Cyber Security Analyst

London, Cardiff, Darlington, Belfast, Edinburgh (may require occasional travel to other DIT Offices)

We create digital services, data tools and technology for businesses to prosper around the world.

Our Digital, Data and Technology team develops and operates tools, services and platforms that enable the UK government to provide world leading support to businesses in the UK and overseas.

You'll get to constantly push boundaries in an environment free of heavy legacy, driven by curiosity, social purpose, diversity of thought, entrepreneurship and the aspiration to offer an incredible experience to all our users.

Job Description

Let us tell you a little bit about the role

As a Cyber Security Analyst, you will be

This is an exciting new role for a Cyber Security Analyst to work within the DIT SOC (Security Operations Centre), reporting to the senior SOC analyst. The Cyber Security Analyst is responsible for the identification and handling of threats, both internal and external, to the security of DIT. This is achieved by the monitoring of DIT systems and the identification, through analysis of security data or threat intelligence, of unusual activities which could be malicious.

This role will be suitable for an individual who has some experience in Cyber Security Analysis and is looking to increase their cyber knowledge, or for someone looking for a career change who has transferrable skills in areas such as data analysis or machine learning. Appropriate training, such as SANS courses, or others provided through the Government Cyber Profession, will be available for the right candidate

Responsibilities

What we're looking for from you

You will be an experienced Cyber Security Analyst that can:

• Support the Senior SOC Analyst and SOC Manager in the implementation of the monitoring roadmap.
• Analyse security event data arising from activity across the organisation with the goal of detecting malicious activity.
• Investigate security alerts and incidents generated by security tooling within DIT, resolving or escalating as appropriate.
• Produce documentation relating to the processing of alerts and incidents which includes the identification of improvements to processes and/or tooling.
• Production and maintenance of SOC dashboards.
• Update DIT security tooling with Indicators of Compromise (IOC) from commercial and/or ad–hoc threat intelligence.
• Testing of new features or alerts within the security tooling.
• Following DIT cyber playbooks during incidents, updating and improving those playbooks as necessary, and where identified the creation of new cyber playbooks.

Essential Skills and Experience:

You'll have demonstrable skills and experience of:

• Experience of working as a tier 1 security analyst or in a role with transferable skills (e.g., investigation based or data analysis/machine learning roles).
• Demonstratable experience of using KQL (Kusto Query Language) or a similar query language.
• Understanding of the principles of intrusion detection and analysis.
• Understanding of the cyber threats that an organisation can face and how they might be mitigated.
• Effective verbal and written communication skills.
• Ability to correlate data to be able to draw insights or conclusions.

How to Apply

Apply by clicking APPLY NOW.

The Department for International Trade embraces and values diversity in all forms. We welcome and pride ourselves on the positive impact diversity has on the work we do, and we promote equality of opportunity throughout the organisation. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria. Click through to apply and find out more.

Technical Skills

We'll assess you against these technical skills during the selection process:

• Threat Understanding
• Data Competency
• Intrusion Detection and Analysis
• Incident Management, Investigation and Response
• Security Operations

Further Information

Find out about our benefits, application process and practical details like our office locations on the things you need to know page. Remember to check out our blog, Digital Trade.

Closing Date for Apps: 19/09/2022 at 12pm