If you'd like to find out more about the role, the Cyber Security Team and what it’s like to work at DBT, we're holding a Hiring Manager Q&A session for this role where you can virtually 'meet the team' on Wednesday 20th August at 12:30pm. Please click here to book your spot.
About us
The Department for Business and Trade (DBT) has a clear mission - to grow the economy. Our role is to help businesses invest, grow and export to create jobs and opportunities right across the country. We do this in three ways:
* Build a strong, competitive business environment, protecting consumers and rewarding companies for treating employees properly.
* Open international markets and ensure resilient supply chains through Free Trade Agreements, trade facilitation, and multilateral agreements.
* Partner with businesses daily, providing finance and deal-making support for startup, investment, export, and growth.
The Digital, Data and Technology (DDaT) directorate develops and operates tools and services to support this mission.
As a Lead Cyber Security Engineer at DBT, you will play a vital role in safeguarding the department’s digital estate, supporting the UK’s economic resilience and global competitiveness. You’ll lead the design and implementation of secure-by-design solutions across cloud, hybrid, and on-premises environments, embedding security throughout the digital lifecycle.
Your responsibilities will span strategic and operational domains. You’ll lead security engineering across DBT’s digital platforms, ensuring robust protection of trade, business, and investment systems. You’ll oversee the Security Operations Centre (SOC), managing security event data analysis to generate actionable alerts for cyber analysts.
Working with the SOC Manager, you’ll ensure security tooling and data pipelines are effective and current. You’ll create analytic rules, collaborate with analysts, and lead incident response efforts. You’ll advise on cyber risks, emerging threats, and mitigation strategies, aligning with the Government Security Framework. You’ll mentor team members, fostering innovation and continuous improvement.
Main responsibilities
You will be:
* Leading large, cross-functional teams to design, develop, and implement automated monitoring processes, advising on SIEM and network analysis tools, and communicating progress to leadership.
* Implementing a monitoring strategy, ensuring roadmaps are met, and policies and standards are followed.
* Analyzing security event data to manage incidents, making decisions on reporting and escalation, and identifying process improvements.
* Communicating with senior stakeholders, defining incident response strategies, and deputizing for the SOC manager when needed.
* Reviewing incident documentation, capturing lessons learned, and integrating Cyber Threat Intelligence services to enhance threat detection.
* Mentoring junior engineers and contributing to the development of the security profession.
About you
* Excellent communication skills across written, verbal, and virtual mediums.
* Strong decision-making abilities.
* Collaborative mindset, able to work with team members, service teams, and third parties.
* Ability to prioritize workload effectively based on SOC requirements.
#J-18808-Ljbffr