Lead Cyber Security Analyst

Join to apply for the Lead Cyber Security Analyst role at Crown Commercial Service1 week ago Be among the first 25 applicantsJoin to apply for the Lead Cyber Security Analyst role at Crown Commercial ServiceDirect message the job poster from Crown Commercial ServiceRecruitment Advisor at Crown Commercial Service Position: Lead Cyber Security AnalystBand: 5Location: Liverpool/Newport/Norwich/BirminghamTerm: PermanentCCS: What We DoWe are the largest public procurement organisation in the UK. We help thousands of public and third sector buyers in the UK with over £20 billion being spent through our agreements each year.There has never been a better time to join CCS, as we aim to make public sector procurement as simple as possible through the digitisation of our workflows, we embrace the latest technology and invest in our people offering excellent career development opportunities.If you can see yourself contributing to this journey, supporting the public and joining our diverse team of over 800 colleagues, the next chapter of your career may be with our #CCSFamily.Job DescriptionWould you like to be a part of a digital transformation journey and be part of a growing team that is constantly evolving? Do you want to be involved in work that has a meaningful purpose? If yes, then this could be the role for you!CCS is on an exciting digital transformation journey. We are reviewing our entire business and delivering new and improved digital technologies to enhance the services we provide, the ways we work, and how we interact with our customers, suppliers and other stakeholders. We\’re implementing a new cyber security function as part of Agile digital delivery within our growing team, and the pace and scale of change within the Directorate is unprecedented .Job SummaryIn this critical role, establishing and leading our newly formed cyber security team, you will be responsible for understanding, detecting and responding to cyber threats and vulnerabilities affecting the Services we operate, as well as leading on regular IT Health Check\’s, resolving any issues identified that need addressing, and working with Operations and Development teams to prevent these issues in the future.This role reports to the Head of Service and Infrastructure, and is responsible for setting standards, developing policies and processes and operating and continually improving the team\’s monitoring and response capabilities.Directorate OverviewDigital and Data Services (DDS) supports our digital and technology design, implementation and service delivery. They maintain our digital systems and work with other teams to deliver the business plan with a digital mindset.Team SummaryThe post sits within the Digital Services (DDS) Service Management team, responsible for the ongoing development, delivery and support of digital services to internal and external users. Reporting to the Head of Service and Infrastructure, you will head up our new cyber security team, working alongside cross-functional product teams, leading in the design, development and enablement of automated monitoring processes, advising on the latest SIEM (Security Information and Event Management) and network analysis tools, techniques and procedures to detect malicious activity, while communicating directly with leadership on the progress and status of cyber threat monitoring and response.Key ResponsibilitiesLeading on the wider implementation of a monitoring strategy, ensuring roadmaps are achieved as expected, ensuring requirements, policies and standards to govern all activities and outputs are metLead monitoring, triaging, and investigation of security alerts on Azure and AWS platforms to identify security incidentsReview high-priority or high-complexity analysis of security event data to manage security incident response, making key decisions on reporting or escalations for monitoringLead the cyber security team in the design, development and enablement of automated monitoring processes, advising on the latest SIEM (Security Information and Event Management) and network analysis tools, techniques and procedures to detect malicious activity, while communicating directly with leadership on the progress and status of monitoringcoordinate the triage and remediation of identified threats using a risk-based approach, working closely with service teams and developers to ensure that appropriate mitigation measures are implementedwork closely with other teams within the Directorate and Information Security to proactively reduce cyber security threats and vulnerabilitiesproduce regular reporting which delivers insights on security monitoring activities and the impact on cyber security riskestablish a detailed understanding of our data security and architectures enabling the delivery of consistent security advicedefine requirements for improving and expanding our security toolingdevelop and update internal plans, processes, and knowledge base articlessupport wider Cyber Defence activitiesline manage, act as an escalation point for, and provide coaching and mentoring to Security analystsEssential Criteria (To be assessed at application):A track record in cyber security leadership, strategy development and planning in large and complex organisations, with demonstrable technical security knowledge of modern security concepts, principles and technologies for Azure, AWS, and SaaS.Expert knowledge of typical threats and attack vectors with appropriate monitoring and remediation strategies.experience using a variety of sources of information to identify, analyse and report on relevant threats and vulnerabilities.Developed problem solving skills including addressing complex technical security and process challenges that ensure delivery at pace to an appropriate risk appetite.Excellent communication and interpersonal skills, with the ability to effectively communicate complex security concepts to non-technical stakeholders, influence stakeholders and create easy to consume articles such as blogs, policies and presentations.Experience of day-to-day management of multi-disciplinary teams of cyber security professionals.Experience deploying, configuring and using vulnerability assessment (such as Tenable and the NCSC\’s Active Cyber Defence Toolkit) and Attack Surface Management toolsExperience using cloud provider monitoring tools such as AWS CloudWatch, CloudTrail and GuardDuty for threat monitoring, alerting and responseIn the event of a strong pool of candidates, desirable will be used as a second siftSuccess profiles (To be assessed at interview):Behaviours:Delivering at PaceManaging a Quality ServiceMaking Effective DecisionsChanging and ImprovingWorking TogetherTechnical:understanding of security event analysis and remediation specific to AWS Cloud environments and workloads.CCS is a flexible business with a smarter working model where our colleagues benefit from a mix of home and office working. Successful candidates are expected to work from one of the office locations listed. Our current office attendance approach requires a minimum of 26 days per quarter (approx 2 days per week, which may be subject to change) in CCS office locations or off site meetings with suppliers, customers, partners, networking / industry events. This is pro rata for those who work part time. Our smarter working principles mean that our people have the advantage of both office and offsite based collaboration and learning, as well as working from home. This way of working allows us to honour our commitment to being a responsible business, offer flexibility and better work life balance as well as ensuring we deliver our business with confidence and in accordance with our CCS values.In return for your skills we offer:A discretionary non-contractual performance related bonusWorking remotely in addition to working in advertised office locationMinimum 25 days annual leave to a maximum service related 30 days excluding bank holidaysAt CCS, we actively support, promote and celebrate our differences for the benefit of our employees, suppliers andcustomers. CCS is proud to be an equal opportunities employer. CCS believes that diversity and inclusion is critical to our success and we seek to recruit, develop and retain the most talented people.We want to make our recruitment process accessible to everyone, so if there is any way that we can support you, please contact recruitment@crowncommercial.gov.ukSeniority level Seniority level Not ApplicableEmployment type Employment type Full-timeJob function Job function Information TechnologyIndustries Government AdministrationReferrals increase your chances of interviewing at Crown Commercial Service by 2xGet notified about new Cyber Security Analyst jobs in Liverpool, England, United Kingdom .Northwich, England, United Kingdom 1 month agoRuncorn, England, United Kingdom 1 week agoGlazebury, England, United Kingdom 1 month agoLiverpool, England, United Kingdom 5 days agoLiverpool, England, United Kingdom 1 week agoLiverpool, England, United Kingdom 1 week agoCyber Security Incident Response Team (CSIRT) Specialist Chester, England, United Kingdom 3 weeks agoChester, England, United Kingdom 1 month agoLiverpool, England, United Kingdom 1 week agoService Engineer – Fire & Security Systems Warrington, England, United Kingdom 1 month agoLiverpool, England, United Kingdom 1 week agoChester, England, United Kingdom 1 month agoWarrington, England, United Kingdom 7 hours agoWarrington, England, United Kingdom 1 week agoFire & Security Project Commissioning Engineer Liverpool, England, United Kingdom 1 month agoSenior Incident Response Specialist, Bangkok Based (Relocation Provided) Liverpool, England, United Kingdom 19 minutes agoFire & Security Project Commissioning Engineer Liverpool, England, United Kingdom 1 month agoWe\’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr