Security Engineer
Permanent
Grade 4 - £33,366 - £40,476
Consultation grade - subject to formal evaluation under the Pay Equity Review
Working 36.5 hours per week
Job Overview
As a member of a small and dedicated team responsible for safeguarding the Council's Cybersecurity, your role entails working with senior colleagues to ensure that the Council's network and data remain secure. You will be involved in various aspects of the team's work, including writing security policies, managing technical matters such as vulnerability management and penetration testing, and creating presentations and reports for other IT departments and the wider council. Additionally, you may need to investigate potential risks to the council, or its users identified by the outsourced SOC and respond appropriately to protect the council and its data.
What we are about
The team has various obligations to ensure the security of the council's IT systems. This includes conducting regular vulnerability scans, coordinating with other departments to address any issues promptly, and providing assistance to new and ongoing projects to implement robust security measures at the outset, which may require arranging penetration tests for new web applications. Additionally, you will oversee the council's phishing testing and awareness program and report the outcomes to senior management.
What you will do
* Developing and maintaining the council's cybersecurity policies
* Acting as the primary point of contact for all security-related matters and providing information and assistance to other departments within the council whenever security issues arise
* Monitoring security tools and taking appropriate actions to resolve any issues that may arise
* Participating in the out-of-hours call rota to handle any actions raised by the SOC
* Reviewing policies and making necessary changes to adapt to the ever-changing security landscape
Essential Skills You Need (a combination of the following)
* Knowledge of security issues relating to hardware and software
* Experience of the Microsoft technology stack
* Knowledge and skills in the use of network and database security tools
* Understanding of ISO27001 and other information security best practice standards
* Storage area network (SAN) security
* Cloud security
* Patch management
* Application security services
* DevOps/SecOps practices and culture and associated methods
* Network security
* Infrastructure security
* Experience and knowledge of monitoring tools and the ability to configure and use the reporting and auditing facilities
* Practical experience in using Network/Internet audit/monitoring software tools
We will support you with
* An environment that values curiosity, autonomy and working in the open
* An engaged and supportive leadership with a clear vision
* Training and development opportunities to help you progress and be the best you can be
* An inclusive workplace committed to reflecting the public we serve
* A benefit package designed to promote a great work life balance
* Exposure to all digital and technology teams and services areas across the council
About us
This is an exciting time to be joining Birmingham City Council’s Digital and Technology Services Department. We are Europe’s largest local authority, and with unprecedented investment in people and digital, a solid strategy, empowering leadership and a newly redesigned service to get behind, we are building digital services centred on the needs of our citizens, business and communities that will deliver on Birmingham’s bold ambitions for the city of today and tomorrow.
We are a multidisciplinary team at the heart of transforming public services for the UK’s second largest city. We create, develop, deliver and operate an exceptionally diverse range of services that have a direct impact on improving the lives of 1.2m residents every day.
We are embracing and promoting a truly digital, human centred approach for the whole organisation, underpinned by collaboration, openness and innovation. We take advantage of unparalleled access to data, doing things at scale and using technology creatively to re-imagine the way services are delivered and build the digital council of the future.
Please upload your up-to-date CV via the attachments part of your application, this is required for shortlisting. Unfortunately, we cannot consider any applications without a CV attached.
For any informal enquiries please contact: John Owen john.owen@birmingham.gov.uk
Interviews for this post will take place virtually via video conferencing. Shortlisted candidates will be provided with further information.
Proof of Right to work in the UK will be required for all applicants in accordance withUK Home Office requirements, before any employment offer can be confirmed.
Non-UK applicants (excluding Ireland) would be required to hold a relevant Visa from the UK Visas and Immigration (UKVI).
We welcome applications from people with caring responsibilities and flexible working options will be considered.
#J-18808-Ljbffr