Threat and Vulnerability Analyst

at  Department for Business and Trade Digital Data and Technology

ABOUT US

The Department for Business and Trade (DBT) is the department for economic growth. The Digital, Data and Technology (DDaT) directorate develops and operates tools and services to support businesses to invest, grow and export, creating jobs and opportunities across the country.

SKILLS AND EXPERIENCE

It is essential that you have:

• Experience working in an enterprise technology setting, preferably with experience working with or in Cyber Security.
• Understanding of Cyber threat landscape, threat actors’ techniques, tactics, and procedures.
• Understanding of Vulnerability management principles
• Understanding of Threat hunting in a cloud-based environment including interpreting device and application logs from various sources in a cloud environment, and monitoring for emerging threat patterns and vulnerabilities.
• Familiarity with industry frameworks and standards such as NCSC pen test guidance, OWASP, CVSS, NIST, ISO 27001 etc.
• Excellent written and verbal communication skills including the ability to relate technical information to a non-technical audience

It is desirable that you have:

• Experience working with Microsoft security tooling/AWS
• Knowledge of a scripting language

TECHNICAL SKILLS

• Penetration Testing
• Threat Understanding
• Threat intelligence and assessment
• Cyber Security Operations
• Legal and regulatory

MORE ABOUT US

This role can only be worked from within the UK, not overseas. If you are based in London, you will receive London weighting. DBT employees work in a hybrid pattern, spending 2-3 days a week (pro rata) in the office on average. Travel to your primary office location will not be paid for by DBT, but costs for travel to an office which is not your main location will be covered.
You can find out more about our office locations, how we calculate salaries, our diversity statement and reasonable adjustments, the Recruitment Principles, the Civil Service code and our complaints procedure on our website.
Find out more about life at DBT, our benefits and meet the team by watching our video or reading our blog!

ABOUT THE ROLE

You will be helping to protect DBT and the wider UK government from cyber threats in a fast paced and exciting role. Reporting and acting as the main support to the Senior Cyber Threat and Vulnerability Analyst and Principle Cyber Threat and Vulnerability Manager. The Threat and Vulnerability Analyst will work with other members of the SOC and technical teams to execute operational threat and vulnerability management activities and help shape the development of DBT’s TVM program and capabilities. A healthy curiosity will be essential, to actively go out and discover items of potential interest to the team

MAIN RESPONSIBILITIES

You will be:

• Supporting scoping and delivery activities of penetration tests, vulnerability assessments of IT assets, and other tests to assess the robustness of a system, product, or technology
• Structured Threat Hunting through proactively identifying and leveraging threat intelligence sources to inform threat and vulnerability mitigation measures.
• Conducting deep-dive analysis on potential threats and attacks against DBT and sharing actionable threat intelligence data with other SOC members and technical teams.
• Working with key stakeholders to create and drive prioritisation of tracked vulnerabilities to meet common organisational objectives such as policy compliance.
• Disseminate and apply DBT’s vulnerability ratings to externally rated vulnerabilities to help the department prioritize remediation.
• Continuously research and investigate new and emerging vulnerabilities including Zero Day events, and participate in external security communities, sharing findings across the security functions.
• Develop and maintain a good understanding of DBT’s Information Security Framework and industry best practice.