Senior Cyber Security Specialist

We are recruiting for a Senior Cyber Security Specialist here at City & Guilds. In this role you will lead and act as subject matter expert for computer and network threat intelligence, incident responses, investigations and vulnerability assessments that pertain to different types of cyber threats, including malware, data theft, denial of service, and data breaches.

You will collaborate with a new Managed Detection Response (MDR) provider and be responsible to lead the development and integration of that service to deliver maximum value to the business in reducing cyber risk, cost, and efficiency.

As SCSS, you will be a senior strategic lead, delivering cyber risk reduction by utilising a sound base of technical engineering skills and substantial business and project leadership experience through technology, business and third parties.

You will need to be based in the UK working on a hybrid basis with a mix of home and office – but you do need to be within commutable distance from one of our City & Guilds hub offices.

This appointment will be made on merit.

We believe that diversity and inclusion strengthen and enriches us, and that it is the responsibility of everyone at the City & Guilds Group to drive this value. As ethnic minority groups and disabled people are currently under-represented within the Group, we particularly encourage and welcome applications from these communities.

You will be responsible to define and chart a multi-year strategy of success and foster effective relationship with IT and the wider business to pinpoint the underlying issues and create effective corrective and preventive measures.

Our successful candidate will be self-driven in identifying opportunities, making recommendations and championing maturity initiatives to improve the posture and efficiency of the security operation. You must be comfortable and experienced in working and delivering successfully across the global environment and addressing complexities of obligations, regulations, legacy, and resistance to change.

The working hours are core Mon-Fri UK hours; however, the service is provided globally and there will be some need for out of hours response in the case of major incidents and threat priorities where vital. The design of the service based on the use of an external 24/7 hybrid MDR aims to reduce the need for this, and it will be within the gift of the individual to optimise these arrangements.

You should have extensive technical experience (plus 5 years) working with information security and/or technology in senior technical positions. You will bring substantive senior experience of managing technology and information security major incidents and demonstrable best practice.

You will have an excellent knowledge of IT infrastructure (hardware, databases, operating systems, local area networks etc) and application architectures.

You will be incredibly ‘hands on’ when needed and will be required to maintain a strategic overview of all project and related Security function activity.

We need you to have a solid mix of technology and commercial skills, demonstrating critical thinking and problem-solving ability with a focus on business outcomes and efficiencies. You will provide thought leadership and be the recognised expert for your subject knowledge and skillset, enabling a strong contribution to scoping, solution design, configuration, and testing in a delivery capacity.

Our successful candidate will have a detailed understanding of Security Infrastructure design and IT Security best practice. You will have excellent written and spoken communication skills with the ability to create, update and maintain network diagrams.

As Senior Cyber Security Specialist, you will have a detailed knowledge of security products, SIEM, AV, security gateways, firewalls, load-balancers, ACLs, routing and switching. You should have a strong understanding of common IT protocols, infrastructure and systems.

You will have extensive experience of technologies including but not limited to Firewalls, IPS & IDS, Active Directory, Windows Server, Linux, AWS, Vulnerability management and SIEM, DRM.

We would expect you to have a familiarity with industry security standards such as NIST, Cyber Essentials, ISO27001 and GDPR.

You should also have experience with internal/external Security and Governance audits.

Our vision is for a world in which everyone has the skills and opportunities to succeed. We support almost five million people each year to develop skills that help them into a job, develop on that job and to prepare for their next job. As a charity, we’re proud that everything we do is focused on achieving this purpose.

Through our assessment and credentialing, corporate learning and technical training offers, we partner with our customers to deliver work-based learning programmes that build competency to support better prospects for people, organisations and wider society. We create flexible learning pathways that support lifelong employability, because we believe that people deserve the opportunity to (re)train and (re)learn again and again – gaining new skills at every stage of life, regardless of where they start.

At the heart of our business sits the City & Guilds Foundation which amplifies our purpose by helping to remove barriers to getting into a job, celebrating best practice on the job, and advocating for jobs of the future.

We were founded in 1878 by the City of London and the trade guilds of the time, to help people, organisations and economies to develop their skills for growth.

Our rich experience means we’re uniquely positioned to understand the future of work and learning. And we continually evolve to develop and deliver skills for the workplace of the future. Today, as well as qualifications and assessment, we offer digital credentialing, eLearning technologies, executive leadership development, technical training, and consultancy.

Our success is driven by the people we work with. We pride ourselves on our ability to offer an equal opportunity to all our staff and we value diversity within our inclusive culture. We recognise that a diverse workforce is the only way we will achieve our ambitious business goals, so we work hard to be flexible to accommodate everyone.

We offer the opportunity to work in an innovative, engaging and market-leading organisation with opportunities to develop your existing skills and explore new ones.

You’ll receive an excellent benefits package which typically includes a great base salary, 25 days holiday plus bank holidays, pension, private healthcare, volunteering opportunities and much more.

If you think this is the role and organisation for you then we would love to hear from you. Please submit your CV and complete our short application form using the apply button.

We shortlist for our vacancies on an ongoing basis, and we may close a vacancy earlier than the advertised date. Please can you submit your application as soon as possible to avoid disappointment.

City & Guilds are a Disability confident employer. Please let us know if you require any support/adjustments at your interview and if successful any adjustments needed to support you in your role. If this is required, please email; careers@cityandguilds.com