Cyber Incident & Threat Team Lead Professional

British Telecom ,
Skelmersdale, Lancashire

Overview

Job Description

Our mission is to break down the barriers of today to release the potential of tomorrow. Join us today and release yours. Why this role matters The National Management Centre will provide visibility and control of information risks for Policing. It will support the 24x7x365 nature of the police operations, providing a threat detection and response capability for digital services before, during and after cyber attacks, enabling stakeholders to understand and proactively manage risk across the technology estate at both the national and force level. * Identification of critical services within forces where loss would negatively impact police operations. * Awareness of the cyber risks to critical services by continually assessing the threat landscape and informing stakeholders. * Detecting when, where and how attacks take place. * Reporting cyber risks to service, executive and operational stakeholders for mitigation decisions. * Analysing attacks and providing forensic of malware and artefacts to identify solutions to mitigate cyber threats * Limiting the impact of known cyber risks by engaging forces in pre-incident planning and preparatory activities. * Constraining attack surfaces through proactive penetration testing, vulnerability management, and threat hunting. * Managing incident response, containing the attack and supporting restoration of normal operations. Please note, this role will be worked on a shift basis (2 days on, 2 night on, 4 days off). You will receive an additional monthly shift allowance on top of the base salary for working on shifts. What you'll be doing * As a leader of a Cyber Incident and Threat Response team you will coach and support the team in responding to immediate security threats that may impact our client network * Responsible for the next level of escalation for technical incident response. * You will be responsible for responding to both incident and intelligence alerts regarding the cyber risks facing policing * Responsible for working in a National Support Team. * The NMC team's goal is to detect, analyse, investigate and respond to cybersecurity incidents using a combination of cutting edge technology and a strong set of processes. * NST staff work across the organisation, typically with cyber threat teams and client liaison officers to ensure security issues are addressed quickly upon discovery. * The work will be done on a 24/7 shift basis. National Support Team Responsibilities: * Lead a team respoinsible for first line response on all reactive Cyber related activity regarding the UK national Police Forces. * Accountable for initial impact assessment of Information, events and Intelligence relating to forces, following playbooks and processes within a timely manner. * Once Impact assessment complete, responsible for engaging relevant stakeholders, e.g. NMC Manager, Incident Lead, Client Liaison Officer or Threat Intel Specialist. * Responsible for ensuring initial engagement direct with national police forces. * Must be in tune with situational awareness across national police forces. E.g Change, Problem, Incident, Network Architecture, Critical Asset lists. We'll also need to see these on your CV * Knowledge of various security methodologies and processes * Leadership and coaching skills * Incident Management skills * Strong working knowledge of offensive security including attack methods and techniques. * Knowledge of protocols, tools and methods to acquire and manage technical threat intelligence data. * Experience in managing and leading a team of people, providing coaching for continuous improvement * Business acumen: Knowledgeable in business strategy and the drivers of organisational performance, including the impact of recommendations you make. * Knowledge of the current Threat landscape * Communication: Excellent ability to translate complex issues to the relevant audience, both verbally and written. * A genuine enthusiasm and drive to work within Cyber Security Motivated and ambitious to work on your own initiative without needing direction. * Strong attention to detail. * Ability to multi-task, prioritise, and manage time effectively * Excellent interpersonal skills and professional demeanour. * Proficient in Microsoft Office Applications. * Completed Intelligence Analysis course (e.g. NIAT, RISC UK or similar), or willingness to work towards * Experience working in a fast paced operational environment * Experience leading a team of operational staff * Preferred Foundation or Higher Degree in computer science or related subject, or relevant practical and transferable experience * Preferably completed CompTIA Network and Security or willingness to work towards * Preferred experience in internal and external stakeholder management and engagement * The ability to gain and maintain SC and NPPV clearance is required for this role. Why choose us? We've always been an organisation with purpose; to use the power of communications to make a better world. You can t