Cyber Security Business Partner

**The role**:
**About DCC**

Every one of the 30 million homes and small businesses in Great Britain are set to have intelligent gas and electricity smart meters installed by 2020. Perhaps one of the most ambitious, challenging and exciting projects of its kind in the world, the building of the smart metering network will be a catalyst for the most significant, expansive and innovative changes to the energy sector in decades. The Data and Communications Company (DCC) was created to lead the successful delivery of this vital new national infrastructure, with highly secure and reliable communications and data services to connect smart meters with energy suppliers, network operators and authorised third parties. This smart metering network will help Great Britain become a global leader in smart energy. Smart DCC operates as a client on behalf of the energy industry, designing and developing a solution which it then procures, implements and performance manages on its behalf.

**The Role**
- Build relationships with Service Provider Delivery and Security Teams (SPs)
- Coordinate with service providers to ensure they maintain a good security posture
- Assist in defining the scope of the technical engagement with SPs
- Work with the Security Operations Centre (SOC) to collate data requirements to be passed to the SPs
- Liaise with SP Delivery and Security Teams to extract relevant security data for user cases seen/predicted/hunted in the SOC
- Assist in raising change requests where necessary, in order to make the data available to the SOC
- Assist in identify gaps in current designs or delivery
- Assist in Identifying where SP does not have a capability
- Indicate areas of initial, urgent and prioritised action
- Assist in defining the process requirements (i.e. not the full processes) to support this model - Support regulatory external audits
- Support Development and adoption of industry best practice processes and procedures
- Provide operational security due diligence for onboarded service providers Support regular security tests & other security related compliance activates
- Working with the Security Operations Centre (SOC) to collate data requirements to be passed to the SPs
- Liaison with SP Delivery and Security Teams to extract relevant security data for user cases seen/predicted/hunted in the SOC
- Work with DCC programme/project teams and Security Assurance to support the delivery of SP requirements
- Review and act upon threat intelligence feeds applicable to DCC environment in accordance with established operating procedures
- Possess threat hunting capabilities (depending on level of experience)
- Participate in hunt missions using threat intelligence, analysis of anomalous log data and anomalous sessions to detect and eradicate threat actors
- In the case of intrusion identification, coordinate with the incident response team to investigate and determine the cause and extent of the breach
- Develop Threat Hunting dashboards and reports to identify potential threats, suspicious/anomalous activity, and malware
- Produce comprehensive and accurate oral and written reports and presentations for both technical and executive audiences
- Effectively communicate escalations and interface with executive stakeholders and legal counsel, both technically and strategically
- Document and escalate unmanaged risks identified during threat hunts to Governance, Risk and Compliance (GRC) function

**Essential Criteria**
- Have degree in security or equivalent
- Experience of incident response, analysis, forensics and knowledge of best practice of design and implementation of controls
- Vulnerability management
- Great communicator with excellent stakeholder management skills
- Be familiar with the NIST Cybersecurity Framework
- Be familiar with the Mitre Att&ck Framework
- Have some knowledge of cloud environments
- Must be analytical, focussed, and have a drive to learn new skills, provide outstanding customer service and determination to identify and resolve issues and RCA.
- Must be well-organised and diligent at documentation, able to assemble a comprehensive and clear explanation of security issues.
- Actively maintain knowledge of the threat landscape, technology solution & industry standards, leveraging external network & key advisors
- The parent company, Capita Plc*, are a leading UK provider of technology enabled business services. We’re supporting and improving the lives of millions of people every day and we can only do this with the right people in place, working towards a shared goal. We encourage an open, honest working environment where everyone can be true to themselves and people are valued for their differences. We’re always challenging each other to learn and improve, because we know when we work together, we can deliver better outcomes. We work across such a huge range of businesses and sectors, that you’ll have the opportunity to grow and develop your career in any number of directions.