Salary: Base salary: £38,550pa to c. £45,350pa depending on skills and experience. In addition, we offer a flexible benefits fund of 15% which is paid on top of the base salary and is fully pensionable, as well as a range of competitive benefits - check them out in the Benefits section on our website.
HS2 Ltd endeavours to ensure everyone working for us and with us feels included, thrives, and achieves their full potential. This means we are positive and inclusive about making adjustments, providing flexible working, encouraging our staff networks to flourish, and providing personal and professional development opportunities.
As a Senior IT Security Officer at HS2, you will develop, implement, and maintain robust security controls to mature/improve our security capabilities within the IT Security, Compliance, and Identity function. This role ensures the protection of our assets, systems, and data from internal and external threats, whilst driving continuous improvement in security controls.
About the role:
* Support in the management of the Security Operations, establishing and delivering methods and tools to provide value and reduce risk across proactive monitoring, incident response, threat management, and vulnerability management.
* Maintain operational security processes and ensure that all requests for support are dealt with, investigating security breaches where necessary.
* Support monitoring of the external security environment, gathering information on emerging threats to HS2 and presenting them to leaders where required.
* Plan vulnerability assessment and penetration testing activities within HS2 IT, providing expert advice where necessary in the review of vulnerability assessment tools and techniques.
* Contribute to risk management initiatives by providing expert technical advice in risk assessments, implementation of risk mitigations, and ensuring compliance with security policies and standards.
* Manage improvement activity within the external Security Operations Centre, and act as an escalation for complex or sensitive situations.
* Manage the design, delivery, maintenance, and continuous improvement of HS2 IT Security Ops capabilities in line with business needs.
* Promote the Security, Compliance & Identity function to develop and enhance the team profile to develop enduring relationships with stakeholders and teams.
* Develop and maintain security incident playbooks and guidance.
* Actively promote and embed Equality, Diversity, and Inclusion (EDI) in all your work, and support and comply with all organizational initiatives, policies, and procedures on EDI.
About You:
Skills:
* Security Operations: Providing expert guidance on live security incidents and helping conduct robust investigations in order to identify corrective actions and see them through to completion.
* Threat Intelligence: Provide guidance on proactive threat identification, analysis, and mitigation. Skilled in actionable intelligence, industry sources, and general awareness of the threat landscape.
* Vulnerability Assessment: Identifying and classifying security vulnerabilities in networks, systems, and applications and mitigating or eliminating their impact.
* Risk Management: Ability to identify IT security risks and the delivery of audit remediation activities.
* Emerging Technology Monitoring: Ability to gather and assess information on new and emerging technologies, products, services, methods, and techniques.
Knowledge:
* Knowledge of IT Service Frameworks, methodologies, and best practices such as ITIL v4 and Agile.
* Knowledge of day-to-day activities and best practices within a SOC.
* Knowledge of technical security such as firewalls, network security groups, and access controls.
Types of Experience:
* Experience enhancing security posture, and evolving capabilities via continual service improvement.
* Experience of working on live cyber incidents and the remediation actions.
* Experience of partnering with supplier teams for managed services delivery of improvements.
* Experience across the full IT security spectrum (software, servers, infrastructure, and networks).
* Experience implementing secure systems.
* Experience working with system architectures, displaying a strong understanding of the impact of vulnerabilities on varied systems.
The post-holder is expected to behave at all times in a manner consistent with the HS2 values of Safety, Leadership, Integrity, and Respect.
It is expected that you will actively promote and embed Equality, Diversity, and Inclusion (EDI) in all your work and support and comply with all organizational initiatives, policies, and procedures on EDI.
As HS2 Ltd do not hold a sponsorship license from the Home Office, we are not able to provide sponsorship to any applicant. Applicants must already have the Right to Work in the UK at the time of application and our process involves a Right to Work validation prior to the interview stage. Note, there are certain types of time-bound visas that we cannot accept.
Any offers made to applicants will be subject to satisfactory completion of pre-employment checks which include Nationality & Immigration Status, employment references, DBS, Financial and Education checks.
We ask for a variety of detail in your online application; however, we perform the first assessment of suitability for a role based solely on the information in your CV. In a further development of our efforts to create a more diverse workforce, your CV will be anonymized and personal information will be removed during the first stage of the application review. This removes bias from the process and makes it even more important that you attach an updated word version of your CV for each new application ensuring you include evidence directly related to the criteria in the job advert.
Any applications received after the closing date will not be considered.
About Us
High Speed 2 (HS2 Ltd) will be the UK’s new high-speed rail network. As well as improving capacity, the new scheme will shorten journey times between a number of Britain’s major population centres, boost the economy, and create thousands of jobs.
HS2 Ltd will create a skills legacy and develop a diverse range of talent. We aim to be a leader in EDI practice by creating a safe & inclusive working environment for all our staff - living our values of Safety, Respect, Integrity, and Leadership.
HS2 Ltd is also a safety-critical organization. Employees are required to ensure reasonable care of their own and others’ health and safety by taking personal responsibility for working to our ‘Safe at Heart’ programme principles and following safe working procedures at all times.
HS2 Ltd endeavours to ensure everyone working for us and with us feels included, thrives, and achieves their full potential.
Job Info
* Job Identification: 250065
* Job Category: IT & Systems
* Posting Date: 01/28/2025, 09:41 AM
* Apply Before: 02/05/2025, 11:59 PM
* Job Schedule: Full time
* Locations: 2 Snowhill, Birmingham, B4 6GA, GB
* Permanent or Fixed Term Contract: Permanent
#J-18808-Ljbffr