Cyber Security Practitioner
Experis are currently hiring a Cyber Security Practitioner for our government client. We are looking for an individual with information security and technical hands-on experience, to manage several day to day cyber security tasks in a government department, and as a member of their Cyber Security Team in the DDAT.
Technical experience in implementing and administering cyber security controls in government is essential for this role.
The post holder will be responsible for the following:
- Assist with conducting internal audits against ICT ISO27001 and other cyber security controls deployed across the computing environment.
- Assist with the conducting of routine risk assessments of security controls.
- Review the daily logs including alerts across the businesses information security monitoring solution (LogRhythm)
- Administer the PAM solution (CyberArk) for IT staff generating reports as directed.
- Assist with reviewing the security design and architecture of any new IT solutions being introduced within the ICT computing landscape, with the aim of identifying risks and compliance with HMG requirements.
- Experience administering Windows back-office environments including Active Directory services,
- conducting vulnerability scanning and management activities
- Conduct basic network security investigations
Essential Criteria:
Applicants must be able to demonstrate the following skills and competences:
- Experience of administering security controls (windows servers and other security appliances) on a medium (2,000 nodes) network
- Conducting Cyber Security Audits of technology, and processes
- Experience of conducting risks assessments utilising risk criteria (scales)
- Experience of conducting investigations of cyber security incidents, using SOC tools primarily CyberArk and Log Rhythm appliances.
- Experience implementing with NCSC Active Cyber Defence (ACD)
- Experience implementing NCSC 10 Steps to Cyber Security
- Working knowledge of and implementation of ISO27001 controls
