ICT Security Specialist

Norfolk Constabulary
Wymondham, United Kingdom
1 month ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Compensation
£ 47K

Job location

Wymondham, United Kingdom

Tech stack

Software System Penetration Testing
CompTIA Security+
Computer Security
Intrusion Detection Systems
Microsoft Security Essentials
Red Team (Cyber Security)
Security Information and Event Management
Software Vulnerability Management
Firewalls (Computer Science)
Tenable Nessus
Nessus
Network Server
Qualys

Job description

The ICT Department is looking for a driven, proactive, technically capable and detail-focused individual to join the ICT Security team as an ICT/Cyber Security Specialist.

This is an exciting opportunity to work within the rapidly expanding field of cyber security, playing a key role in strengthening and evolving the organisation's security capability.

The role would suit someone with a strong interest in cyber security, a proactive mindset, and a commitment to continuous learning and professional development.

This role offers the opportunity to develop cyber skills, work hands-on with modern security technologies, and make a real impact within a growing and evolving security function in a complex enterprise environment.

You will help protect critical services using modern specialist security tools, support day-to-day security operations, and play a key role in how security is embedded across the organisation.

Working closely with the ICT Security Manager, Information Security, and wider ICT teams, you will:

  • Manage vulnerability management and remediation activities
  • Support penetration testing, red team exercises and audits
  • Provide and develop specialist security knowledge and guidance across ICT, Information Security and wider departments
  • Support day-to-day security operations, including incident response, monitoring alerts, and acting as a key point of contact for security queries via the ICT Security mailbox and ticket queue
  • Proactively identify and address gaps in security tooling, processes and controls, driving improvements and contributing to the delivery of security projects and initiatives
  • Contribute to the investigation and resolution of cyber security incidents
  • Monitor emerging threats and recommend practical mitigations
  • Help embed a strong, proactive security culture across the ICT department and the wider organisation.

Requirements

Do you have experience in NIST standards?, * Up to level 5 qualification in Cyber Security or IT discipline, or equivalent experience

  • Strong knowledge of cyber security concepts such as vulnerability and risk management, CVEs, CVSS scoring, remediation prioritisation, and security best practices
  • Hands-on experience with vulnerability management and scanning tools (e.g., Nessus, Qualys) including assessing and understanding complex technical output
  • Strong technical knowledge of enterprise infrastructure and security tooling, such as networking, servers, cloud platforms, MDM, access controls, and technologies such as firewalls, SIEM, IDS/IPS, proxies, and EDR
  • Knowledge of cyber security frameworks (ISO 27001, NIST)
  • Ability to analyse complex technical risks in relation to business impact and propose practical mitigation
  • Ability to work collaboratively with a wide range of staff in a matrix management format, ensuring accountability and compliance with security SLAs
  • Excellent organisational, documentation, reporting skills and attention to detail

It is desirable that applicants meet the following criteria:

  • Experience of working in cyber security within a large enterprise
  • Certifications such as CompTIA Security+, CEH, or equivalent
  • Experience with Microsoft Security platforms such as Sentinel, Defender, Purview etc.

Apply for this position