Senior Security Analyst (CSIRT) - Hybrid
02 January 2025
Jisc Grade: TCY3 (internal use only)
Hours: 35 hours per week
Contract: Permanent
Reports into: Lead Cyber Security Incident Investigator
Location: Hybrid - A blend of working from home and your nominated hub office, we have hubs in London, Bristol, Manchester and Oxford. Specific patterns for working in the office are not mandated, and the frequency of time worked in the office is agreed with your manager.
About Jisc:
Jisc is the UK digital, data and technology agency focused on tertiary education, research, and innovation. We are a not-for-profit organisation with a big ambition to improve lives through education and research by providing hardware, software, and networking solutions.
About the team:
Jisc’s Security Operations team safeguards both the Janet Network and Internal security whilst also sharing intelligence and advising our members to keep their own networks safe.
About the role:
A core function of CSIRT is responding to security incidents, working with our members to investigate the issue, and helping them recover as quickly as possible. Working within the CSIRT team you will provide an escalation point for Security Analysts, support the Security Lead with Incident Management, and help enhance the internal security of Jisc.
Day to day activities will include:
1. Operation of Jisc’s Security Operations Centre Service, including alert and support ticket triage.
2. Participation in incident handling duties as part of the Janet network CSIRT function.
3. Threat detection and analysis using a range of Jisc-developed and commercial network and security-related tools.
Key Skills and Experience:
* Operational knowledge and experience of incident response.
* Sound understanding of IT environments and common infrastructure including: Microsoft Stack (Azure, Active Directory), Virtualisation Platforms, Backup Systems & Cloud Platforms.
* Working knowledge of a variety of operating systems, and a good systems administration level of experience.
* Previous experience working in a role as a point of escalation.
* Ability to communicate effectively with a range of security professionals and to simplify complex technical issues.
* Active Directory hardening knowledge.
* Working knowledge of TCP/IP and other related Internet protocols.
You will need to be able to participate in an agreed extended working period, currently 08:00-18:00 up to a total of 35 hours per week and be available on call.
Why work for us?
At Jisc, everyone plays a key role and gets the chance to feel part of it. We want to create a culture of lifelong learning and provide a rewarding job with opportunities to develop.
Equity, diversity and inclusion:
At Jisc, we don’t look for ‘sameness’, but to truly include people who can add unique perspectives and experiences to our culture.
Application process:
We want you to showcase your talent throughout the recruitment process. Please let us know how we can best support you to do that.
No agencies please.
You will need to create an account and sign in to apply for a role.
#J-18808-Ljbffr