Security Analyst (ITIL, Cyber, Security, Analyst)

Revenue and Customs Digital Technology Services
Town Centre
£26,600 - £29,400
13 Mar 2018
15 Mar 2018
Contract Type
Full Time
Security Analyst (ITIL, Cyber, Security, Analyst) Salary: 26,600 - 29,400 Location: Telford With 60000+ staff and 50m customers, HMRC is one of the biggestorganisations in the UK, running the largest digital operation inGovernment and one of the biggest IT estates in Europe. We have sixmodern, state-of-the-art digital delivery centres where multiple crossfunctional agile teams thrive in one of the most dynamic and innovativeenvironments in the UK. We are expanding our Service Operationsdepartment and are recruiting into a number of posts within Revenue& Customs Digital Technology Service in Telford. The Customer Experience Operational Command Centre (CE-OCC) comprisesof a number of teams focused around monitoring the customer experiencefor the HMRC IT network, services, applications, batch processing,security and incident management. Responsibilities of the Security Analyst (ITIL, Cyber, Security,Analyst) include: In line with this purpose, the CE-OCC Security Analyst (ITIL, Cyber,Security, Analyst) has the following responsibilities: Continual real-time monitoring of the HMRCs Security Platforms suchas Splunk. Maintain CE-OCCs Cyber Security Team (CST) monitoring screens andadapt as and when necessary. Progressive maintenance and improvement of CST dashboards in linewith CE-OCCs requirements to tailor dashboards that meet wider view requirements. Real-time monitoring of CSTs mailbox, for potential alerts and otherImportant Information. Taking ownership of CSTs cases and following CST tickets to fullresolution state in line with CST procedures as well as flaggingrelevant information to meet CE-OCCs needs. React and respond to CE-OCCs trending analysis raised by CE-OCCcolleagues to identify and eliminate any security issues assisting withfindings where possible. Listen to CE-OCCs bridge phone conversations and report to overallCST when incidents develop within the CE-OCC regardless what the issueis. Where new issues are identified in the CE-OCC, collaborate and assistusing cyber security skills where possible. In an event of HPI that involves Cyber Security, take ownership andbe first point of contact, creating a knowledge bridge between CE-OCCand CST as a whole, sharing information in real time to resolve incidentto hand efficiently. Monitor Daily CE-OCC communications in CST mailbox to maintainconstant awareness. Provide overview of CST monitoring dashboards to CE-OCC guests withbrief examples of what CSTs role is within the CE-OCC and what CSTmonitoring dashboards illustrate. In an event of a Major Incident (HPI) CE-OCC will have prepared anHPI environment in which various concerned stakeholders and serviceowners are involved. If this concerns issues associated with CST you areresponsible for: Provide initial assessment of the situation and collaborate withCEOCCs team as well as CST in relation to the incident and creation ofa CST ticket. Attend live calls and provide assistance and collaboration. Provide background material if available and ensure (wheresensitive information is identified), seek approval from CST managementbefore disclosure. Capture timeline throughout the incident lifespan Real-time updates and application of skillset without delay isessential. For out of hours, if unable to resolve incident, use the on-call ifincident is classified as severe and high risk of breach is identifiedto critical infrastructure environments. Essential Knowledge, Criteria and Skills of the Security Analyst (ITIL,Cyber, Security, Analyst) ITIL Foundation certified Minimum 1-3 years experience in Networking and/or Cyber SecurityDisciplines. Comfortable with fundamentals of Networking, Firewall logs, AVs andIDS/IPS logs. Industry recognised qualifications such as CISSP, GCIH, CEH, GSEC etc SC/DV Clearance Desirable Knowledge, Criteria and Skills of the Security Analyst (ITIL,Cyber, Security, Analyst) Excellent customer facing experience Strong analytical and problem solving skills Excellent troubleshooting methodologies and root cause analysisskills Able to work autonomously but collaboratively Able to build effective business relationships Able to organise work and deliver under pressure to schedule Trend Analysis Competent at report writing and data manipulation through MS OfficeApplications Experience and understanding of working on government and large scalecomplex environments Awareness and enthusiastic in cyber security developments, currenttrends, analysis and technically equipped with basic scripting skills. Experience of monitoring and troubleshooting cyber securitymonitoring toolsets Previous exposure to SIEM platforms in particular Splunk. (able tocreate and edit Splunk dashboards, and or understand how SIEM platforms function) Working Pattern This post is full time and will form part of a team that provides 24/7cover on a shift basis, which consists of the following times: Week 1: Mon/Tue & Fri/Sat/Sun ~ Hours: 07:00-19:00 Week 2: Wed/Thur ~ Hours: 07:00-19:00 Week 3: Mon/Tue & Fri/Sat/Sun ~ 19:00-07:00 Week 4: Wed/Thur ~ 19:00-07:00 The Security Analyst vacancy also attracts a 15% shift allowance. To apply for the role of Security Analyst (ITIL, Cyber, Security,Analyst), please click apply now. RCDTS-ZR_103_JOB - provided by Dice AGILE, CEH, CISSP, FIREWALL, GSEC, INCIDENT MANAGEMENT, ITIL, SECURITY MONITORING