Cyber Incident Professional

BT ,
Skelmersdale, Lancashire

Overview

Job Description

Our mission is to break down the barriers of today to release the potential of tomorrow. Join us today and release yours. **Why this role matters** The National Management Centre will provide visibility and control of information risks for Policing. It will support the 24x7x365 nature of the police operations, providing a threat detection and response capability for digital services before, during and after cyber attacks, enabling stakeholders to understand and proactively manage risk across the technology estate at both the national and force level. + Identification of critical services within forces where loss would negatively impact police operations. + Awareness of the cyber risks to critical services by continually assessing the threat landscape and informing stakeholders. + Detecting when, where and how attacks take place. + Reporting cyber risks to service, executive and operational stakeholders for mitigation decisions. + Analysing attacks and providing forensic of malware and artefacts to identify solutions to mitigate cyber threats + Limiting the impact of known cyber risks by engaging forces in pre-incident planning and preparatory activities. + Constraining attack surfaces through proactive penetration testing, vulnerability management, and threat hunting. + Managing incident response, containing the attack and supporting restoration of normal operations. What you'll be doing + Have in-depth knowledge, and will be considered a subject matter expert (SME) incident lead within the NST. + Act as an escalation point, providing leadership and expertise whilst driving the resolution of incidents. + Procedure creation and continuous improvement. + Escalate incidents to the shift lead where appropriate. + Communicate incidents / escalations within agreed KPI measures i.e. Quality and Timeliness, providing stakeholders with the information they require to manage their business in a language and format which is easy to consume. + Conduct Post Incident Reviews (PIR's) for critical incidents engaging key stakeholders to provide investigation into Root Cause Analysis and the prevention of reoccurrence activities. + Build and maintain collaborative relationships with all key stakeholders at all levels. + Liaise with the BT Cyber SOC Analysts for Incident information. + The work will be done on a 24/7 shift basis. National Support Team Responsibilities: + Responsible for escalated incidents from the CySOC or wider NST. + Check playbooks/processes have been followed + Continuous Improvements with the Incident Management/Response Processes. + Responsible for ascertaining RCA activities + Play an active part in/ lead Post Incident Review activities. + Liaise with the Wider NST and external customers where necessary; Force Liason Officer, CySOC Manager, NMC Director. We'll also need to see these on your CV + Experience working in a Security environment. + Relevant Security or Incident Management qualification. + Experience in a commercial environment, with a history in incident management. + Experience of stakeholder management and influencing skills dealing with complex issues. + A genuine enthusiasm and drive to work within Cyber Security. + Motivated and ambitious to work on your own initiative without needing direction. + Ability to manage multiple projects and tasks. + Strong attention to detail. + Ability to multi-task, prioritise, and manage time effectively. + Excellent interpersonal skills and professional demeanour. + Excellent verbal and written communication skills. Why choose us? We've always been an organisation with purpose; to use the power of communications to make a better world. You can trace this back to our beginning as pioneers of the world's first telecommunications company. At our heart we're a technology company with research and innovation in our bones and a desire to be personal, simple, and brilliant for our customers - those are the values we live by whilst also creating an inclusive working environment where people from all backgrounds can succeed. Our pursuit of progress over the past 180 years has established BT as a strong, successful brand, with huge scale capable of achieving great things. From supporting emergency services, hospitals, banks and keeping economies around the world online, safe and secure, to delivering large scale technology infrastructure like the creation of BT Sport. Today in this fast changing, always on, digital world our purpose remains true. Yet the market conditions, regulation and competition we face are tougher than ever before. So if you have the drive, optimism and resilience to help propel us forward we'll offer unrivalled personal development, a wealth of opportunities to learn, experience new things and pursue new careers. If that's you and what you're looking for, we'd love you to be part of our future. We value different perspectives, skills and experiences. We're creating an inclusive working culture where people from all backgrounds can succeed.