Cyber Threat and Response Specialist

Department: Business Services - IT

Employment Type: Permanent

Location: Bristol

Purpose of the role:

• To evolve and mature the firm’s capability for detecting and responding to cyber incidents.
• To act as an escalation point for threat hunting activity.
• To assist with security incidents and investigations coming from Azure/Defender, IT Infrastructure monitoring systems & 3rd party SOC.
• Provide co-ordination within internal security support staff and external third party managed SOC.
• To monitor, maintain and advance the effective use of technical cyber security controls that are actively in use by DACB
• To assist in the research, selection and deployment of new technical security controls for use by DACB.

• Keep up to date with the latest emerging threats, vulnerabilities and attacker techniques.
• Help to identify, evaluate and monitor ongoing threats and risks that could affect business operations.
• Investigate and respond to alerts from Azure/Defender, IT Infrastructure monitoring systems & 3rd party SOC.
• Assist with 2nd ,3rd level SOC and MI cyber incident response process.
• Work closely with IT Operations to ensure critical business assets are adequately protected from cyber-related threats through the use of appropriate technical controls.
• Document and raise non-conformities with the Head of Cyber Security.
• Produce regular reporting to demonstrate the effectiveness of technical security controls and identify gaps and recommendations where needed.
• Provide a point of technical authority and governance for the effective use of technical security controls across the firm.
• Develop an understanding of DACB’s regulatory and client/contractual obligations for cyber security, and the requirements of standards such as ISO27001, GDPR and Cyber Essentials Plus.
• Manage 3rd party security (supplier) relationships and assist in the development of existing relationships and the competitive selection of new suppliers.
• Help to develop strategies and roadmaps for cyber security technology, in step with the IT Strategy and other business planning activity.

• Knowledge of basic concepts of Cyber Security, Information Security and Risk Management.
• Experience working in a similar Cyber Security/IT Security Analyst role is advantageous but not essential.
• Degree in a Cyber Security or related subject is advantageous but not essential.

Personal Competencies

• To have a genuine passion for Cyber Security and its technology, and a drive to continually develop professional and personal knowledge in this fast-moving area.
• Be self-motivated and able to work to a high standard under own initiative.
• Able to pay and maintain close attention to detail.
• Have sound analytical skills; able to think laterally and challenge existing concepts.
• Have excellent commercial awareness with a good understanding of business drivers and priorities.
• Be a good and confident communicator at all levels; an ability to assert and defend a point of view can be balanced with pragmatism at times.
• Have the ability to understand technical complexities and issues, and be able to explain and translate these to a less technical audience.