crucial to ensuring the successful containment and resolution of cyber incidents affecting nuclear licensees.

Who you are

You’ll have a strong understanding of national and international information security standards and frameworks, such as ISO 27000 and the HMG Security Policy Framework. A solid grasp of the cyber kill chain, along with experience handling complex cyber security threats, vulnerabilities, and risks, is essential. Knowledge of Industrial Control System (ICS) cyber security practices is also important.

You’ll have experience working independently within a security team, taking initiative to meet demanding milestones. Practical knowledge of incident response plans and exercise development will be beneficial, alongside familiarity with key regulations such as the Nuclear Industries Security Regulations (NISR 2003), the Data Protection Act (2018), and ONR SyAPs. Hands-on experience in cyber incident response, security operations, or forensic investigations would be advantageous.

We’re looking for someone with experience working in industrial environments with ICS/OT technologies, as well as a proactive approach to identifying and mitigating cyber security risks. The ability to navigate a highly regulated setting and maintain strong stakeholder relationships will be key to success in this role.

If this sounds like you then we’d love to hear from you!

Closing date for applications: 3rd April 2025

Please note that candidates must be eligible for and willing to obtain Security Check (SC) clearance for this role.

#NuclearServicesJobs #HinkleyPointCJobs #DestinationNuclear #EDFNuclearJobs

Additional Information

Success is personal. It's your journey, powered by us. Join us and we'll help Britain achieve Net Zero together.