Description Employer description:
As one of the UK's major port groups, we operate at 12 locations across the country, connecting you and your cargo with key global markets.
Our ethos is built on creating trusted, long-lasting partnerships that allow us to understand customers and their unique requirements. We aim to be a seamless extension of your business, providing in-depth knowledge and time-served experience to improve supply chains. Overview:
We are now looking for an eager candidate to join us as an apprentice.
You will have the opportunity to gain valuable skills, knowledge and experience as you complete a Level 4 Cyber Security Technologist / Cyber Security Risk Analyst Apprenticeship.
The primary role of a Cybersecurity Technologist is to apply an understanding of cyber threats, hazards, risks, controls, measures and mitigation's to protect organisations systems and people.
The role will focus on areas such as operations, risk, governance & compliance.
Develop and apply practical knowledge of information security to deliver solutions. Salary:
£18,000 per annum. Key Responsibilities:
What we are looking for: Essential attributes:
- Discover (through a mix of research and practical exploration) vulnerabilities in systems using enterprise tooling
- Analyse and evaluate security threats and hazards to a system or service or processes
- Be aware of and demonstrate use of relevant external sources of threat intelligence or advice (e.g. CERT UK)
- Combine different sources to create an enriched view
- Research and investigate some common attack techniques and recommend how to defend against them.
- Be aware of and demonstrate use of relevant external sources of vulnerabilities (e.g. OWASP)
- Undertake security risk assessments for IT systems without direct supervision and propose basic remediation advice
- Monitor and respond to 'phishing' emails
- Keep up to date with the latest security and technology developments
- Research/evaluate emerging cyber security threats and ways to manage them
- Configure logging and monitoring systems
- Patching and updating systems
- Take an active part in a security audit against a recognised cyber security standard, undertake a gap analysis and make recommendations for remediation
- Performing both internal and external security audits
- Continuously updating the company's incident response and disaster recovery plans
- Conduct a cyber-risk assessment against an externally (market) recognised cyber security standard using a recognised risk assessment methodology
- Review system configuration standards and ensure systems are configured accordingly
- Design and implement a simple 'security awareness' campaign to address a specific aspect of a security culture
Desired skills & experience:
- Well organised with ability to work to tight deadlines
- Strong written and verbal communication skills
- Strong understanding and respect for confidentiality
- Maintains a professional conduct at all times, remaining calm and in control
- Good time management skills
- Willingness to develop with continual learning
- Ability to research information and draw conclusions
- Logical problem-solving abilities
Entry requirements: The entry requirements for this programme are as follows:
- Basic programming skills
- Scripting (Bash, PowerShell)
- Experience with Linux and Windows operating systems
- Knowledge cloud logging tools
- Incident Response
- Network Defence
- NIST CVSS Vulnerabilities and scoring system
- An A-Level in ICT
- OR an International Baccalaureate at Level 3 in ICT
- OR a Level 3 apprenticeship in a similar subject
- OR a BTEC Extended Diploma in IT (180 credits)
- Progression opportunities with a growing business
- Learning and development opportunities when needed
QA's apprenticeships are funded by the Education & Skills Funding Agency (ESFA), an executive agency of the Department for Education.
To be eligible for a Government funded apprenticeship you must have lived in the UK or European Economic Area (EEA) for the last 3 consecutive years.