Key experience:
- Proven track record of understanding of vulnerability management, including use of Microsoft Threat and Vulnerability Management within Defender Advanced Threat Protection.
- Evidence of managing , collating and reporting on security patch monthly
- Familiarity with cloud security, including NCSC and how this applies in secure public sector/defence
Key duties:
This is a business-focussed, customer facin...
Key experience:
- Proven track record of understanding of vulnerability management, including use of Microsoft Threat and Vulnerability Management within Defender Advanced Threat Protection.
- Evidence of managing , collating and reporting on security patch monthly
- Familiarity with cloud security, including NCSC and how this applies in secure public sector/defence
Key duties:
This is a business-focussed, customer facing, technical and business/managerial role, responsible for:
* Ensure the client Security Policy is applied across the solution
* Ensure reporting and escalation of security incidents and breach is in accordance with JSP 440
* Participate in security incident investigations, events and issues in accordance with Forensic standards
* Liaison with the client Security Controller on any client related security incidents or breaches
* Achieves system security operational objectives by contributing information and recommendations to strategic plans and reviews.
* Preparing and completing action plans; resolving problems; completing audits; identifying threats and vulnerabilities
* Provision of Operational Security advice and guidance to the ITSM function, reviewing and impacting all change requests which have a security impact
* Protects computer assets by developing security strategies; directing system control development and access management, monitoring, control, and evaluation.
* Identifying and advice on critical security issues; recommending risk-reduction solutions.
* Develops security awareness by directing development of orientation and training programs;
* Maintain good working relationships with Authority Security Stakeholders
* Provision of monthly security reporting and auditing
* Manage requests for Audit information from the Authority in accordance with contract.
* Implement and manage processes, procedures and working instructions for all security activities
* The appliance of contractual security compliance in all environments.
* Carrying out regular systematic security review to identify suspicious activities.
* Liaise with the security architecture team with the aim of continuously improving services.
* Carrying out and reporting on trend analysis to identify existing and potential security issues.
* Maintain Security operations records.
* Represent the client at customer security meetings when required.
