Cyber Security Analyst
Remote for foreseeable.
You must either have active SC clearance
The Cyber Security Lead Analyst role forms part of the ONS Operational Security team within the Security and Information Management Division at the Office for National Statistics (ONS). The role reports to the Cyber Security Lead Analyst.
The primary focus of the role is to support the core security operations capabilities; service management; protective monitoring; and security education and awareness. The role interacts with all areas of ONS to support and deliver these capabilities.
Key outcomes from the role are seamless security operations integrated into ONS business operations, monitoring security events and responding to security incidents
The focus, outcomes and responsibilities are aligned to the Government Security Profession Framework - Monitoring role at associate level.
- Support implementation of the monitoring roadmap to enhance monitoring in line with requirements, policies and standards to govern all activities and outputs
- Monitor, triage and investigate security alerts on protective monitoring platforms to identify security incidents and perform analysis of security event data to support the response, reporting or escalating where appropriate
- Design, develop and support automated monitoring processes, using a variety of the latest SIEM (Security Information and Event Management) and network analysis tools, techniques and procedures to:
- detect malicious activity
- ensure continuous improvement through dashboard monitoring or retrospective assessment
- Reports high and critical security incidents to the Cyber Security Lead Analyst
- Builds successful working relationships with key stakeholders to improve the security of ONS.
- Practitioner knowledge of application, infrastructure and networking security controls and systems covering physical, procedural and technical (ICT) areas, particularly in relation to data management.
- Experience of assisting with security advice and technical security solutions.
- Experience of using a variety of sources of information to identify, analyse and report on incidents and events.
- Ability to work as part of a team in a multi-discipline environment.
- Working towards obtaining, or have obtained, relevant professional membership e.g. practitioner level within the CESG Certified Professional scheme (CCP).
- Working towards obtaining professional development qualifications within specialist Security discipline e.g. Certified Ethical Hacker, ISO 27001 Security Auditor etc.
- Experience working in a UK Government Department