The Department for Work and Pensions opens recruitment for two positions based in a specialist team for monitoring and investigating cyberthreats, as well as improving defences and making ‘timely interventions’
The Department for Work and Pensions is recruiting for a pair of experienced security analysts to join a round-the-clock team dedicated to tracking and investigating cyberthreats.
The two roles as threat detection analysts sit within the DWP’s Cyber Security Monitoring and Investigations unit – which forms part of a wider departmental Cyber Resilience Centre. The monitoring team, which “operates 24 hours a day, 7 days a week”, is focused on “the detection and investigation of potential indicators of compromise or malicious activity on DWP systems and devices”, according to the job advert.
As threat detection specialists, the two new hires will serve as “a second-tier escalation function for the resolution of security events that have been triaged by others”. This will involve the “comprehensive investigation of security alerts as well as proactive analysis of activity captured in system logs and security tools, to quickly determine if systems have been compromised”.
Among the key responsibilities of these analysts during investigations will be “providing detailed technical input”. This will be supported by the use of “latest analytical SIEM tools including open-source intelligence to identify security compromises”, as well as “digital forensic and malware analysis tools… to support analysis and decision making”.
Related content
- DWP seeks data protection officer
- DWP signs £1m software deals to map and monitor risk across hundreds of suppliers
- Cyber Week: DWP says security experts stopped ‘large attack’ from organised crime during UC surge
If and when a cyber incursion is detected, the investigations team offers “timely intervention to protect the DWP IT estate through recommending and operating containment processes to isolate and prevent the spread of malware”, the advert says.
To support the team’s remit to track potential dangers, the analysts will be tasked with helping to “drive forward the development of monitoring systems and supporting processes and playbooks”, as well as working to “ensure intelligence is effectively used to maintain the integrity of alerts and to ensure alerts continue to remain relevant and focused on the latest threats”.
The two recruits will also be expected to “develop influential relationships with key stakeholders across the department to support improvement activity thereby mitigating the risks from malicious activity”.
The roles can be based in one of the DWP’s offices in London, Leeds, Manchester, Newcastle-upon-Tyne, or Glasgow. Because of the constant nature of the team’s work, prospective applicants are advised that “postholders may be required to work outside of usual office hours as investigations dictate, [and] travel to different sites with occasional overnight stays may also be required”.
The positions offer an annual salary of up to £43,347 – or as much as £47,986 for candidates based in London. An additional recruitment and retention allowance of £5,200 may also be available for these roles.
Applications are open until 11.55pm on 8 October.