Title:  Principal Threat Hunting & Detection Engineer - NESO

About the Role

National Energy System Operator (NESO) recognises the potential of bright and talented individuals, and we encourage you to join us as Great Britain’s energy system undergoes an ambitious, exciting, and vital transformation. Together with industry, we are creating a cleaner, more sustainable energy future.

The National Energy System Operator are looking for a talented Principal Threat Hunting & Detection Engineer to be part of our growing Cyber Defence Team.

As a Principal Threat Hunting & Detection Engineer, you will be at the forefront of our Cyber Defence strategy, leveraging your expertise to shape, design, and build innovative detection strategies. You will lead proactive threat hunting initiatives, contribute to the development of robust monitoring frameworks, and aid in the creation of critical security automations. Your leadership will be vital in fostering a high level of Cyber Defence maturity across our organisation.

We are searching for an exceptional individual, capable of leading large scale cyber defence engagements, designing innovative detection strategies and communicating with stakeholders at every level.

Research shows that some people may hesitate to apply unless they meet every requirement. At NESO, we believe potential comes in many forms and we’re committed to a fair, inclusive recruitment process where everyone can show their talents. We celebrate the difference that people bring to our organisation, and welcome and encourage applicants with diverse experiences and backgrounds to build a workforce that feels valued and respected and represents the communities we serve.If this role sparks your interest but you’re not sure you tick every box, we still want to hear from you.

This role can be based from Wokingham, Warwick and we continue to offer hybrid working from office and home. We are open to full time and part time applicants, as well as flexible working arrangements. 

Key Accountabilities

• Lead Technical Cyber Response: Act as the principal resource for complex and large-scale cyber technical response engagements, ensuring swift and effective resolution.
• Innovate Detection Strategies: Design, develop, and implement advanced threat detection methodologies to identify and mitigate potential security threats.
• Proactive Threat Hunting: Conduct thorough threat hunting activities to identify and neutralise potential threats before they materialise.
• Framework Development: Assist in creating mature and comprehensive response frameworks that enhance our cyber defence capabilities.
• Collaborative Defence: Work closely with the Cyber Security Operations function and other stakeholders to ensure cohesive and comprehensive security measures.
• Stakeholder Communication: Communicate effectively with a diverse range of stakeholders, providing clear and actionable insights into cyber threats and response strategies.
• Continuous Improvement: Drive continuous improvement in our security posture by staying abreast of the latest threat intelligence and incorporating new best practices. 

About You

We’re forging the path, and we know we can’t do it alone. That’s why we need visionary minds like yours to join us on this transformative journey. In this case, we’re looking for someone who: 

• Passionate about Threat Hunting: You have an unwavering enthusiasm for identifying and neutralising cyber threats.
• Innovative Detection Designer: You have a proven track record of designing and implementing novel detection mechanisms.
• Technical Proficiency: You possess solid experience in using SIEM (Security Information and Event Management) and EDR (Endpoint Detection and Response) technologies.
• Strong Communicator: You have excellent communication skills, both written and verbal, enabling you to articulate complex security concepts clearly and effectively.
• Collaborative Team Player: You thrive in a collaborative environment, working effectively with cross-functional teams to achieve common goals.

Qualifications

Relevant degree-level qualification or equivalent experience with strong background in providing threat hunting services in a large hybrid environment, within a government or critical infrastructure domain.

About What You'll Get

A competitive salary up to £75,000pa – dependent on experience and capability.

As well as your base salary, you will receive a bonus of up to 15% of your salary for stretch performance, 28 days annual leave as standard, and a competitive contributory pension scheme where we will double match your contribution to a maximum company contribution of 12%.

As we work towards creating a cleaner, greener, and more affordable future for all, we also work towards creating a place for our teammates to belong, with professional and personal growth and positive well-being.

• Full support and career-development resources to expand your skills, enhance your expertise, and maximise your potential along your career journey.
• A diverse and inclusive community of belonging, where teammates are empowered to bring ideas to the table.
• Generous Total Rewards Plan – comprising of health, finance and wealth, work/life balance, and career benefits.

About Us

National Energy System Operator’s (NESO) mission is to facilitate the decarbonisation of Great Britain’s energy network and ensure the delivery of reliable, affordable, and clean electricity for consumers. We work with stakeholders across the whole energy industry to plan for future network needs, using a wider adoption of technology and changes in consumer behaviour, as well as ensuring we have the right markets, networks, and frameworks in place, to transform the way we operate tomorrow.

Join us, and let’s energise progress.

Our energy, our future, together.

About The National Energy System Operator (NESO)

In Autumn of 2024, the ESO transitioned to National Energy System Operator, or NESO for short. Previously denoted as the Future System Operator (or FSO), the new National Energy System Operator is the independent body responsible for planning Great Britain’s electricity and gas networks and operating the electricity system.

The ESO, including all of its existing roles, are now at the heart of the new National Energy System Operator. As NESO, we will build on our existing roles, capabilities, and ways of working significantly to create an organisation the energy system and its users’ need. Our new capabilities will enable us to look across vectors, including electricity, natural gas and hydrogen, and crucially consider the trade-offs between them.

The organisation is set up as a public corporation with its own Board of independent directors, with complete operational independence from government, the regulator and any and all commercial interest. As was the ESO, NESO will be licenced and regulated by Ofgem through price control agreements and obligated to identify optimal solutions to system operations and planning in the most sustainable, affordable and secure way for all.

More Information

This role closes on 14th November 2025 at 23:59, however we encourage candidates to submit their application as early as possible and not wait until the published closing date as this can vary.

We work towards the highest standards in everything we do, including how we support, value and develop our people. Our aim is to encourage and support employees to thrive and be the best they can be. We celebrate the differenc people can bring to our organisation and welcome and encourage applicants with diverse experiences and backgrounds, and offer flexible and tailored support, at home and in the office.

We're committed to building a workforce that represents the communities we serve, and a working environment in which each individual feels valued, respected, fairly treated, and able to reach their full potential.