Cyber Security Monitoring Analyst

Office for National Statistics

Apply before 11:55 pm on Thursday 3rd October 2024

 
Return to search results

Details

Reference number

370165

Salary

£32,452 - £36,874
(London £35,587 - £40,056). Plus, a scare skills allowance of up to £3,000 (non-pensionable and non-contractual) may be payable.
A Civil Service Pension with an employer contribution of 28.97%

Job grade

Higher Executive Officer

Contract type

Permanent

Business area

Security and Information Management

Type of role

Digital
Information Technology
Security

Working pattern

Flexible working, Full-time, Job share, Part-time, Compressed hours

Number of jobs available

3

Contents

ONS operates a flexible hybrid working model across the UK, with colleagues linked to one of our contractual locations in Newport, Titchfield (Fareham), Manchester, London or Edinburgh and working between office and remote throughout the week.

As part of the hybrid working arrangement there is a 40% minimum office attendance requirement. Attendance is typically at your contractual office, with occasional travel to alternative locations. Due to estates constraints, there are currently temporary exceptions to this for colleagues based at Manchester and London who are required to attend the office for a minimum of 20% of their work time.

Job summary

Do you have a curious mind and like problem solving? Are you interested in becoming part of a growing team?

This Cyber Security Analyst role is in the Cyber Security division within the Security and Information Management directorate. The purpose of the role is to monitor for and identify potential problems, ensuring that appropriate response actions are carried out for triage and incident response towards an end goal of preventing malicious activity, damage to ONS/UKSA, and data loss from internal and external threats.

Working as part of a high-performing, proactive team, you will support the Cyber Security Lead Analyst in the triage function with responsibility for maximising benefit from monitoring techniques and procedures for cyber security tools such as Security Information and Event Management (SIEM) systems, User Entity and Behaviour Analytics (UEBA) systems, Security Orchestration, Automation and Response (SOAR) systems, and other selected security technologies.

We’re enhancing, revising and improving across our key services to better support ONS’s priority outcomes, but also to strengthen our defence against the increased external threat we face as part of the UK Government.

We’re looking for individuals who can work concurrently across several workstreams and who understand that there are always unknowns that require urgent attention above the day-to-day to-do list.

.

Job description

This role is part of the Cyber Security division and will deliver cyber security monitoring services at tactical and operational levels for colleagues within the Security and Information Management directorate and across the business.

The role is responsible for monitoring, detecting, analysing, remediating, and reporting on cyber events and incidents impacting the technical infrastructure of our organisation.

This role will use a variety of tools and technologies to identify and manage threats and vulnerabilities and will work closely with other teams to ensure the security of our systems and data. The role holder will escalate alerts that have met the criteria for colleagues to conduct a detailed security investigation. 

The role holder will participate in the maturing of cyber security monitoring services through the management and maintenance of triage and incident investigation guidance.  

Responsibilities 

  • Monitoring security alerts and incidents through various security tools.
  • Performing detailed analysis of security logs, network traffic, and patterns.
  • Coordinating with other teams to manage and respond to security incidents.
  • Developing and implementing new security measures and protocols.

Person specification

Essential Skills Criteria:

As the Cyber Security Analyst, the ideal candidate would be able to demonstrate:

    • Knowledge and application of SIEM capabilities.
    • Knowledge of cyber security incident response processes.
    • Awareness of the cyber security threat landscape.
    • Experience of writing reports or technical documentation tailored to the audience.
    • Experience of working within a team to effectively meet organisation objectives/capability.
    • Working knowledge of query languages such as KQL, SPL.

Behaviours

We'll assess you against these behaviours during the selection process:

  • Working Together
  • Making Effective Decisions

Technical skills

We'll assess you against these technical skills during the selection process:

  • Cyber Security Operations
  • Intrusion Detection and Analysis
  • Protective Security
  • Secure Operations Management
Alongside your salary of £32,452, Office for National Statistics contributes £9,401 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides.

The Office for National Statistics is part of the Civil Service, and as such we share a number of key benefits with other departments, whilst also having our own unique offerings to support our 5400 valued colleagues across the business.

This role is part of the cross-government Government Digital and Data (formerly DDaT) profession framework. As a role within Government Digital and Data (formerly DDaT) at the ONS, we also offer benefits such as:

• Protected Learning Time to spend on your personal development and side-projects.

• A supportive and active Community of Practice which you will be expected to contribute to, helping ensure you and your colleagues get the training, development and opportunities you need to progress your careers.

ONS are committed to flexible ways of working that support a healthy work-life balance. ONS has already considered how this job could be right sized for applicants working flexibly and we are happy to explore options with you about working part time, in a job share or flexibly, in line with our hybrid working policies. 

Whether you are hearing about us for the first time or already know a bit about our organisation, we hope that the benefits pack attached (bottom of page) will give you a great insight into the benefits and facilities available to our colleagues and our fantastic working culture.

 

Inclusion & Accessibility

At ONS we are always looking to attract the very best people from the widest possible talent pool, and we are proud to be an inclusive, equal opportunities employer. As a member of the Business Disability Forum and a Disability Confident Leader we’re committed to ensuring that all candidates are treated fairly throughout the recruitment process.

As part of our application process, you will be prompted to provide details of any reasonable adjustments to our recruitment process that you need. If you would like to discuss any reasonable adjustments before applying, please contact the recruitment team in the first instance.

If you would like an accessible version of any of the attachments or recruitment documents below or linked to in this advert, please contact the recruitment team who will be happy to assist.

Selection process details

This vacancy is using Success Profiles (opens in a new window), and will assess your Behaviours, Experience and Technical skills.

Security Clearance  

The requirement for SC clearance is to have been present in the UK for 3 consecutive years immediately prior to applying.  

A lack of UK residency in itself is not always a bar to security clearance, but the Department will need to consider eligibility by exception on a case-by-case basis. You will be asked to provide information regarding your UK residency during your application, and failure to provide this will result in your application being rejected.  

If you are unsure that you meet the eligibility above, please read the information available on Gov.uk on this link, or contact the recruitment email on the advert before applying to discuss, as failure to meet the residency requirements will result in your security clearance application being rejected and any offer of employment being withdrawn.  

 At the point of SC application, you will need to provide or give access to the following evidence:  

  • Departmental or company records (personnel files, staff reports, sick leave reports and security records) 
  • UK criminal records covering both spent and unspent criminal records 
  • Your credit and financial history with a credit reference agency 
  • Security Services records

Applicant support

Applicants may utilise AI resources in their submissions; ensuring all information provided is factually accurate, truthful, and original, avoiding any form of plagiarism to maintain the authenticity and credibility of the application process. 

Stage 1 – Application & Sift 

Assessment at application stage will be based on your work history, skills, experience, CV and personal statement.

Your application should be tailored to demonstrate any skills, knowledge and experience that are relevant to the content of the role.

Your personal statement should be no longer than 1250 words. You should use this space to provide evidence for each essential skills criteria within the person specification. As the criteria are scored, we would recommend that you give clear examples for each including the impact of your actions and set them out using the STAR acronym (Situation, Task, Action, Result).Success Profiles Behaviour examples are not required at this stage.

In cases where there are a high number of applications the sift pass mark may be adjusted and candidates will be invited to interview in merit order, i.e. those scoring the highest. 

Stage 2 – Interview

Should you be invited to interview, you will be assessed using various assessment techniques aligned to the Civil Service Success Profiles framework, where you'll be assessed against all the behaviours outlined in this advert. 

Interviews will be conducted by Video Conference.

A reserve list may be held for a period up to 12 months from which further appointments may be made.

Important Dates:

Sift date: From 07/10/2024

Interview dates:From 21/10/2024

For the full terms and conditions of the post, please see attachment below. 



Feedback will only be provided if you attend an interview or assessment.

Security

Successful candidates must undergo a criminal record check.
Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check (opens in a new window).

See our vetting charter (opens in a new window).
People working with government assets must complete baseline personnel security standard (opens in new window) checks.

Nationality requirements

This job is broadly open to the following groups:

  • UK nationals
  • nationals of the Republic of Ireland
  • nationals of Commonwealth countries who have the right to work in the UK
  • nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) (opens in a new window)
  • nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS)
  • individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020
  • Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service
Further information on nationality requirements (opens in a new window)

Working for the Civil Service

The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants.

We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window).
The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.
The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.

Diversity and Inclusion

The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see the Civil Service People Plan (opens in a new window) and the Civil Service Diversity and Inclusion Strategy (opens in a new window).
This vacancy is part of the Great Place to Work for Veterans (opens in a new window) initiative.
Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.

Contact point for applicants

Job contact :

  • Name : Government-Digital-and-Data-Recruitment@ons.gov.uk
  • Email : Government-Digital-and-Data-Recruitment@ons.gov.uk
  • Telephone : Government-Digital-and-Data-Recruitment@ons.gov.uk

Recruitment team

  • Email : Government-Digital-and-Data-Recruitment@ons.gov.uk

Further information

If you feel your application has not been treated in accordance with the Recruitment Principles and you wish to make a complaint, in the first instance, you should contact recruitment.complaints@ons.gov.uk. If you are not satisfied with the response you receive from the Department, you can contact the Civil Service Commission

Attachments

ONS_External_Vacancy_Terms - (1) Opens in new window (pdf, 37kB)
2424 ONS Recruitment Benefits Pack Update v2-00 June 2024 (1) Opens in new window (pdf, 792kB)
Cyber_Security_Analyst_2024_RoleProfile Opens in new window (pdf, 122kB)

Share this page