Cyber Security Operations Principal Specialist
Salary: £41,.00 – £51,.00
Potential to work remote with up to 2 days on site in Portsmouth
Purpose of Job:
Reporting to the Cyber Security Operations Manager, the role holder will support the delivery and enforcement of the cyber security operations plan.
This role is a key member of the Cyber Security Operations team who is responsible for carrying out day to day cyber security-related duties such as responding to security incidents, and reporting threats, vulnerabilities, and attacks on the systems. They will also liaise with technical specialists within IS, other departments, and external partners to agree on appropriate operational Cyber Security measures to ensure confidentiality, integrity and availability of systems and data.
The post holder will advise on cyber security and cyber security risk matters in liaison with our Security Operations Centre.
The post holder will also be required to advise and offer guidance on existing security arrangements and in the specification, design and implementation of new services.
The post holder must ensure that they keep up to date with developments in best practice, standards, and technologies within the sector and beyond.
Carry out operational security tasks, as directed by the Cyber Security Operations Manager, to support the strategic and operational goals.
Support and ensure delivery against the cyber security operational plan.
Be required to lead on the implementation of work packages related to the Cyber Security Improvement Programme.
Support the development and delivery of the cyber incident response plan.
Be an active member of the Cyber Security Incident Response Team (CIRT) and support the incident response and recovery activities.
Be a subject matter expert in cyber security threats, vulnerability management, and incident response.
Promote a cyber security culture across the institution, raising awareness and increasing the understanding of security through the application of policy and practice. Ensuring that this is articulated in a way that is understandable to a non-technical audience.
You will be expected to support your line manager and the team in its activities when required, you will also aim to help develop junior team members.
Provide clear and actionable reporting, metrics and dashboards regarding security operations
Follow the IT Governance, Risk and Compliance Framework.
Work closely with our external Security Operations Centre. Take a lead on the monitoring, response and prioritisation of incidents raised.
Work closely with auditors or other security-related third parties to address Cyber Security issues eg Janet CSIRT.
Lead on threat tracking and assessment, recommend mitigations, remediation or advise on acceptance of cyber security vulnerabilities based on internal and external capabilities, assessments and penetration tests.
Attend the IS Security Monthly Review, as required, feed into the risk log and monthly security report.
Build and maintain a strong working relationship with vendors and partners.
Advise stakeholders to help them understand and establish acceptable levels of risk, and proactively reduce the potential for incidents.
Support the line manager with any relevant analysis or subject matter expertise required to produce operational or project budgets.
Support and advise on cyber security requirements for the development and delivery of new IT services.
Must Haves: –
Experience of Security Analysis on Antimalware Platforms
Ability to recognise what is happening with security alerts
Able to work with SOC provider
Experience of a Broad range of Tech Windows, Linux, Macs etc
Experience of Sisco Networking
Knowledge of security tools
Experience of Vulnerability Malware, Patching Platforms, EDR, MDR solutions
Ability to take and comprehend instructions
Logical, Analytical and a cool head under pressure
Certes Computing (and all of its subsidiary companies) is committed to promoting equality and diversity in its business operations.