Overview

We are seeking a highly skilled and security-focused professional to join our Operational Capability (OC) Team as an Information Security and Monitoring Specialist.

Responsibilities

• Support the detection and investigation of security incidents across the organisation, using advanced monitoring tools and SIEM (Security Information and Event Management) systems. You will analyse alerts, identify threats, and work with internal and external stakeholders to ensure timely and effective responses to threats.
• Analyse alerts, identify threats, and work with internal and external stakeholders to ensure timely and effective responses to threats.
• Identify indicators of compromise and malicious activity, conduct in-depth analysis of system alerts and logs, and ensure swift, effective responses to emerging risks.
• Oversee local security officers, contribute to the development of monitoring capabilities, and support strategic workforce planning activities.
• Operate discreetly and decisively in high-assurance environments, with a background in information security, incident response, and protective security practices.

Security clearances and eligibility

This post requires the successful candidate to be a British national and they will be subject to Developed Vetting (DV) clearance.

Team and role context

You will work as a member of the OC Team in the Department's Cyber Resilience Centre (CRC), at the forefront of detecting and investigating potential security threats across CRC. Your primary focus will be on identifying indicators of compromise and malicious activity, conducting in-depth analysis of system alerts and logs, and ensuring swift, effective responses to emerging risks.

Collaboration and impact

You will work closely with stakeholders across CRC and the wider security community to coordinate responses, escalate incidents when necessary, and support investigations with clear, actionable intelligence. Your experience in SIEM systems will be critical in driving informed decision-making.