Defensive Cyber Analyst

Defensive Cyber Analyst Hereford, England

Ministry of Defence
Full Time Hereford, England 27080 GBP ANNUAL Today
Job description

Details

Reference number

287170

Salary

£27,080

Job grade

Executive Officer

Contract type

Permanent

Business area

MOD - Strategic Command

Type of role

Analytical
Information Technology
Security

Working pattern

Flexible working, Full-time, Job share, Part-time

Number of jobs available

1

Contents

    Location

    About the job

    Benefits

    Things you need to know

    Apply and further information

Location

Hereford

About the job

Job summary

The Defensive Cyber Analyst will work within a rapidly growing cyber security team who are responsible for designing, delivering and maintaining operational cybersecurity capabilities. You will be conducting pro-active, risk based, defensive monitoring of priority C4IS/networks identifying potential internal and external cyber threats/attacks.

The position involves a broad range of skills to monitor networks/systems, and the post holder must have the ability to analyse and investigate security events, communicate effectively with other team members and articulate clearly when raising escalating to senior team members and management.

Your main objective will be to proactively monitor and hunt through IT environments to detect and respond to information and cyber security threats utilising a range of technologies and processes to prevent, detect and manage cyber threats.

You will contribute to the effectiveness and maturity of the Security Operations Centre (SOC) by contributing to tooling, updating and creating new play books while remaining current with the trends in the wider security industry.

This position is advertised at 37 hours per week.


Job description

Day to Day Operations:

  • Manage and maintain security of computer networks by monitoring situational awareness feeds to detect Cyber threats to users, and the wider MOD community.
  • Conduct analysis of all alerts to determine the threat to computer networks, triaging by employing a methodical and coherent response and escalating in accordance with (iaw) Standard Operating Procedures (SOP’s)
  • Create and maintain accurate case management records of all actions taken while analysing and closing incidents iaw SOPs.
  • Monitor sensor feeds and heuristic detection tools, performing initial analysis to identify process and network events that may indicate a malicious cyber incident.

Incident Response & Management:

  • Brief management regarding ongoing security incidents including status and actions to be taken.
  • Raise and perform response actions of any incidents that arise during your response time, which may include liaison with external agencies or analysis using the tools available.
  • Maintain all incident documentation using the various case management toolsets to maintain the single source of knowledge of the cyber defence task.
  • Deliver briefings where required to support the defensive cyber monitoring task.

SOC Development:

  • Develop new or improve Security Use Cases, ensure accurate supporting documentation is maintained and reports, rules, and alerts for SIEM tools developed in unison.
  • Deliver operationally focused direction, guidance, and SME (subject matter expert) advice to junior security staff and non-security staff.
  • Engage with various partners, including service providers within industry regarding the defensive monitoring.

Personal & Professional Development:

  • Maintain knowledge of current cyber issues, vulnerabilities and exploits through research, technical reports, and briefs.
  • Undertake continual knowledge development in line with NIST Work Role PR-CDA-001

Other Duties as directed by SOC TL and SOC manager/director.

Person specification

As a Defensive Cyber Analyst, you will work independently and as part of a team, you will be responsible for proactive monitoring and detection of security events. You will be responsible for analysing, investigating, and communicating cyber security incidents and risk. You will be an effective team player and bring your good understanding of computer networks (LAN/WAN, network protocols and OSI model) and knowledge of computer-based network attacks (MITRE ATT&CK, NIST CSF) to contribute to successfully defending organisational systems. You will be responsible for seeking opportunities to improve your own knowledge and sharing knowledge with others.

The ideal candidate will have the following traits:

  • A passion for cyber security and a keen interest in IT
  • Adopts a creative, yet methodical mind-set when investigating and responding to cyber threats
  • Persevering in the face of stressful circumstances, prioritise and meet deadlines.
  • Superb attention to detail, good analytical and problem solving skills to assist in resolving Events of Interest and potential Indicators of Compromise
  • A continuous desire and willingness to learn and develop your current knowledge and skills
  • Good verbal and written communication skills, with particular ability to communicate technical information to non-technical collaborators.

Behaviours

We'll assess you against these behaviours during the selection process:

  • Changing and Improving
  • Leadership
  • Developing Self and Others
  • Making Effective Decisions
  • Working Together

We only ask for evidence of these behaviours on your application form:

  • Changing and Improving
  • Leadership
  • Developing Self and Others

Technical skills

We'll assess you against these technical skills during the selection process:

    • SFIA – IT Infrastructure (ITOP) – Level 1
    • SFIA – Network Support (NTAS) – Level 2
    • SFIA – Incident management (USUP) – Level 3
    • SFIA – Security operations (SCAD) Level 3

Benefits

  • Learning and development tailored to your role
  • An environment with flexible working options
  • A culture encouraging inclusion and diversity
  • A Civil Service pension with an average employer contribution of 27%
  • 25 days’ paid annual leave rising (one day per year) to 30 days after five years’ service
  • Access to onsite gymnasium and cafe

External recruits who join the MOD who are new to the Civil Service will be subject to a six-month probation period.

This post does not offer any assistance with relocation allowances.

Please be advised that the Department is conducting a review of all pay related allowances which could impact on those allowances that the post currently being advertised attracts.

Any move to MOD from another employer will mean you can no longer access childcare vouchers. This includes moves between government departments. You may however be eligible for other government schemes, including Tax-Free Childcare. Determine your eligibility at www.childcarechoices.gov.uk

Please note: Interview travel expenses will not be reimbursed.

The Ministry of Defence is committed to providing a safe and healthy working environment for its staff which includes educating them on the benefits of not smoking, protecting them from the harmful effects of second-hand smoke and supporting those who want to give up smoking. Under the Smoke-Free Working Environment policy, Smoking and the use of all tobacco products (including combustible and chewing tobacco products) will not be permitted anywhere in the Defence working environment by 31st December 2022. The policy is Whole Force and includes all Defence personnel, contractors, visitors and other non-MOD personnel. All applicants seeking, considering, or accepting employment with the Ministry of Defence should be aware of this policy and that it is already in place at a number of Defence Establishments.

MOD Recruitment Satisfaction Survey – we may contact you regarding your experience to help us improve our customer satisfaction. The survey is voluntary and anonymous. You may however be given the opportunity to provide additional information to help us improve our service which includes the collection of some personal data as defined by the United Kingdom General Data Protection Regulation (UK GDPR). The MOD Privacy Notice sets out how we will use your personal data and your rights.

Things you need to know

Selection process details

This vacancy is using Success Profiles (opens in a new window), and will assess your Behaviours, Experience and Technical skills.

All applications will go through an initial sift and those successful at sift will be invited to attend an interview.

Candidates will be required to provide a statement of suitability (max 750 words)

During the interview process candidates' technical/cyber understanding will be assessed via questioning.

As a result of the changes to the UK immigration rules which came into effect on 1 January 2021, the Ministry of Defence will only offer sponsorship for a skilled worker visa under the points-based system, where a role has been deemed to be business critical. The role currently being advertised has not been assessed as business critical and is therefore NOT open to applications from those who will require sponsorship under the points-based system. Should you apply for this role and be found to require sponsorship, your application will be rejected, and any provisional offer of employment withdrawn.



Feedback will only be provided if you attend an interview or assessment.

Security

Successful candidates must undergo a criminal record check.
Successful candidates must meet the security requirements before they can be appointed. The level of security needed is developed vetting (opens in a new window).

See our vetting charter (opens in a new window).
People working with government assets must complete baseline personnel security standard (opens in new window) checks.

Nationality requirements

Open to UK nationals only.

Working for the Civil Service

The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants.

We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window).
The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.
The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.

Apply and further information

This vacancy is part of the Great Place to Work for Veterans (opens in a new window) initiative.
Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.

Contact point for applicants

Job contact :

Recruitment team

Further information

Please ensure you read the attached candidate information document prior to completing your application. Please refer to the attached Candidate Information guide.

Defensive Cyber Analyst
Ministry of Defence

www.mod.gov.me
Podgorica, Montenegro
Unknown / Non-Applicable
201 to 500 Employees
Government
Related Jobs

All Related Listed jobs

Hospitality, Supermarket Assistant
Waitrose Locks Heath, England 10.5 - 11.48 GBP HOURLY Today

As a Partner you will enjoy our unique benefits package, including staff discount, subsidised food in Partner dining rooms, discounts in local restaurants,

Level 6 Degree Apprenticeship
Arup Birmingham, England 25200 - 32639 GBP ANNUAL Today

We are looking for candidates with five or more GCSEs at grade C/4/5 or above including Maths, English and Science and a minimum of 3 A levels at grade C or

Children's Support Worker
ACTIVE SEN United Kingdom 12 - 15 GBP HOURLY Today

To look after the physical, emotional, cultural and social needs of the children using a person-centered approach. To actively support other Care Assistants.

Machine Operator
Bayco Ltd Wisbech, England 14 - 17 GBP HOURLY Today

Our ideal candidate would have previous experience operating various processing machines, including; Laser, Press brake, Guillotine, Punch & Rollers.

physician assistant
Royal London Macclesfield, England Today

Job Title: PA to Senior Manager
Contract Type: Permanent
Location: Alderley Edge, Edinburgh, Glasgow, Or...