Cyber Security Advisor

This is an exceptional time to be joining the University of Southampton Information and Cyber Security team within the University’s IT department, iSolutions. The Security team is uniquely placed to advise, support, and defend the University against security threats.

About the Role

You will take a leading role in securing the Secure Data Research Environment, providing specialist expertise in information and cyber security to protect sensitive research data and ensure compliance with security standards. You will work closely with colleagues across the University to monitor and analyse security systems, respond to incidents, address vulnerabilities, and implement security measures.

You will also be responsible for supporting the University’s preparation for and maintenance of cyber security accreditations, including Cyber Essentials Plus and ISO/IEC 27001.

The role is currently remote with future flexible options.

The interviews are expected to be held in the week commencing the 14 th July.

What you’ll do

• Work with colleagues from the University to Lead efforts for the Secure Data Research Environments Cyber Security accreditations (e.g., Cyber Essentials/Plus, ISO/IEC 27001), coordinating audits, managing documentation, and implementing remedial actions.
• Provide support in maintaining security operations by managing and updating security policies and procedures, conducting vulnerability assessments, and implementing security patches and updates.
• Oversee remediation of risks from security scans and tests, ensuring alignment with risk appetite before production. Conduct risk assessments for on-premise and cloud-hosted solutions, identifying control gaps and residual risks using frameworks (e.g., CIS Top 18, NIST Cyber Security Framework, ISO 27001).
• Lead on efforts relating to the Secure Data Research Environments Cyber Security accreditations, including Cyber Essentials/Plus and ISO/IEC 27001.
• Provide expert guidance on policies, standards, industry regulations, and best practices. Offer consultation on Secure by Design principles and information assurance. Develop IA strategies, policies, and awareness programs.
• Identify, analyse, and evaluate information risks across various projects and systems. Communicate the causes, likelihood, and impacts of information risks to stakeholders.
• Maintain awareness of evolving cyber security and regulatory landscapes to inform risk management and governance.

What you’ll bring:

• Experience of information and cyber security within a large organisation.
• Knowledge of current information and cyber security issues and opportunities, including knowledge of security frameworks.
• Experience of with security tooling, particularly within a mixed Windows, Linux, Mac and Cloud environment.
• The ability to present your ideas and your specialist area, to a wide and potentially non-technical audience.
• The integrity required to work with both commercially sensitive and personally identifiable information.

The University of Southampton is a research-driven institution, home to some of the world’s leading minds, expanding our knowledge and passing it on to future generations. iSolutions is the University’s IT support service whose 230+ staff support the delivery of the University’s research and education activities. We would love you to join us and help change the world for the better.

The University of Southampton promotes a healthy work life balance with generous holiday allowance (30+ days), defined benefit pension, flexi-time and flexible working, generous parental leave and childcare provision. For more information on our benefits, please visit our human resources pages.

We are committed to equality, diversity and inclusion and welcome applicants who support our mission of inclusivity.

Apply by 11.59 pm GMT on the closing date. For assistance contact Recruitment on +44(0)2380 592750 or recruitment@soton.ac.uk quoting the job number.