Cyber Security Analyst

1. Position information

Vacancy No.: VN19-52
Grade: A2
Job Ref. No.: STF-C/19-52
Department: Computing Department
Section: Platforms and Services Section
Reports to: Networks and Security Team Leader
Closing Date: 29 January 2020

2. About ECMWF

ECMWF is both a research institute and a 24/7 operational service, producing and disseminating numerical weather predictions to its Member States. ECMWF carries out scientific and technical research directed to the improvement of its forecasts, collects and processes large amounts of observations, and manages a long-term archive of meteorological data. Satellite and in situ observations provide the information for up-to-date global analyses and climate reanalyses of the atmosphere, ocean and land surface.

For details, see

The Platforms and Services Section forms part of ECMWFs Computing Department, and is responsible for delivering all Information, Communication, and Technology (ICT) services that exist outside of the High-Performance Computing Facility, Data Handling System and Online Storage. Within the Platforms and Services Section, the Networks and Security Team is responsible for designing, procuring and deploying the Networks and Security infrastructures and their associated Operational Security services, and their day-to-day operational running. The co-ordination of Information Security activities also takes place within the team, reporting to the Centres Director of Computing and ECMWFs Information Security Governance Board.

3. Summary of the role

The Cyber Security Analyst is responsible for the operational security matters related to Information Technology security within ECMWF. The successful candidate will report to the Networks and Security Team Leader and coordinate the implementation of agreed controls across the organisation to reduce information and IT risks and ensure information assets and technologies are adequately protected.

4. Main duties and key responsibilities

Candidates will have the expertise and in-depth knowledge to adopt and develop standards and new techniques for Information Security (InfoSec), working with internal and external stakeholders to introduce these into operations.

Key responsibilities:

  • Designing new security systems or upgrading existing ones
  • Providing technical advice and drafting policies in the area of Information Security
  • Configuring and managing network security systems, including firewalls and intrusion detection and prevention systems
  • Protecting digital information assets and information systems against unauthorised access, modification or destruction
  • Monitoring and reporting on established Information Security controls
  • Cooperating with Information Security representatives in all departments and at all levels of the organisation
  • Coordinating regular meetings with InfoSec experts from ECMWF's Member and Cooperating States
  • Executing regular Information Security audits together with independent external auditors
  • Coordinating IT investigations, security incident response, digital forensics and electronic discovery
  • Undertaking operational risk assessments to cover changes in the environment
  • Recommending solutions to improve IT infrastructure security
  • Increasing awareness of Information Security within ECMWF, including training and communication
  • Representing the organisation in conferences and working groups, when required
  • Delivering the information security framework in line with ECMWFs policies, industry best practice and associated industry standards, including ISO27000 series of standards

5. Personal attributes

  • Excellent interpersonal and communication skills
  • Strong analytical and problem-solving skills, with a proactive approach
  • Self-motivated, and able to work with minimal supervision
  • Dedication and enthusiasm to work in a team
  • Ability to work efficiently and complete diverse tasks in a timely manner

6. Qualifications and experience required


  • A university education to degree standard or equivalent industry experience.


  • A recognised professional InfoSec certification such as CISSP, CISA, CEH, or GIAC GCIH is essential.


  • An understanding of common security frameworks and legislation, their impact, and implementation through workable policies, e.g., ISO 27001, GDPR.
  • Experience of configuring and administering network security and network virtualisation security technologies including, but not limited to, Fortinet firewalls, VPNs, intrusion detection/prevention systems, email & web filters, logging & monitoring platforms, and network admission control.
  • Experience of implementing endpoint security technologies and products including, but not limited to, anti-virus, host-based intrusion detection, posture checking, and local security policies.
  • Experience of implementing cloud security technologies and products such as, but not limited to, Openstack, Kubernetes and vSphere NSX.
  • A working knowledge of Microsoft and Unix operating systems, and their configuration to support security controls.
  • An understanding of tools to support event monitoring and incident investigation.
  • Experience with vulnerability assessment or penetration testing methodologies and practices.
  • Demonstrated experience of working with ISO 27001 to support the implementation of policies into specific, monitored, measurable controls.
  • Experience in scripting, preferably using python, ansible and jinja. (desirable)
  • An understanding of network routing/switching technologies such as, but not limited to, BGP, OSPF and VRFs. (desirable)
  • Experience of working in an international environment. (desirable)
  • Experience of working in Security Operations Centre (SOC) environment. (desirable)

Knowledge and skills (including language)

Candidates must have knowledge and skills in the following areas:

  • Information Systems/Network Security
  • Identity and Access Management
  • Information Assurance
  • Infrastructure Design
  • Vulnerabilities Assessment
  • Security Incident Handling & Response

Candidates should be comfortable working with commercial and open source technologies.

Candidates must be able to work effectively in English and interviews will be conducted in English.

7. Other information

The successful candidate will be recruited at the A2 grade, according to the scales of the Co-ordinated Organisations and the annual basic salary will be 60,590.64 net of tax. This position is assigned to the employment category STF-C as defined in the Staff Regulations.

Full details of salary scales and allowances are available on the ECMWF website at, including the Centre’s Staff Regulations regarding the terms and conditions of employment.

Starting date: As soon as possible.

Length of contract: Four years, with the possibility of a further contract.

Location: The position will be based in the Reading area, in Berkshire, United Kingdom.

8. How to apply

Please apply by completing the online application form available at

To contact the ECMWF Recruitment Team, please email

At ECMWF, we consider an inclusive environment as key for our success. We are dedicated to ensuring a workplace that embraces diversity and provides equal opportunities for all, without distinction as to race, gender, age, marital status, social status, disability, sexual orientation, religion, personality, ethnicity and culture. We value the benefits derived from a diverse workforce and are committed to having staff that reflect the diversity of the countries that are part of our community, in an environment that nurtures equality and inclusion.

Staff are usually recruited from among nationals of the following Member States and Co-operating States:

Austria, Belgium, Bulgaria, Croatia, Czech Republic, Denmark, Estonia, Finland, former Yugoslav Republic of Macedonia, France, Hungary, Germany, Greece, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Montenegro, the Netherlands, Norway, Portugal, Romania, Serbia, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and the United Kingdom.

Staff from other countries may be considered in exceptional cases

published: 20 December 2019     Please mention EARTHWORKS when responding to this advertisement.