Providing technical expertise in Security Operations to inform IT Security, the Security Operations Team and the business as required
Collecting data and providing analysis in the following areas:
Security incident management including the analysis and resolution of security incidents that have SLAs
Vulnerability assessments and remediation’s and Treat Assessments
3rd line support for any security components of Incidents or Problems
Technical security projects and projects requiring security expertise
Root cause analysis and investigations into breaches and security incidents
Investigations on behalf of auditors, HR and others
Creating routine and ad hoc reports on Security Incident resolution, breaches, etc.
Ensuring the IT Team and Security Operations Team has the information necessary to perform their functions
Providing inputs into IT Security policies and procedures
Provide advice and guidance to the Security Operations Team on technical security operations and be a collaborative member of the wider IT Team
Providing input to the Information Security Certification and Accreditation process
Undertaking other duties and responsibilities as may be determined as reasonable for the role from time to time
Required Knowledge, Skills, and Abilities
Be of graduate caliber with either a degree and/or relevant experience Able to demonstrate extensive experience in a technical security role Able to demonstrate a high level of analytical skills in the field of IT Security Have a high level of communication skills, both written and verbal Track record of working within effective teams delivering in a Security Operation Be certificated in IT security, e.g., CISSP, CEH, etc. Be certificated in relevant IT technologies, e.g., Microsoft certified professional, Cisco, Firewalls, etc. Experience and proficiency in relevant technical IT standards such as NIST Cyber Security Framework, NCSC policies and guidelines, Cyber Essentials Plus, etc. Experience and familiarity with relevant technical IT standards such as ITIL, ISO27001, ISO2000, etc. Evidence of ongoing continuing professional development in IT Security. Experience of working within a large public sector organization (Council / Local Authority / NHS / University, etc.) delivering hosted services to stakeholders. Advanced IT Security or computing qualification, e.g., MSc Information Security. Experience of working in a Security Operations Centre. Professional or Chartered Membership of an appropriate professional body, e.g. BCS. Demonstrates personal commitment to continuous improvement and able to motivate and inspire commitment in others to achieve highest standards possible. Professional, tenacious and results-driven with a confident approach. Strong written and oral communication skills, with the ability to present complex information in reports and influence and persuade across all levels of the organization. Strong analytical and evaluation skills. Proven leadership skills and ability to think strategically and commercially. Relationship management skills and able to negotiate and influence stakeholders. Excellent organizational, problem-solving and change management skills. Demonstrates creative and critical-thinking skills with an appetite to drive innovation. Ability to work under pressure and exercise a high degree of tact and diplomacy.