Reference Number - 79373
This Cyber Security Solutions Engineer will report to the Cyber Security Architecture Manager and will work within the Information Systems directorate based in our Ipswich office. You will be a permanent employee.
You will attract a salary of up to £66,200.00 - Depending on experience, skills and qualifications and a bonus of 7.5%. This role does not offer blended working and you will be required in the office 5 days per week.
Close Date: 06/12/2024
We also provide the following additional benefits
1. 25 Days Annual Leave plus bank holidays
2. Personal Pension Plan – Personal contribution rates of 4% or 5% (UK Power Networks will make a corresponding contribution of 8% or 10%)
3. Tenancy Loan Deposit scheme
4. Tax efficient benefits: cycle to work scheme
5. Season ticket loan
6. Occupational Health support
7. Switched On – scheme providing discount on hundreds of retailers products.
8. Discounted access to sports and social clubs
9. Employee Assistance Programme.
JOB PURPOSE:
You will evaluate our security solution technologies and toolsets and help design, implement, and maintain the security systems within the organisation and will ensure that UK Power Networks data, network, and systems are protected from cyber threats and will comply with the relevant standards and regulations. The Cyber Security Solutions Engineer will also provide technical guidance to other security team professionals and partners.
DIMENSIONS:
UK Power Networks is expanding its presence in Microsoft Azure and enhancing its on-prem OT Mission Critical Systems. It is necessary that a secure environment is developed for the hosting and management of our critical information assets. We ask that you have a blend of skillsets across cyber security including solution design, configuration, implementation, operation, governance, change management, communications, and the understanding of protecting data in employing the use of relevant encryption standards. The main measure of success is maintaining regulatory compliance and improving the technical and organisational resilience of UKPN concerning the ever-changing cyber threat landscape.
10. People – work collaboratively in a team of circa 8 permanent and temporary cyber security architecture resources.
11. Financial – no direct budget responsibility.
12. Suppliers – regular interaction with 3rd party service providers, specialist technical consultants and cyber security tooling vendors.
13. Communication - able to communicate technical cyber security concepts to all kinds of colleagues across multiple levels of seniority to facilitate and ensure common understanding of decisions taken across the business.
14. Stakeholders - establish and maintain collaborative working relationships with internal and external technology teams and third party providers, suppliers, and partners to improve outcomes and create agreement around a course of action.
PRINCIPAL ACCOUNTABILITIES:
15. Ensure highest standards of safety are applied across all responsibilities.
16. Implement the cyber security plans, technology roadmaps based on sound cyber security best practices to help implement UK Power Networks Cyber Security Strategy ensuring alignment to the company vision, values, and strategic goals.
17. Support the Cyber Security Architects, research new security technologies, toolsets, and solutions for both OT and Enterprise on-prem and cloud infrastructures.
18. Work as an important partner with third party vendors to design and implement proof of concept (PoC) cyber security solutions and evaluate against strict requirements and criteria following UK Power Networks policies and the cyber security technology roadmap.
19. Evaluate existing cyber security solutions within the enterprise to ensure that they are fit for purpose and that the solutions have been designed and implemented to gain maximum benefit and capability.
20. Support the Cyber Security Teams at a technical level to install cyber security product technologies and systems, such as firewalls, end point protection, encryption, VPN, SIEM, PAM, VM etc.
21. Support the Cyber Security Teams to drive effective root cause analysis of cyber security related incidents to ensure prompt action is taken to prevent incident reoccurrence and strengthen relevant cyber security controls.
22. Provide technical guidance and assurance to the wider information systems teams concerning the implementation of cyber security controls within the specified design principles.
23. Translate our requirements into technical solutions, and communicate with product teams on your solution design.
24. Establish and maintain relationships with important partners on matters of cyber security that maintain business support for cyber security and network architecture measures and improvements.
NATURE AND SCOPE:
The Information Systems Department works across UK Power Networks, supporting us in the achievement of our vision to become the best performing DNO. The team achieve this through the provision of technology solutions and the optimisation of current solutions to improve how we operate. Continuous improvement, customer service and seamless delivery is at the heart of this ethos and are therefore strongly underpinned by effective cyber security.
You will work with five disciplines within the Cyber Security Team, Enterprise Architecture, Technical Teams, IT Service Providers, Project, Innovation, and partners to implement and improve the security infrastructure, systems, and services.
Qualifications:
25. Work experience: Experience in cyber security, preferably in a security engineering or a security architecture role. Hands-on experience designing, implementing, and maintaining security solutions for multiple platforms, and using various security technologies and performing security testing and analysis.
26. Cyber Security Knowledge: An understanding of the principles and standards of cyber security, such as encryption, authentication, authorization, network security, application security, cloud security, and threat intelligence.
27. Security Solutions Design: Ability to design and implement security solutions that meet the requirements and goals. Analyse the security requirements, identify the security gaps, and propose the best security architectures to address them. Evaluate the costs, benefits, and trade-offs of different security solutions and make recommendations based on the UK Power Networks Policies, Standards and Security Patterns.
28. Security Tools and Technologies: Proficient in using multiple security technologies, such as firewalls, end point protection, intrusion detection and prevention systems, vulnerability scanners, encryption software, VPNs, and SIEMs. Be able to configure, test, deploy, and troubleshoot these tools and technologies and integrate them with other systems. Monitor and analyse the security logs and alerts generated by these tools and technologies and take appropriate actions.
29. Cyber Security Frameworks: Working knowledge of Cyber Essentials, ISO27001:2022, CSA Cloud Controls Matrix, NCSC CAF and GDPR, is important to ensure that data is being managed in a compliant manner.
30. Programming and scripting: Proficient programming and scripting skills to automate security tasks, develop custom security scripts and tools, and perform security testing and analysis. Familiar with some of the common programming and scripting languages used in cyber security, such as Python, PowerShell, Bash, Java, C#, and SQL.
31. Problem-solving: Able to resolve security issues, troubleshoot security incidents, and mitigate security risks. Apply logical reasoning, and creativity and innovation, to find the best security solutions and strategies. Anticipate and prevent potential security threats and vulnerabilities, and respond to them effectively.
32. Certifications: Relevant certifications in cyber security, such as CISSP, CISM, CEH, SSCP, or CCSP. Further technical certifications in Microsoft Azure, Networking, Firewall, SIEM, PAM or VM Products are beneficial.
33. Technical Capabilities: Technical competence in one or more of the following areas: Industrial Protocols (DNP3, ICCP, IEC-61850), IPSec VPN's, Networking, Network Security, RADIUS, MFA, Microsoft/Linux Operating Systems, Virtualization Platforms such as (VMware, Hyper-V, OpenShift), Cloud Security in Azure, PKI and Certificates.
Health & Safety Responsibilities
Managers and supervisors carry both legal and company responsibilities for ensuring the health and safety of their employees, those under their control and those who might be affected by the work undertaken, i.e. public, visitors and employees of other organisations. This includes briefing individuals working for them and ensuring there is the necessary understanding, competence and application of requirements to work safely and without harming the environment.
Employees will ensure they understand the health and safety risks involved in their work activities and their responsibility to apply the controls needed to manage those risks to acceptable levels. Similarly where work activities can have an adverse impact upon the environment, and where there are legal requirements, employees will understand those impacts and the controls they must ensure are applied.
If in doubt ask!
We are committed to equal employment opportunity regardless of race, colour, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender, gender identity or expression, or veteran status. We are proud to be an equal opportunity workplace.