Central Bedfordshire Council are seeking an experienced Infrastructure Cyber Security Specialist, reporting to the IT Security Manager, to join our IT Security Team based in Bedfordshire on a full-time, hybrid working basis.
This is a crucial role for the CBC, ensuring that IT Security is front and centre within the CBC.
The Cyber Security Specialist will work with various tooling and services from Microsoft and other vendors. They will be responsible for carrying out operational tasks, conducting security investigations, responding to security incidents, and continuously improving CBC's security posture.
About Us
Central Bedfordshire is an ambitious authority determined to be an exemplary one. Our strategic location and high quality of life make us one of the fastest-growing areas in the country.
As a council, we face the same challenges every business does - investing in the right places and delivering great results. Except for us, it's all about our 289,000 residents. We're focused on helping to improve their lives and making Central Bedfordshire a great place to live and work.
We have set values and principles to represent the way we work and how we operate as an organisation. This is a great time to join us on our journey.
Key Responsibilities:
- Think analytically and solve complex problems as part of everyday security operations work
- Deliver and document security processes and procedures
- Develop and help expand on all security offerings across the business
- Build relationships and work with other teams across the Council
- Work alongside and support the Governance team and Change Manager
- Evaluate the security and suitability of new software and systems
- Consult on and assist with the implementation of new solutions alongside our Infrastructure and Project Teams
- Assist and advise on internal audit and review processes
About You:
- You should have experience in Cyber Security, Governance, Risk, and Compliance and a good knowledge of the rules and regulations that apply to the public sector (preferably local government)
- Good interpersonal skills, including the ability to mentor and motivate others, are essential, as is the ability to explain and discuss highly technical concepts, risks, and solutions with a variety of stakeholders
- Ideally, you have or are working towards professional qualifications such as CompTIA Security+, Microsoft SC-200 or ISC2 CISSP
- Fulfill The Code of Practice of the English language requirements for public sector workers
Desirable Experience:
- The IT security requirements are associated with local government, PSN, DWP MoU, HSCN, NCSC CAF, etc
- Using a SIEM platform, preferably Level Blue (formally known as Alien Vault)
- Managing and operating Endpoint Detection & Response (EDR) platforms, preferably Microsoft Defender for Endpoint (MDE)
- Vulnerability management processes and tooling, preferably Nessus
- Carrying out risk assessments
- Scoping and managing penetrating tests
- Public cloud solutions, preferably Microsoft Azure
- The full Microsoft O365 stack, including management of the Security and Compliance features associated with E5 licencing
- Assessing Azure Enterprise Application requests
Benefits:
- A hybrid working arrangement gives you the option to work from home and access any of our office locations
- Annual leave allowance of 25 days+ statutory holidays rising to 32 days with length of service
- Generous family-friendly policies and practices
- Local Government Pension Scheme (LGPS) - This is a valuable part of our rewards package for employees and includes life insurance
- Staff electric vehicle (EV) leasing scheme at competitive rates (permanent staff only)
- A comprehensive IT package
- Access to discounts on top UK retailers and local retailers
- A £250 one-off hybrid worker payment to help you adapt your home for safe and suitable working conditions
- The ability to work abroad for up to a month a year
Sounds interesting? Click the APPLY button to send your CV for immediate consideration.
Candidates with previous experience or job titles, including; Information Security Analyst, Cybersecurity Analyst, IT Security Specialist, Network Security Engineer, Security Operations Center (SOC) Analyst, Cybersecurity Engineer, and Cyber Security Consultant may also be considered for this role.