Red Snapper Recruitment are currently recruiting on behalf of our policing client based in West Mercia for a Security Operations Analyst
Offering a permanent position, paying £40,005 per annum, office-based role in Hindlip with 2 days of remote working.
The Security Operations Threat Analyst will, assist in the control and monitoring of the Digital Services security services and underlying technologies.
They will proactively hunt for threats within our environments. Ensure the monitoring and analysis of incidents to protect People, Technology, Data and Process, addressing all security incidents and ensuring timely escalation in line with local and nationally set policing security standards.
Engage in Cyber defence capabilities to identify potential threats delivering strategic reports and strategies to minimise the impact of the threat. Provide monitoring of vulnerably management solution and other security related tooling.
Main duties and responsibilities
- To provide technical security operational advice and associated assurance to all Digital Services-based projects and other technical Digital Services activities regarding security controls and monitoring.
- To be a key team member in operational technical security on behalf of Digital Services, reporting into the Security Operations Manager (SOM).
- To assist in the development of processes to strengthen the current Security Operations Framework, follow policies and procedures to address emerging and changing threats.
- To represent Digital Services internally and externally, on matters of ICT operational security, including linking with vendors and suppliers.
- To provide monitoring and reporting of devices and procedures to achieve operational security effectiveness.
- Security Incident Management: Detect, investigate, and respond to security incidents. Ensure the appropriate escalation procedures are followed when necessary and coordinate incident resolution efforts effectively.
- Creating security incident tickets within the ITSM tool. Managing security related incidents through to completion.
- Participate in and constructively contribute to internal security forums, ensuring that Digital Services security actions are in line with organisational priority and need.
- Ensure that technical security measures in place for our ICT systems are aligned to nationally set policing security standards and keeping up to date with changes driven by the National Police Technology Council, NCSC, PDS and other relevant bodies.
- Provide technical input for accreditation required as part of access to secure policing and/or government environments.
- To support the SOM and other Digital Services senior managers on operational ICT continuity and recovery testing and associated activities.
- To provide technical assistance for independent technical security health checks (penetration testing), taking responsibility for ensuring the timely implementation of agreed remedial actions.
- Security Incident Remediation: Coordinate with IT and infrastructure teams to implement necessary remediation actions following security incidents, including applying patches, updating configurations, or deploying new security measures.
- Undertake technical investigation of cyber-security or professional standards incidents impacting West Mercia.
- Provide impact assessments of new legislation, threats, ICT suppliers, and solutions, and to initiate new or changed ICT security controls, protocols, or procedures, in conjunction with the Security Operations Team.
- To function as a resource for the Security Operations team to take on other security or ICT related responsibilities that would assist in prevention and protection from operational threats.
- Delegate for the Senior Security Operations Analyst as required.
- To undertake other duties commensurate with the nature, level of responsibility and grading of this post.
Person Specification
- To be educated to diploma level (Level 4) in an ICT related discipline or equivalent experience.
- Working towards or qualified in one or more recognised Security Qualifications such as CompTIA Security+ and/or (ISC)2 SSCP (Systems Security Certified Practitioner) or equivalent academic or professional security qualification.
- Knowledge of current Information Technology Standards and Techniques (including ISO 27001 series, HMG’s Cloud Security Principles and Cyber Essentials)
- Knowledge and understanding of the technical security issues and trends that impact upon information security.
- A good understanding of information security concepts and practices concerned with maintaining the confidentiality and integrity and availability of information.
- Knowledge of threat and vulnerability detection technologies including but not limited to, Tenable SC, Tenable Nessus, Microsoft Sentinel, Microsoft Defender, and others.
- Experience working with intrusion detection and/or prevention software.
- Experience working with SEIM and EDR tooling.
- Experience being the involved in technical security and providing associated expertise to projects, activities, and colleagues.
- Experience in reporting and managing IT incidents.
- Experience using vulnerability management solutions such as but not limited to Tenable SC/Nessus.
- Experience in coordinating penetration and other security testing and ensuring completion of any agreed remedial action.
- Experience with support and provision for on premise and Cloud-based solutions.
- Experience managing sensitive enquiries confidentially.
- Experience consulting with wider IT teams and external entities.
- Knowledge of disaster recovery and continuity exercises and the relevance of these within the modern IT landscape.
- Knowledge of implementing and applying national policing technical standards and controls.
If this role is not for you but you do know somebody who would be interested please refer them. We have a referral bonus scheme and will pay £75, in retail vouchers of your choice, for referrals who are not already known to us.
Due to the high volume of applications received, if you do not hear from us within 7 working days, I am afraid your application has been unsuccessful.
RSR is a public safety & enterprise security recruitment specialist.
We assist public safety employers find the right talent.
We assist all employers when they want to source public safety and enterprise security skills and experience.
Red Snapper Recruitment is a member of the Red Snapper Group.
The Red Snapper Group acts as an employment agency (permanent) and as an employment business (temporary) – a free and confidential service to candidates.
The Red Snapper Recruitment Group is an equal opportunities employer.
Apply for this job