Cyber Security Analyst

1. Position information

Vacancy No.: VN21-39
Grade: A2
Job Ref. No.: STF-PL/21-39
Location: Reading, UK
Department: Computing
Section: Platforms & Services
Reports to: Networks and Security Team Leader
Closing Date: 31 August 2021

2. About ECMWF

ECMWF is the European Centre for Medium-Range Weather Forecasts. It is an intergovernmental organisation created in 1975 by a group of European nations and is today supported by 34 Member and Co-operating States, mostly in Europe. The Centre’s mission is to serve and support its Member and Co-operating States and the wider community by developing and providing world-leading global numerical weather prediction. ECMWF functions as a 24/7 research and operational centre with a focus on medium and long-range predictions and holds one of the largest meteorological archives in the world. The success of its activities relies primarily on the talent of its scientists, strong partnerships with its Member and Co-operating States and the international community, some of the most powerful supercomputers in the world, and the use of innovative technologies such as machine learning across its operations.

Over the years, ECMWF has also developed a strong partnership with the European Union, and for the past seven years has been an entrusted entity for the implementation and operation of the Climate and the Atmosphere Monitoring Services of the EU Copernicus Programme, as well as a contributor to the Copernicus Emergency Management Service. The collaboration does not stop there and includes other areas of work, including High Performance Computing and the development of digital tools. It is enabling ECMWF to now provide data and products covering weather, climate, air quality, fire and flood prediction and monitoring.

ECMWF has recently become a multi-site organisation, with its headquarters based since its creation in Reading, UK, its new data centre opening in 2021 in Bologna, Italy, and new offices, also opening in 2021 in Bonn, Germany.

It is foreseen that ECMWF will be a major partner in the implementation of the Destination Earth (DestinE) initiative starting later in 2021, together with ESA and EUMETSAT as partners. The objective of the European Commission DestinE initiative is to deploy several highly accurate thematic digital replicas of the Earth, called Digital Twins, to monitor and predict natural and human activities as well as their interactions, to develop and test scenarios that would enable more sustainable developments and support corresponding European policies for the Green Deal.

For additional details, see www.ecmwf.int/.

The Platforms and Services Section forms part of ECMWF’s Computing Department and is responsible for delivering a wide range of services including mission-critical virtual and bare-metal server infrastructure, data centre and wide area networks, security, monitoring and analytics, and enterprise ICT.

Within the Platforms and Services Section, the Networks and Security Team is responsible for designing, procuring and deploying the Networks and Security infrastructures and their associated Operational Security services, and their day-to-day operational running. The co-ordination of Information Security activities also takes place within the team, reporting to the Centre’s Director of Computing and ECMWF’s Information Security Advisory Board.

3. Summary of the role

The Cyber Security Analyst will be responsible for operational security policy matters related to Information Technology security within ECMWF. They will report to the Networks and Security Team Leader and coordinate the implementation of agreed controls across the organisation to reduce information and IT risks and ensure information assets and technologies are adequately protected.

4. Main duties and key responsibilities

  • Configuring and managing network security systems, including firewalls and intrusion detection and prevention systems
  • Designing new security systems or upgrading existing ones
  • Protecting digital information assets and information systems against unauthorised access, modification or destruction
  • Monitoring and reporting on established Information Security controls
  • Cooperating with Information Security representatives in all departments and at all levels of the organisation
  • Coordinating regular meetings with InfoSec experts of ECMWF's Member and Cooperating States
  • Executing regular Information Security audits together with independent external auditors
  • Coordinating IT investigations, security incident response, digital forensics and electronic discovery
  • Undertaking operational risk assessments to cover changes in the environment
  • Providing technical advice and policy knowledge in the area of Information Security
  • Recommending solutions to improve IT infrastructure security
  • Increasing awareness of Information Security within ECMWF, including training and communication
  • Delivering the information security framework in line with ECMWF’s policies, industry best practice and associated industry standards
  • Providing general day-to-day support for the services provided by the team, including, on a regular basis, 24-hour on-call support for the mission-critical services

5. Personal Attributes

  • Excellent interpersonal and communication skills
  • Strong analytical and problem-solving skills, with a proactive approach
  • Self-motivated, and able to work with minimal supervision
  • Ability to maintain effective communication and documentation with the rest of the team and a distributed user community
  • Ability to work efficiently and complete diverse tasks in a timely manner

6. Qualifications and experience required

Education

  • A university degree (ECF Level 6) or equivalent industry experience.

Professional

  • A recognised professional InfoSec certification such as CISSP, CISA, CEH, or GIAC GCIH is essential.

Experience

  • An understanding of common security frameworks and legislation, and their impact, e.g., ISO 27001, GDPR.
  • Experience of configuring and administering network security and network virtualisation security technologies including, but not limited to, Fortinet firewalls, VPNs, intrusion detection/prevention systems, email & web filters, logging & monitoring platforms, and network admission control.
  • Experience of implementing endpoint security technologies and products including, but not limited to, anti-virus, host-based intrusion detection, posture checking, and local security policies.
  • Experience of implementing cloud security technologies and products such as, but not limited to, OpenStack, Kubernetes and vSphere NSX.
  • Demonstrated experience of working with ISO 27001 to support the implementation of policies into specific, monitored, measurable controls.
  • A working knowledge of Microsoft and *nix operating systems, and their configuration to support security controls.
  • An understanding of tools to support event monitoring and incident investigation.
  • Experience with vulnerability assessment or penetration testing methodologies and practices.
  • Experience in scripting, preferably using python, ansible and jinja. (desirable)
  • An understanding of network routing/switching technologies such as, but not limited to, BGP, OSPF and VRFs. (desirable)
  • Experience of working in an international environment. (desirable)
  • Experience of working in Security Operations Centre (SOC) environment. (desirable)

Knowledge and skills (including language)

Candidates must have knowledge and skills in the following areas:

  • Information Systems/Network Security
  • Identity and Access Management
  • Information Assurance
  • Infrastructure Design
  • Vulnerabilities Assessment
  • Security Incident Handling & Response

Candidates must be able to work effectively in English and interviews will be conducted in English.

A good knowledge of one of the Centre’s other working languages (French or German) is not required but would be welcome.

7. Other information

Grade remuneration

The successful candidate will be recruited at the A2 grade, according to the scales of the Co-ordinated Organisations and the annual basic salary will be Ł62,166.00 net of tax. This position is assigned to the employment category STF-PL as defined in the Staff Regulations.

Full details of salary scales and allowances are available on the ECMWF website at www.ecmwf.int/en/about/jobs, including the Centre’s Staff Regulations regarding the terms and conditions of employment.

Starting date: 1 November 2021, or as soon as possible thereafter.

Length of contract: The total contract duration is expected to be four years (with the possibility of further extension). However, please note that the DestinE Contribution Agreement is likely to be divided in phases, the first of which will last for two and a half years. The Centre is therefore required to contract initially for the same period. Extensions to complete the four-year period (which could be subsequently extended even further) will be offered to the successful candidate as soon as funding beyond the initial phase is confirmed.

Location: The position will be based in the Reading area, in Berkshire, United Kingdom.

Successful applicants and members of their family forming part of their households will be exempt from immigration restrictions.

8. How to apply

Please apply by completing the online application form available at www.ecmwf.int/en/about/jobs/.

To contact the ECMWF Recruitment Team, please email jobs@ecmwf.int.

Please refer to the ECMWF Privacy Statement. For details of how we will handle your personal data for this purpose, see: https://www.ecmwf.int/en/privacy.

At ECMWF, we consider an inclusive environment as key for our success. We are dedicated to ensuring a workplace that embraces diversity and provides equal opportunities for all, without distinction as to race, gender, age, marital status, social status, disability, sexual orientation, religion, personality, ethnicity and culture. We value the benefits derived from a diverse workforce and are committed to having staff that reflect the diversity of the countries that are part of our community, in an environment that nurtures equality and inclusion.

Applications are invited from nationals from ECMWF Member States and Co-operating States, listed below:

Austria, Belgium, Bulgaria, Croatia, Czech Republic, Denmark, Estonia, Finland, France, Hungary, Germany, Greece, Iceland, Ireland, Israel, Italy, Latvia, Lithuania, Luxembourg, Montenegro, Morocco, the Netherlands, Norway, North Macedonia, Portugal, Romania, Serbia, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and the United Kingdom.

Applications from nationals from other countries may be considered in exceptional cases.

published: 16 July 2021     Please mention EARTHWORKS when responding to this advertisement.