Senior Cyber Security Engineer

at  Department for Business and Trade

JOB SUMMARY

If you would like to find out more about the role, the Cyber team and what it’s like to work at DBT, we are holding a Hiring Manager Q&A session for this role where you can virtually ‘meet the team’ on Wednesday 24th July at 12:30pm. Please click here to book your spot.

ABOUT US

The Department for Business and Trade (DBT) is the department for economic growth. The Digital, Data and Technology (DDaT) directorate develops and operates tools and services to support businesses to invest, grow and export, creating jobs and opportunities across the country.

JOB DESCRIPTION

You will be:

• Supporting the Principal Cyber Security Engineer and SOC Manager in the implementation of the monitoring and improvement roadmap
• Identifying areas of improvement within the SOC and building a plan to implement the improvement
• Testing and Implementing changes within multiple Cloud Environments
• Producing software documentation to accurately represent the system that has been implemented and its current state for other engineers to use and rely on
• Updating and maintaining existing tools and infrastructure
• Facilitating the ingestion and enriching new logging services into the SIEM (Security Incident and Event Management) Tool for the analysts
• Maintaining the pipelines and infrastructure that is facilitating the ingestion of logs and processing logs
• Being able to assist with active investigations that and provide expert knowledge to assist analysts
• Creating Playbooks for creating new capabilities and documentation for maintaining new capabilities

SKILLS AND EXPERIENCE

It is essential that you have:

• In depth experience in configuring AWS and Azure policies and infrastructure, underlying logging systems and mechanisms
• Demonstratable experience configuring Security related tools and implementing security policies
• Demonstratable experience working with a SIEM tool (Microsoft Sentinel, Splunk, etc)
• Understanding of threats to an organisation and how they can be mitigated using tools
• Good communication and stakeholder management skills, acting as a bridge between the technical and the non-technical

It is desirable that you have:

• Knowledge of AWS with configuring Security elements of AWS (Guard Duty, CloudTrail, CloudWatch)
• Knowledge of using Python and/or the Django framework
• Good working knowledge of Query Languages (SQL, KQL (Kusto), etc.)

Benefits

Alongside your salary of £43,177, Department for Business and Trade contributes £11,658 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides.

• Learning and development tailored to your role
• An environment with flexible working options
• A culture encouraging inclusion and diversity
• A Civil Service pension with an average employer contribution of 27%

Things you need to know

MORE ABOUT US

This role can only be worked from within the UK, not overseas. If you are based in London, you will receive London weighting. DBT employees work in a hybrid pattern, spending 2-3 days a week (pro rata) in the office on average. Travel to your primary office location will not be paid for by DBT, but costs for travel to an office which is not your main location will be covered.
You can find out more about our office locations, how we calculate salaries, our diversity statement and reasonable adjustments, the Recruitment Principles, the Civil Service code and our complaints procedure on our website.
Find out more about life at DBT, our benefits and meet the team by watching our video or reading our blog!
Feedback will only be provided if you attend an interview or assessment.

NATIONALITY REQUIREMENTS

This job is broadly open to the following groups:

• UK nationals
• nationals of the Republic of Ireland
• nationals of Commonwealth countries who have the right to work in the UK
• nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) (opens in a new window)
• nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS)
• individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020
• Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service

Further information on nationality requirements (opens in a new window)

TYPE OF ROLE

Administration / Corporate Support
Digital
Information Technology
Other

ABOUT THE ROLE

This role sites within the Department for Business and Trade’s SOC (Security Operations Centre), reporting to the Principal Cyber Engineer. The SOC is responsible for identification and mitigation of threats, both internal and external to the security of DBT. This role is to support these actions by creating new capabilities, supporting existing capabilities and provide expertise to analysts when required.
Focussing on supporting the delivery of the monitoring and development aspects of DBT’s TOM (Target Operating Model), this role will involve development of security tools, providing cyber security advice to the development community in DBT to ensure best practice is being followed.
This role will be suitable for an individual with a DevSecOps (Development and Security Operations) background or someone who has skills in both development and Cyber Security.