Job Description

• Providing technical expertise in Security Operations to inform IT Security, the Security Operations Team and the business as required
• Collecting data and providing analysis in the following areas:
  • Security incident management including the analysis and resolution of security incidents that have SLAs
  • Vulnerability assessments and remediation’s and Treat Assessments
  • 3rd line support for any security components of Incidents or Problems
  • Technical security projects and projects requiring security expertise
  • Root cause analysis and investigations into breaches and security incidents
  • Investigations on behalf of auditors, HR and others
• Creating routine and ad hoc reports on Security Incident resolution, breaches, etc.
• Ensuring the IT Team and Security Operations Team has the information necessary to perform their functions
• Providing inputs into IT Security policies and procedures
• Provide advice and guidance to the Security Operations Team on technical security operations and be a collaborative member of the wider IT Team
• Providing input to the Information Security Certification and Accreditation process
• Undertaking other duties and responsibilities as may be determined as reasonable for the role from time to time

Required Knowledge, Skills, and Abilities

Be of graduate caliber with either a degree and/or relevant experience Able to demonstrate extensive experience in a technical security role Able to demonstrate a high level of analytical skills in the field of IT Security Have a high level of communication skills, both written and verbal Track record of working within effective teams delivering in a Security Operation Be certificated in IT security, e.g., CISSP, CEH, etc. Be certificated in relevant IT technologies, e.g., Microsoft certified professional, Cisco, Firewalls, etc. Experience and proficiency in relevant technical IT standards such as NIST Cyber Security Framework, NCSC policies and guidelines, Cyber Essentials Plus, etc. Experience and familiarity with relevant technical IT standards such as ITIL, ISO27001, ISO2000, etc. Evidence of ongoing continuing professional development in IT Security. Experience of working within a large public sector organization (Council / Local Authority / NHS / University, etc.) delivering hosted services to stakeholders. Advanced IT Security or computing qualification, e.g., MSc Information Security. Experience of working in a Security Operations Centre. Professional or Chartered Membership of an appropriate professional body, e.g. BCS. Demonstrates personal commitment to continuous improvement and able to motivate and inspire commitment in others to achieve highest standards possible. Professional, tenacious and results-driven with a confident approach. Strong written and oral communication skills, with the ability to present complex information in reports and influence and persuade across all levels of the organization. Strong analytical and evaluation skills. Proven leadership skills and ability to think strategically and commercially. Relationship management skills and able to negotiate and influence stakeholders. Excellent organizational, problem-solving and change management skills. Demonstrates creative and critical-thinking skills with an appetite to drive innovation. Ability to work under pressure and exercise a high degree of tact and diplomacy.