Job summary
The NCA has grown in size and complexity in recent years and it is vital that it maintains a security posture and capabilities to protect against existing, new and emerging threats.�
The Integrated Protective Security Command (IPS) is responsible for securing the Agency to protect the public. The IPS mission statement is: "Delivering integrated protective security to build a resilient, high-trust Agency able to lead the UK�s fight to cut serious and organised crime."
IPS safeguards the NCA from the full range of security threats that target the Agency, our officers and our assets, to enable the organisation to achieve its operational objectives, both domestically and overseas, with flexibility, agility and integrity. Its officers provide specialist security services to the Agency 24 hours a day, 7 days a week, 365 days a year, to mitigate security risks.
Job description
We are currently looking to recruit Lead Security Operations Centre (SOC) Analysts within our integrated protective security command. The successful candidate will work from the Agency�s Birmingham office on a 24/7 shift pattern.
�
The Cyber Security Team leads the strategic response to cyber risks, cyber security function, oversees audit, building internal and external alliances with diverse stakeholders to deliver the NCA�s strategic objectives.
What will the successful Candidate be doing?
If successful, you will work within the newly created Tier 2, Cyber Security Operations Centre, supporting the SOC Manager to run all SOC services. Joining at this time offers the rare opportunity to help shape what the final SOC capability will look like.
You will be the Lead Analyst on shift, responsible for ensuring that activities related to the monitoring of the Agency�s cyber domain take place. Your team of analysts will be the Agency�s eyes and ears before, during and after a cyber incident. The Lead Analyst reports directly to the SOC Manager and is untimely accountable to the Head of Cyber Security.
**To be considered, you will need to successfully complete SC Enhanced clearance before commencing the role and achieve DV clearance within the first 12 months in post.**
Person specification
Key Responsibilities (responsibilities will include, but not be limited to):
1. The day-to-day management of personnel and tasking within the cyber domain of the Security Operations Centre.
2. Monitoring for events across multiple security technologies, including intruder detection systems (IDS), Intruder prevention systems (IPS), Firewalls, End Point Security Solutions and vulnerability management solutions.
3. Liaise with trusted partners to provide accurate threat identification. Recommend suitable mitigation measures and report the situation to senior management.
4. Content development and analytics. Taking threat intelligence and tuning the SOC services to best protect the Agency�s vulnerabilities.
5. Leading engineering tasks in support of the continuous availability of SOC services.
6. Ensure that SOC scheduled tasks, reported events and incidents are appropriately progressed.
7. Assisting as required with Security, Risk, Compliance and Service reporting.
Please note the team operates a 24/7 shift pattern currently consisting of 8 hour shifts across earlies, lates and nights.
Qualifications
The following qualifications/skills are essential to the role and proof will be required at interview;
� Recognised higher education in an IT related area with preference for those held within Cyber security relevant to this role.
And/or
� Certifications from a recognized body in Digital Security GIAC, ISC2, ISACA, BCS, CompTIA
Please ensure the dates of any accreditations you are relying on, are entered on to the CV.
Should you progress to the assessment stage of the process, you will be required to provide a copy of the original certificate.
Failure to provide evidence at interview may result in your application not progressing to the next stage.
Behaviours
We'll assess you against these behaviours during the selection process:
8. Making Effective Decisions
9. Communicating and Influencing
Technical skills
We'll assess you against these technical skills during the selection process:
10. Experience as a Senior Security Analyst leading a team using SIEM capabilities, vulnerability scanning.
11. Experience of overseeing the SOC incident response.
12. Experience of managing threats, Impact analysis and report writing.
13. Experience of supporting/developing a team to effectively meet the SOC� objectives/capability
Benefits
Alongside your salary of �50,697, National Crime Agency contributes �13,761 towards you being a member of the Civil Service Defined Benefit Pension scheme.
All officers in the NCA are members of the UK Civil Service. You will be eligible for:
14. Civil Service pension scheme
15. 26 days annual leave rising to 31 on completion of 5 years continuous service
16. If qualifying criteria is met new joiners to the NCA from UK Police Forces or UKIC will have service with those employers taken into account for continuous service purposes for Annual Leave entitlement only, this will be up to a maximum of 31 days leave (including 1 privilege day).
17. Training and development opportunities
18. Special leave�
19. Flexible working and family friendly policies
20. Cycle to work scheme
21. Blue Light scheme�
For further details on benefits please visit