Cyber Security Engineer

Cyber Security Engineer - Inside IR35

Contract Term: 6 Months

Contracting Authority: Greater Manchester Police

Location: Remote/Home based

Imagine having a talent that could benefit someone you’ve never met and solve problems you didn’t even know existed. Well, you do, and you can. And we’re here to help you do just that. At PSR we are the go-to place for talented contractors and temps for a rich variety of public sector roles.

The Security Engineer plays an integral role in delivering Technical Security in Greater Manchester Police (GMP). The contractors are expected to that you will have sufficient experience and expertise to lead as well as deliver required improvements and tasks.

The Security Engineer will help to deliver and to enhance operational security, vulnerability scanning and patch management processes throughout their lifecycles.

This is a hands-on role where the contractors will be assessing and applying patches through appropriate layers of the OSI model and may be requested to support other operational security and cybersecurity requirements.

Specific Deliverables

• Partner with Information Systems, Information Technology, and the Business to stay current with vulnerability information across different environments.
• Assist in defining and implementing vulnerability scanning program throughout the hybrid on-premises and cloud environment.
• Assist in performing reoccurring and on demand vulnerability scanning activities utilizing existing security tooling.
• Improve existing vulnerability management lifecycle. This includes automated asset discovery and cataloguing, as well as vulnerability detection, communication, and remediation.
• Provide technical support for vulnerability management and patch management projects.
• Define and implement relevant data visualization solutions, including appropriate dashboards, and reports.
• Work with the Business to effectively communicate the risks of identified vulnerabilities and make recommendations regarding the selection of appropriate security controls to mitigate identified risks.
• Work with technology teams to develop, select, implement, and automate appropriate security solutions to keep system data protected from internal and external threats.
• Work with technology teams to define clear and measurable security targets (Protection-Level Agreements).
• Programmatically aggregate relevant compliance metrics by integrating with existing security tools' API.
• Define and implement relevant data visualization solutions, including appropriate dashboards, and reports.
• Assist in improving vulnerability scanning and patch management by identifying appropriate technologies that integrate with vulnerability scanning and patch management technologies.
• Working with team members to create, update and maintain the patching and anti-malware policies and processes required to support the patching and anti-malware strategy across the business
• Monitoring of patching and vulnerability feeds across multiple systems, devices, and applications.
• Working with the Security Operations Team to prioritise activities based on actual material risk to the business
• Partnering with the Asset Management Team to ensure all systems, existing or new, are inventoried for software and brought within the scope of patching and anti-virus activities
• Agreeing suitable maintenance windows for patching and updating with business (and indirectly) client representatives
• Preparing for patch and anti-malware/EDR roll-out through testing on test environments or subsets of low-risk systems to minimize the likelihood of impacts to production systems and services

Oversee Remediation Activities:

• Manage tracking and remediation of vulnerabilities by leveraging agreed-upon action plans and timelines with responsible technology developers and support teams.
• Recommend appropriate policy, standards, process, and procedural updates as part of comprehensive remediation solutions.
• Validate remediation by reviewing application updates or deployed mitigations to verify resolution.

If this role sounds like something that you would be interested in, please click the link to apply and get in touch with one of our PSR team now or contact hannah.kenna@publicsectorresourcing.co.uk.

"In applying for this role, you acknowledge the following: this role falls in scope of the Off Payroll Working in the Public Sector legislation. Any rates of payment quoted will reflect the gross rate per day for the assignment and will be subject to appropriate taxes and statutory costs. As such the payment to the intermediary and your income resulting from this contract will be different."

Please be aware that this role can only be worked within the UK and not Overseas.

Please note, if successful for this role, you will be required to read and agree to Greater Manchester Police’s code of ethics which can be found here –  https://www.college.police.uk/ethics/code-of-ethics