Skip to main content

This job has expired

IT Security Analyst - IT Services

Employer
University of Birmingham
Location
United Kingdom
Salary
£31,406 to £40,927
Closing date
Jun 6, 2022
Background

Achieving the global ambitions of our University strategy depends on our people - and we are proud of our highly talented and engaged professional services colleagues. Our culture is ambitious and high-performing, but also supportive and inclusive. Career progression is encouraged, and you will have the opportunity to take responsibility for your own professional development and wellbeing. We actively support collaboration within and across disciplines and roles. Our staff have high levels of engagement and pride in the University.

The IT Security team is expanding with new members in order to have the capacity to meet the demands of an increasingly complex and demanding IT security landscape.

Department overview

IT Services is responsible for sustainable provision of core IT infrastructure and application services across the University that support academic research and learning and teaching. Central and College-based teams in IT Services together with other colleagues deliver new applications and services, or enhancements to existing capabilities. Together, IT Services teams strive to provide up-to-date, effective and customer-oriented services to students, staff, researchers, visitors and partners.

IT Security sits alongside the rest of IT Services, with the Head of IT Security reporting directly to the CIO.

Role Summary

The IT Security Analyst is a member of the IT Security Team and reports to the IT Security Manager.

Working in collaboration with senior IT specialists and stakeholders from across the University, the post-holder will select, design, justify, implement and operate controls and management strategies to maintain and protect the confidentiality, integrity, availability, dependability and accountability of information and information systems with legislation, regulation and relevant standards.

Main Duties
  • Operate and monitor an information security management system (ISMS)including policies, standards, principles and controls including management practices and technical security measures.
  • Assist with risk assessments and managing information security risks.
  • Communicate, ensure and enforce compliance with information security policies and standards in collaboration with senior members of the IT Security team.
  • Monitor the operation of security controls and propose, define and operate new or revised controls in order to keep the impact and occurrence of information security incidents within the University's risk appetite levels.
  • Manage information security and related projects and initiatives; participate in meetings, working groups, virtual teams, forums and workshops on information security and related subject areas.
  • Assist with IT security governance processes and approve IT projects for compliance with security policies, standards and principles.
  • Liaise and help other IT teams with improving IT security and compliance in line with University Information Security regulations and standards.
  • Handle day to day security incidents alongside other team members and provide backup for other team members where necessary
  • Promotes equality and values diversity, acting as a role model and fostering an inclusive working culture.
  • Any other duties commensurate with the grade.

Person Specification

Core competencies/transferable skills
Working at this level you will be able to develop and demonstrate the following core competencies/transferable skills and will be expected to be flexible as required in supporting their department and wider University.

Planning and organising
  • At this level, role holders will have the ability to:
  • be responsible for the provision of a technical service through the day to day organisation and technical supervision of a work area;
  • manage the prioritisation, allocation and quality of work, developing the technical capability in the area;
  • manage a combination of technical and (where required) non-technical staff
  • progress several initiatives concurrently and to plan effectively;
  • contribute to developments of the service and in policies, procedures and plans in own area;
  • ensure compliance with all legal, health and safety standards;
  • lead, if required, on project work.
  • advise on the development and application of specialist techniques/experiments and/or procedures and the analysis and interpretation of results (may run an advanced specialist service);
  • act as a recognised source of technical and/or specialist expertise in own area;
  • generate original ideas and innovative solutions and/or new techniques/experimental designs.

Problem solving and decision making
  • At this level, role holders will have the ability to:
  • resolve high level problems with specific techniques/applications, or in the implementation of services and technical support;
  • provide specialist advice and recommendations to support decision-making of others;
  • respond to changing priorities and differing situations.

Relationships and communication
  • At this level, role holders will have the ability to:
  • develop excellent working relationships with customers, proactively anticipating their requirements in order to understand and deliver them.

Required Knowledge, Skills, Qualifications, Experience
  • Educated to Degree level (or equivalent qualifications) preferably in Computer Science or other relevant subject, or relevant technical qualification and considerable relevant experience. Where no equivalent qualification is held, significant practical relevant experience and expertise in a series of more demanding roles will be required demonstrating the conceptual understanding required.
  • In depth up to date specialist understanding and experience in a relevant scientific, technical or IT specialism
  • GCSEs to a minimum of grade C in English and Mathematics (or equivalent qualifications).
  • Good underlying technical knowledge and experience in IT Security, computing, data communications and related technologies as evidenced by qualifications and work experience.
  • Good communication skills, a good writer and confident presenter with experience in raising, discussing and resolving information security risks with technical and non-technical customers.
  • Knowledge of privacy and freedom of information laws and regulations such as the Data Protection Act (2018) (GDPR), Freedom of Information Act and Human Rights Act
  • Knowledge of the protected characteristics of the Equality Act 2010, and how to actively ensure in day to day activity in own area that those with protected characteristics are treated equally and fairly.


Informal enquires to Chris Bayliss, via C.B.BAYLISS@bham.ac.uk

Get job alerts

Create a job alert and receive personalized job recommendations straight to your inbox.

Create alert