IT Security Analyst

We are currently recruiting for an IT Security Analyst to work on a temporary contract with Thames Valley Police.

This is a hybrid role and you will be required to go into their Force Headquarters in Kidlington 2 to 3 days a week. You will be working Monday to Friday 08:40 - 17:00.

PLEASE NOTE DUE TO POLICE VETTING THE CRITERIA FOR THIS ROLE IS THAT YOU MUST HAVE RESIDED WITHIN THE UK CONTINUOUSLY FOR AT LEAST 3 YEARS.

The overall purpose of the role is to: Monitor technical controls, detect and respond to IT security incidents in support of the ISO/IEC 27001 Information Security Management System (ISMS). Providing IT Security advice to Technical Architects and ProjectManagers

KEY ACCOUNTABILITY AREAS:
1. Provide expert Security Architecture advice to Technical Architects and Project Managers to ensure implementation of pragmatic, proportionate, cost-effective cyber security controls. Identify technical information risks and propose mitigation to management.Identify new and emerging technologies and evaluate how these can be used securely to improve communication. Also, identify and propose secure implementation of products or technologies which may be consumer rather than business focused (such as smartphones).

2. Provide the initial response and management of IT Security incidents and escalating to the IT Security Officer as appropriate. Assist with the Protective Monitoring of technical security controls and respond appropriately to IT security incidents, escalatingto the IT Security Officer as appropriate. Identify new and emerging cyber threats and propose mitigations and countermeasures to emerging cyber threats.

3. Contribute to the oversight and monitoring of Administrative (Sys Admin) access control ensuring that joiners, leavers and movers access is appropriately maintained.

4. Maintain contact with security authorities to ensure that security warnings/advisories are appropriately monitored and acted upon to ensure that the Forces' information remains secure against external and internal threats. Represent the IT Security Officerat local, regional and national meetings in relation to information security and assurance, as required, and provide peer support and assistance when appropriate.

5. Work with the forces' auditors and accreditors on the audits of IT security controls to ensure the quality and accuracy of the audit and also ensure that actions arising from the audit are completed as appropriate (including ITHC remedial actions).

6. Assist with change requests that relate to security enforcing functions to ensure compliance with forces' IT Security policies.

7. Assist in the provision of advice and guidance on IT security to members of the department and within the business areas to ensure all stakeholders have a clear understanding of IT Security controls and processes. Cultivate relationships with stakeholdersin order to raise awareness and proactively contribute to improving the two forces' adherence to information security standards.

8. Assist with proactive scanning of future changes to technology, policy, process and legislation to identify and assess any information risks to the organisation and suggest any technical mitigation. Develop, implement and maintain technical security policiesin support of the ISMS.

CHARACTERISTICS OF THE ROLE
- Appropriate qualification or significant experience in a relevant discipline, e.g. Information Governance, Data Protection, Information Assurance / Security, MoPI.
- Effective communication skills, dealing with customers and stakeholders at all levels.
- Technical understanding of IT systems and familiarity with Cloud and Mobile technologies.
- Maintain a high degree of integrity and trust when dealing with sensitive and classified information.
- Proven ability to work under pressure, prioritise and manage workload whilst remaining positive and motivated.
- Appropriate professional qualification in relevant discipline, e.g. MSc Information Security, CISSP, CESG Certified Professional etc.
- Appropriate technical qualifications (such as: Security+, CEH, MCSE, CCNA etc.)
- Take actions required to maintain membership of a professional body for the purposes of continuing professional development through shared experience, knowledge and training.
- Must have capability to travel to different locations across both Forces and undertake all assignments in a timely manner. Due to the requirement to work flexibly, unsocial hours and personal safety for lone working; public transport may not be availableor suitable at these times. For this reason a full UK driving licence is considered essential.

Adecco acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers. The Adecco Group UK & Ireland is an Equal Opportunities Employer.