Principal Security Analyst (Ref: 91572)

Ministry of Justice

Apply before 11:55 pm on Sunday 3rd November 2024

 

Details

Reference number

375235

Salary

£54,358 - £66,670
The national salary range is £54,358 - £61,585, London salary range is £58,847 - £66,670. Your salary will be dependent on your base location. London: £58,847 - £78,225 (which may include an allowance of up to £19378) National: £54,358 - £73,450 (which may include an allowance of up to £19092)
A Civil Service Pension with an employer contribution of 28.97%

Job grade

Grade 7
Grade 7

Contract type

Permanent

Type of role

Digital
Information Technology

Working pattern

Flexible working, Full-time, Part-time

Number of jobs available

2

Contents

East Midlands (England), East of England, London (region), North East England, North West England, Scotland, South East England, South West England, Wales, West Midlands (England), Yorkshire and the Humber

Job summary

This position is based nationally

Job description

Principal Security Analyst

1 x Protective Monitoring AND 1 x Threat Intelligence and Vulnerability Management

Location: National

Closing Date: 3rd November

Interviews: w/c 11th and 18th November (TBC)

Grade: G7

(MoJ candidates who are on a specialist grade, will be able to retain this grade on lateral transfer)

Salary: London: £58,847 - £78,225 (which may include an allowance of up to £19,378) National: £54,358 - £73,450 (which may include an allowance of up to £19,092)

Working pattern: Full-time, part-time, flexible working

(There will be a requirement for some on-call responsibilities out of hours in the future. This will be recompensed in line with MOJ rates).

Contract Type: Permanent

Vacancy number: 91572

*We offer a hybrid working model, allowing for a balance between remote work and time spent in your local office. Office locations can be found ON THIS MAP

The Role

We’re recruiting for Principal Security Analysts here at Justice Digital, to be part of our warm and collaborative  Digital Infrastructure and Security Operations (DISO) team. DISO is part of Technology Services in Justice Digital, a modern and diverse workplace that promotes a healthy work-life balance and flexible working options.

This role aligns against G7 Cyber Security - Vulnerability Management and Principal Threat Monitoring from the Government Digital and Data Framework.

More information here on The Government Security Profession career framework.

The Security Operations Centre (SOC) at the Ministry of Justice (MOJ) is seeking a highly motivated and experienced Principal Analyst - Protective Monitoring and a Principal Analyst – Threat and Vulnerability Management to provide leadership and direction to our service.

The MOJ SOC is undertaking significant development to its people, processes and technology and will be responsible for monitoring a significantly increased number of MOJ and HMCTS services.  You will be a key part of the leadership team delivering these changes across the SOC. 

Principal Analyst in the Protective Monitoring Team.  The Principal Analyst in the Protective Monitoring Team will play a critical role in safeguarding the MoJ’s IT infrastructure, assets, and data. In addition to ensuring that the team operate effectively they will lead the ongoing development of the team as it onboards critical MOJ and HMCTS services through a new monitoring platform. They will be responsible for ensuring that SOC protective monitoring (ProMon) processes are efficient, effective, and aligned with best practices. The Principal Analyst will also engage with appropriate business and technical teams across the MOJ, and with associated 3rd parties to ensure appropriate Protective Monitoring plans and processes are defined and implemented.

Principal Analyst Threat and Vulnerability Management.  The Principal Analyst Threat and Vulnerability Management will be responsible for overseeing the operation and development of the MOJ Cyber Threat Intelligence capability.  Additionally, they will further develop and refine core Vulnerability Management processes, helping ensure that MOJ Service Owners keep their systems and applications patched and protected. They will be responsible for ensuring that the team processes are efficient, effective, and aligned with best practices and has a development path.  As Principal Analyst you will also engage with appropriate business and technical teams across the MOJ, and with associated 3rd parties, to ensure appropriate Threat Intelligence processes, including awareness, communication, and vulnerability management, are defined, and implemented.

To help picture your life at MoJ Justice Digital please take a look at our blog and our Digital and Technology strategy 2025

Key Responsibilities:

  • Lead your team as it undertakes a significant change programme.
  • Manage your team, prioritising activity with a focus on business output. Foster a collaborative and high-performing work environment.
  • Develop goals and performance metrics in line with business needs; demonstrate progress against those goals.
  • Develop and maintain relevant processes and procedures to ensure efficient and effective operation of the SOC.
  • Develop and maintain relationships with teams across the MOJ and wider government to enable and integrate response to threats and incidents.
  • Support development of the SOC through analysis of trends that identify risk and areas for improvement both internally and in the rest of the MOJ.
  • Drive ongoing development of your team and the SOC overall aligned with the MOJ’s Security Strategy, the MOJ’s risk posture and best practice; identify, and, where possible, implement technologies, processes and training that will support that development.

If this feels like an exciting challenge, something you are enthusiastic about, and want to join our team please read on and apply!

Person Specification

Essential Criteria

  • Proven experience leading and mentoring a security analyst team.
  • Working knowledge of various security tools and technologies used in a SOC environment (SIEM, firewalls, EDR, etc.) OR Experience with threat intelligence tools and technologies (e.g., SIEM, threat feeds, threat modelling tools).
  • Substantial experience in a Security Operations Centre (SOC) environment.
  • Excellent analytical, problem-solving, and decision-making skills.
  • Effective written and verbal communication skills, and collaboration and leadership skills.
  • Ability to work effectively under pressure and manage multiple tasks simultaneously.
  • Experience establishing goals for organisations and to establish a system of measuring effectiveness of goal attainment.
  • Strong understanding of security best practices, frameworks (MITRE ATT&CK, etc.), and incident response methodologies.
  • Bachelor's degree in Cybersecurity, Information Security, Computer Science, or a related field OR equivalent experience.

Willingness to be assessed against  the requirements for SC clearance

The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see the Civil Service People Plan and the Civil Service D&I Strategy.

Benefits

  • 37 hours per week and flexible working options including working from home, working part-time, job sharing, or working compressed hours.
  • A £1k per person learning budget is in place to support all our people, with access to best in class conferences and seminars, accreditation with professional bodies, fully funded vocational programmes and e-learning platforms
  • Staff have 10% time to dedicate to develop & grow
  • Generous civil service pension based on defined benefit scheme, with employer contributions of 28.97% from April 1st 2024 (Contribution Rates)
  • 25 days leave (plus bank holidays) and 1 privilege day usually taken around the Kings’ birthday. 5 additional days of leave once you have reached 5 years of service.
  • Compassionate maternity, adoption, and shared parental leave policies, with up to 26 weeks leave at full pay, 13 weeks with partial pay, and 13 weeks further leave. And maternity support/paternity leave at full pay for 2 weeks, too!
  • Wellbeing support including access to the Calm app.
  • Bike loans up to £2500 and secure bike parking (subject to availability and location)
  • Season ticket loans, childcare vouchers and eye-care vouchers.
  • 5 days volunteering paid leave.
  • Free membership to BCS, the Chartered Institute for IT.
  • Some offices may have a subsidised onsite Gym.

How to Apply

Candidates must submit a CV and Supporting Statement (of no more than 750 words), which describes how you meet the requirements set out in the Person Specification above.

Candidates who do not submit both a CV and a separate statement of suitability will not be invited to interview.

Within your statement of suitability, please focus on demonstrating how you meet the following essential criteria which are being assessed at sift stage;

  • Proven experience leading and mentoring a security analyst team.
  • Working knowledge of various security tools and technologies used in a SOC environment (SIEM, firewalls, EDR, etc.) OR Experience with threat intelligence tools and technologies (e.g., SIEM, threat feeds, threat modelling tools).
  • Substantial experience in a Security Operations Centre (SOC) environment.
  • Ability to work effectively under pressure and manage multiple tasks simultaneously.

In Justice Digital, we recruit using a combination of the Government Digital and Data Profession Capability and Success Profiles Frameworks. We will assess your Experience, Technical Skills and the following Behaviours during the assessment process:

  • Leadership
  • Delivering at Pace
  • Making Effective Decisions

A diverse panel will review your application against the Person Specification above.

Successful candidates who meet the required standard will then be invited to a 1-hour panel interview held via video conference.

Should you be unsuccessful in the role that you have applied for but demonstrate the capability for a role at a lower level, we reserve the right to discuss this opportunity with you and offer you the position without needing a further application.

A reserve list may be held for up to 12 months, from which further appointments may be made.

Terms & Conditions

Please review our Terms & Conditions which set out how we recruit and provide further information related to the role and salary arrangements.

If you have any questions, please feel free to contact recruitment@digital.justice.gov.uk

Person specification

Please refer to attached Job Description
Alongside your salary of £54,358, Ministry of Justice contributes £15,747 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides.
  • Access to learning and development
  • A working environment that supports a range of flexible working options to enhance your work life balance
  • A working culture which encourages inclusion and diversity
  • A Civil Service pension with an employer contribution of 28.97%
  • Annual Leave
  • Public Holidays
  • Season Ticket Advance



For more information about the recruitment process, benefits and allowances and answers to general queries, please click the below link which will direct you to our Candidate Information Page.

Link: https://justicejobs.tal.net/vx/candidate/cms/About%20the%20MOJ

Selection process details

How to Apply

Candidates must submit a CV and Supporting Statement (of no more than 750 words), which describes how you meet the requirements set out in the Person Specification above.

Candidates who do not submit both a CV and a separate statement of suitability will not be invited to interview.

Within your statement of suitability, please focus on demonstrating how you meet the following essential criteria which are being assessed at sift stage;

  • Proven experience leading and mentoring a security analyst team.
  • Working knowledge of various security tools and technologies used in a SOC environment (SIEM, firewalls, EDR, etc.) OR Experience with threat intelligence tools and technologies (e.g., SIEM, threat feeds, threat modelling tools).
  • Substantial experience in a Security Operations Centre (SOC) environment.
  • Ability to work effectively under pressure and manage multiple tasks simultaneously.

In Justice Digital, we recruit using a combination of the Government Digital and Data Profession Capability and Success Profiles Frameworks. We will assess your Experience, Technical Skills and the following Behaviours during the assessment process:

  • Leadership
  • Delivering at Pace
  • Making Effective Decisions

A diverse panel will review your application against the Person Specification above.

Successful candidates who meet the required standard will then be invited to a 1-hour panel interview held via video conference.

Should you be unsuccessful in the role that you have applied for but demonstrate the capability for a role at a lower level, we reserve the right to discuss this opportunity with you and offer you the position without needing a further application.

A reserve list may be held for up to 12 months, from which further appointments may be made.



Feedback will only be provided if you attend an interview or assessment.

Security

Successful candidates must undergo a criminal record check.
Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check (opens in a new window).

See our vetting charter (opens in a new window).
People working with government assets must complete baseline personnel security standard (opens in new window) checks.

Nationality requirements

This job is broadly open to the following groups:

  • UK nationals
  • nationals of the Republic of Ireland
  • nationals of Commonwealth countries who have the right to work in the UK
  • nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) (opens in a new window)
  • nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS)
  • individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020
  • Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service
Further information on nationality requirements (opens in a new window)

Working for the Civil Service

The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants.

We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window).
The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.
The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.

Diversity and Inclusion

The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see the Civil Service People Plan (opens in a new window) and the Civil Service Diversity and Inclusion Strategy (opens in a new window).
Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.

Contact point for applicants

Job contact :

  • Name : SSCL Recruitment Enquiries Team
  • Email : Moj-recruitment-vetting-enquiries@gov.sscl.com
  • Telephone : 0845 241 5359

Recruitment team

  • Email : Moj-recruitment-vetting-enquiries@gov.sscl.com

Further information

Appointment to the Civil Service is governed by the Civil Service Commission’s Recruitment Principles. I you feel a department has breached the requirement of the Recruitment Principles and would like to raise this, please contact SSCL (Moj-recruitment-vetting-enquiries@gov.sscl.com) in the first instance. If the role has been advertised externally (outside of the Civil Service) and you are not satisfied with the response, you may bring your complaint to the Commission. For further information on bringing a complaint to the Civil Service Commission please visit their web pages: http://civilservicecommission.independent.gov.uk/civil-service-recruitment/complaints/

Share this page