Job summary
The NCA has grown in size and complexity in recent years and it is vital that it maintains a security posture and capabilities to protect against existing, new and emerging threats.�
The Integrated Protective Security Command (IPS) is responsible for securing the Agency to protect the public. The IPS mission statement is:
"Delivering integrated protective security to build a resilient, high-trust Agency able to lead the UK�s fight to cut serious and organised crime."
IPS safeguards the NCA from the full range of security threats that target the Agency, our officers and our assets, to enable the organisation to achieve its operational objectives, both domestically and overseas, with flexibility, agility and integrity. Its officers provide specialist security services to the Agency 24 hours a day, 7 days a week, 365 days a year, to mitigate security risks.
Job description
Introduction
We are currently looking to recruit a Senior Security Operations Centre (SOC) Analyst within our integrated protective security command. The successful candidate will work from the Agency�s Birmingham office.�
The Cyber Security Team leads the strategic response to cyber risks, cyber security function, oversees audit, building internal and external alliances with diverse stakeholders to deliver the NCA�s strategic objectives.
What will the successful Candidate be doing?
If successful you will work within the newly created Security Operations Centre, supporting the Lead Analyst and SOC Manager to run all SOC services. Joining at this time offers the rare opportunity to help shape what the final SOC capability will look like.
Reporting to the Lead Analyst, the Senior Analyst is part of the shift based SOC Team that monitors and responds to any identified event from the security monitoring processes in place. You will be the Agency�s eyes and ears before, during and after a cyber incident. The Senior Analyst leads the shift team during the absences of the Lead Analyst, reporting into the SOC Manager.
The successful candidate will be provided with a personalised training programme to develop and secure further accreditations within the SOC profession.
**To be considered, you will need to successfully complete SC Enhanced clearance before commencing the role and achieve DV clearance within the first 12 months in post.**
Person specification
Key Responsibilities (responsibilities will include, but not be limited to):
1. Monitoring for events across multiple security technologies, including intruder detection systems (IDS), Intruder prevention systems (IPS), Firewalls, End Point Security Solutions and vulnerability management solutions.
2. Liaise with trusted partners to provide accurate threat identification. Recommend suitable mitigation measures and report the situation to the shift lead.
3. Assisting in content development and analytics. Taking threat intelligence and tuning the SOC services to best protect the Agency�s vulnerabilities.
4. Assisting in engineering tasks in support of the continuous availability of SOC services.
5. Complete SOC scheduled tasks and ensure reported events and incidents are appropriately progressed.
6. Assisting as with Security, Risk, Compliance and Service reporting.
7. Responding to incidents where a detailed understanding of the monitored estate is required and is beyond the capabilities of the SOC Analyst.
8. Work alongside colleagues from personnel and physical security to assess events and categorise them appropriately.
9. Assess events and bring them to the attention of the shift lead for escalation to the Cyber Defence Team.
10. Maintenance of SOC documentation, processes, and procedures.
11. Receiving and acting on calls, emails, alerts, etc. relating to security events and possible security incidents.
Other Responsibilities:
12. Provide expertise, guidance and advice in IT Security related matters, including maintaining up to date knowledge of network, application and communications security solutions, as well as emerging technologies.
13. Collaboration with other Security Teams (Cyber Defence, IA, Operational, Physical and Personnel) and adjacent commands to support the overall aim of lowing risk to data loss.
14. Support of senior management in the delivery of an effective and efficient departmental service, deputising where appropriate.
15. Provide support, guidance and expertise in relation to Incident Management. Giving direction on vulnerability identification and risk mitigation.
16. Develop and build internal and external partnerships working collaboratively to foster good relations, including working with other government departments to further the SOC capabilities.
Please Note �- The team operates a 24/7 shift pattern currently consisting of 8 hour shifts across earlies, lates and nights.
Qualifications
The following qualifications/skills are essential to the role and proof will be required at interview:
Recognised higher education in an IT related area with preference for those held within Cyber security relevant to this role.
And/or
� Certifications from a recognized body in Digital Security GIAC, ISC2, ISACA, BCS, CompTIA
Please ensure the dates of any accreditations you are relying on, are entered on to the CV.
Should you progress to the assessment stage of the process, you will be required to provide a copy of the original certificate.
Failure to provide evidence at interview may result in your application not progressing to the next stage.
Behaviours
We'll assess you against these behaviours during the selection process:
17. Changing and Improving
18. Communicating and Influencing
Technical skills
We'll assess you against these technical skills during the selection process:
19. Experience of using SIEM capabilities.
20. Experience of incident response.
21. Experience with using vulnerability scanning software.
22. Experience of Threat modelling, Impact analysis and report writing.
Benefits
Alongside your salary of �43,415, National Crime Agency contributes �12,577 towards you being a member of the Civil Service Defined Benefit Pension scheme.
All officers in the NCA are members of the UK Civil Service. You will be eligible for:
23. Civil Service pension scheme
24. 26 days annual leave rising to 31 on completion of 5 years continuous service
25. If qualifying criteria is met new joiners to the NCA from UK Police Forces or UKIC will have service with those employers taken into account for continuous service purposes for Annual Leave entitlement only, this will be up to a maximum of 31 days leave (including 1 privilege day).
26. Training and development opportunities
27. Special leave�
28. Flexible working and family friendly policies
29. Cycle to work scheme
30. Blue Light scheme�
For further details on benefits please visit