To support the Information and Cyber Security Officer (ISO) and the Information Security Advisor (ISA) on information and Cyber security matters, ensuring that safeguards are in place to protect information assets. The information and cyber security analyst will monitor, and evaluate all of the organisation’s security systems that protect the organisation’s infrastructure, network and data.
It is essential that the successful applicant can:
* Be able to monitor the organisations infrastructure and networks for security issues, attacks, intrusions and any potential unauthorised or illegal activity, using the multiple security and compliance tools (e.g. SEIM tools, internet and email filtering applications etc.) currently deployed, and those which may be introduced in the future.
* Monitor and respond to activity such as 'phishing' emails and 'pharming' etc.
* The ability to write queries within security applications using coding languages, in particular KQL, and SQL
* Generate reports for both technical and non-technical staff and stakeholders
* Provide accurate advice and guidance to staff on Information and Cyber Security issues such as spam and unwanted or malicious emails
* Support and undertake work alongside the ISO and ISA, on information and cyber security matters
* Reporting any security issues to the ISO, ISA, where appropriate the wider organisation, and assisting in responding to them
* Document Information Security Incidents and assess the damage they may cause.
* Assist with the Investigation of Information and Cyber Security Incidents, Data Breaches
It is desirable that the successful applicant can:
* Investigate security alerts and provide incident response working with the rest of the team
* Assist the ISO and the ISA to plan for Business Continuity and disaster recovery in the event of any security breaches
* Assist the ISO and the ISA by working with ICT colleagues and external security teams with the creation of penetration testing scopes that are used to uncover infrastructure and network vulnerabilities.
* Assist in maintaining an information security risk register and assist with internal and external audits relating to information and Cyber security
* Assist with the creation, maintenance and delivery of internal Information and Cyber Security awareness training for colleagues
* Assist the ISO and the ISA by ensuring that the physical security audit process is managed, and any reports required as a result of them are passed to the ISA and ISO.
* Any other duties that are commensurate with the role and grade as may be requested by management.
* Build internal/external relationships to maintain liaisons with other relevant organisations and bodies, including attendance at meetings and conferences
* Develop and maintain the information security training/awareness products, promote the need for information and cyber security across the organisation.
* Attend relevant project boards to provide assurance / accreditation and specialist security advice when required to do so.
* Manage applications for access to force information systems.
* Represent both forces at national and regional level on information and cyber security issues
The following essential criteria is required:
1. A degree qualification within the relevant field including Computer science/Computer forensics/Information/Cyber Security
2. Experience in the use of security applications in connection to email, internet and other software
3. Demonstrable knowledge of vulnerability scanning applications and data loss prevention applications
4. Experience of SEIM tools and the reports and actions associated with their use
5. The ability to write queries within security applications using coding languages, in particular KQL, and SQL.
6. A proficient user of Microsoft security applications
The following criteria is desirable:
1. Previous experience with data analysis and data management
2. Experience of document writing
This post is offered on a permanent basis. Hours of work are 37hrs per week, Monday to Friday.
#J-18808-Ljbffr