Lead Cyber Security Incident Investigator - CSIRT
30 October 2024
Jisc grade: TCY3 (internal use only)
Hours: 35 hours per week
Contract: Permanent
Location: Hybrid - A blend of working from home and your nominated hub office, with hubs in London, Bristol, Manchester, and Oxford. Specific patterns for working in the office are agreed with your manager.
About Jisc: Jisc is the UK digital, data, and technology agency focused on tertiary education, research, and innovation. We are a not-for-profit organisation aiming to improve lives through education and research by providing hardware, software, and networking solutions.
About the team: Jisc’s CSIRT team provides first line of defence against cyber threats. Our world-class incident response service works to create a secure environment for organisations by monitoring and resolving security incidents across our member and customer networks.
About the role: As the Cyber Security Incident Response Team (CSIRT) Lead, you will coordinate, oversee, and execute the incident response process to meet the expectations of our members. You will lead a team of Security Operations Analysts and incident responders, providing guidance, mentorship, and support.
Other responsibilities will include:
* Coordinate and support the continuous monitoring of SOC customer IT infrastructure, networks, and systems for signs of suspicious or malicious activity.
* Lead, own, and support the team's response to security incidents, ensuring they are handled promptly and effectively.
* Manage and coordinate major cyber incidents to a successful conclusion.
* Participate in the Incident Response 24/7 on-call rota.
Key Skills and Experience:
* Prior experience working in a cyber security role with demonstrable experience of incident response activities.
* Excellent understanding of cybersecurity principles, concepts, and best practices.
* Familiarity with security tools and systems such as SIEMs, EDRs, SOAR, IDS, WAF, DLP, and DDoS mitigation systems.
* Excellent understanding of IT environments including Microsoft Stack (Azure, Active Directory), Virtualisation Platforms, Backup Systems & Cloud Platforms.
* Excellent customer service and communication skills with the ability to remain calm under pressure.
Why work for us? At Jisc, everyone plays a key role and gets the chance to feel part of it. We want to create a culture of lifelong learning and provide a rewarding job with opportunities to develop.
Equity, diversity and inclusion: At Jisc, we embrace unique perspectives and experiences in our culture. We believe that our commitment to equity, diversity, and inclusion is fundamental to our success.
Application process: We want you to showcase your talent throughout the recruitment process. Please let us know how we can support you. We aim to provide an update on your application within 4 weeks of receiving it.
#J-18808-Ljbffr