Cyber Security Graduate Trainee

We are a world class research-intensive university. We deliver teaching and learning of the highest quality. We play a leading role in economic, social and cultural development of the North East of England. Attracting and retaining high-calibre people is fundamental to our continued success.

Salary: Salary in the region of £33,000 per annum

Closing Date:    5 May 2024
 

The Role

We have reimagined the way we deliver our University IT Services, building a world-class IT department responsive to the needs of our global community. We’re growing significantly and we’ve created new opportunities and made changes to how we work. Our people have been at the centre of this change, with a particular focus on development and opportunities to learn new skills.

We are investing significantly in an expanded team of cyber security professionals. This graduate trainee role will assist in protecting the University from cyber security threats to minimise the impact of such threats on the University’s activities. 

It is envisaged that the successful candidate will spend one-year “on-the-job” training before commencing a two-year, Level 7 Apprenticeship leading to a MSc in Digital Technology Solutions (Cyber Security).

Upon successful completion of the Level 7 Apprenticeship End Point Assessment, and subject to satisfactory work performance, it is expected that the graduate trainee will progress to the Cyber Security Officer role.

The University is an exciting and dynamic place to work, dedicated to world-leading education and research. Benefits include excellent pension; flexible working options; a minimum of 37 days holiday (including public holidays); discounted travel for the Metro and local bus services; and discounts for national retailers. You can find out more on our benefits web page.

We are committed to building and maintaining a fair and inclusive working environment and we would be happy to discuss arrangements for flexible and/or blended working.

Any job offer will be subject to the successful completion of HMG Baseline Personnel Security Standard pre-employment security screening.

Informal enquiries may be made to Jason Bain, Chief Information Security Officer, at Jason.Bain@newcastle.ac.uk

Key Accountabilities

•    Security Response and Investigation

• Assist with managing University cyber security incidents from incident inception to resolution or mitigation, ensuring the impact to the University’s activities is insofar as possible minimised or eliminated
• Act as a point of contact for effective reporting and tracking of cyber security incidents between the University and: Janet CSIRT; regulatory bodies; law enforcement agencies; and other relevant parties
• Monitor and respond to cyber security threats and alerting generated by cyber security and related tooling

•    Security Policy, Compliance and Risk Management

• In response to legal and regulatory changes and emerging cyber security threats, contribute to recommending changes to the University’s cyber security procedures ensuring that they meet the University’s business needs
• Provide advice and recommendations on the technical aspects of cyber security compliance and supplier due diligence

•    Secure Computing

• Perform regular vulnerability scanning and penetration testing to assist in threat detection and threat management

•    Security Consulting and Education

• Provide advice on achieving and maintaining compliance against externally mandated cyber security requirements
• Assist in the development and maintenance of a programme of cyber security education and awareness to ensure colleagues and students are aware of cyber security threats and mitigations

•    Data Reporting and Analytics

• Assist in the compilation of cyber security metrics for reporting within NUIT; across the University; and where necessary external to the University

•    Miscellaneous

• Any other reasonable duties that fall within the scope of the post, as allocated by the line manager.

The Person

Knowledge, Skills, and Experience 
•    Current foundation knowledge of information security and related processes, systems, and procedures
•    Practical technical knowledge relevant to their duties
•    Solve problems based upon experience, and the ability to seek out new information
•    Can communicate effectively with colleagues and students
•    Can demonstrate practical IT and cyber security experience:

• Network, server and application security scanning and penetration testing using both commercial and open source software
• Operating system experience, including at least one of: Windows and Linux
• Network security experience, e.g., device discovery scanning
• Performing cyber security investigations
• Giving advice on cyber security issues
• The successful and appropriate use of encryption

Attributes and Behaviour
Delivering Services
•    Knows and understands customer/stakeholder needs in terms of outputs
•    Takes responsibility for achieving own targets
•    Has a positive attitude for doing things better
•    Looks for ways to make immediate improvements (quick wins)
Communicating
•    Disseminate key organisational messages internally and ensures understanding
•    Chooses communications tools appropriately e.g., selective use of email and other channels of communication
•    Tailors content of communication to the audience, changing style, tone, and format appropriately
•    Clear and concise; gets the message across to others
Team Working
•    Shares relevant and useful information with others
•    Keeps other team members up to date with progress
•    Gets involved with team tasks
•    Willing to help others and share workloads
•    Operates with a number of different teams across the institution
•    Looks at ways of developing cross functional co-operation and support
•    Confident in adopting a range of team roles
Finding Solutions
•    Uses initiative to sort things out, is enterprising in effective use of material, financial and human resources
•    Looks at ways of overcoming obstacles rather than coming to a standstill
•    Confidently deals with a broad range of information
•    Keeps an open mind to alternative ways of doing things
•    Proactively anticipates and plans for likely problem areas or obstacles by assessing and managing risks.

Qualifications
•    Recently graduated (within two years) or expect to graduate at appointment with first degree (Level 6) in computing or related discipline

Other
•    Any job offer will be subject to the successful completion of HMG Baseline Personnel Security Standard pre-employment security screening
•    Must be willing to enrol and actively participate in a university-funded Level 7 Apprenticeship leading to a MSc in Digital Technology Solutions (Cyber Security)