Cyber Security Analyst

A great opportunity has arisen to join us in the Information Security Team at the University of Oxford and help us protect ground-breaking research. The University of Oxford is ranked amongst the best in the world and this role plays a vital part in keeping it that way.
The Information Security Team has a responsibility to protect an eclectic mix of departments, divisions and colleges. A huge variety of networks, which serve information and operational technologies, will attract someone who is up for a challenge. Become part of a talented group of information security professionals and take your information security career to the next level.
Information security covers a wide range of knowledge and skills, and we can be flexible in what you have to offer, providing training and mentoring as required.
The main emphasis of the Cyber Security Analyst job will be on investigating information security incidents, implement countermeasures, contain and eradicate problems, and recover from incidents. The role is expected to work with IT support staff throughout the University and third-party technical support teams. There is also opportunity for the role holder to develop Linux administration skills as part of the Linux Infrastructure team within OxCERT.
The role holder will need exceptionally good analytical problem-solving skills and the ability to take a logical approach to troubleshooting when investigating and solving security incidents. Efficient handling of a large volume of email messages and other signals are core competency for this role.
Please feel free to contact Kashif.mohammad@infosec.ox.ac.uk for informal chat about this role.,

• Identify, monitor, and respond to security incidents using an automated helpdesk system;


• Contribute to the improvement of the incident management capability, providing incident response as well as determining threats and impact levels;


• Collaborate with the wider InfoSec team to enrich threat detection signals, deploy new tooling, and improve automatic response capabilities;


• Liaise and collaborate with the service providers of IT Services, as well as third-party suppliers, to understand difficult, multi-faceted IT issues and develop solutions;


• Contribute to the development of technical documentation and other written material;


• Writing security bulletins to alert University users to new threats, vulnerabilities, or security-related software updates;


• Participate in Information Security and Information Technology related user groups and forums


• Help OxCERT infrastructure team with simple system administration task;


• Take advantage of appropriate training opportunities as they arise, in order to keep up to date with relevant skills and development;


• The role holder will be expected to participate in the team's various activities across the University in promoting security awareness and best practice;


• Undertake such other duties as may be assigned in the light of the post-holder's knowledge and experience.
  
  Knowledge and understanding of endpoint security and email security;


• Experience or practical knowledge of configuring and resolving problems with Windows/Mac OS or Linux Operating System;


• Demonstrable experience in handling large volumes of email messages efficiently and excellent email communication skills;


• Excellent inter-personal skills including the ability to deal effectively with people at all levels of seniority in the University;


• Hands-on experience, preferably in an IT or Information Security help desk environment, of trouble-shooting personal computing problems or computer security incidents;


• A broad overall knowledge of IT topics and experience of a range of commonly used IT applications and systems;


• Education of at least A-level standard or equivalent experience.


Desirable Experience:

• Experience of scripting and maintaining tools in a language such as bash, Python or PowerShell;


• Knowledge of critical web application security issues such as those identified by the Open Web Application Security Project (OWASP top 10);


• Understanding of regulation relevant to incident response, network monitoring, investigations, and handling of illegal materials.


• Experience in administrating and trouble-shooting Linux or Windows operating systems.