Great that you're thinking about a career with BSI!

Purpose of the role

Communicates information security risks and issues to business managers and others.

Performs basic risk assessments for small information systems.

Contributes to vulnerability assessments.

Applies and maintains specific security controls as required by organisational policy and local risk assessments.

Takes action to respond to security breaches in line with security policy and records the incidents and action taken.

Investigates security breaches in accordance with established procedures.

Assists users in defining their access rights and privileges.

Performs non-standard security administration tasks and resolves security administration issues.

Person Specification

Attribute

Essential Criteria (Expert/Proficient)

(required to do the job)

a.    Proficient in Configuration Management

b.    Proficient in Corporate, Industry and Professional Standards

c.     Proficient in Access Control Systems

d.    Proficient in Incident Management Tools

e.    Proficient in Infrastructure/System Security

f.     Familiar with Network Data Security

g.    Familiar with Network Data Gathering Techniques

h.    Familiar with Network Traffic Analysis

Desirable Criteria (Familiar)

Knowledge and

Experience

(e.g. Type, level)

a.    Familiar with Operational/Service Architecture

b.    Familiar with Infrastructure Configuration

c.     Aware of Application Systems

d.    Aware of Infrastructure Architecture

e.    Aware of Cloud/ Virtualisation

f.     Aware of BYOD

g.    Aware of Information Elicitation Techniques

h.    Aware of Legislation

i.      Aware of Risk Management

j.     Aware of Problem Management Tools and Techniques

Skills and Abilities

(e.g. Teamwork,

IT, Communication,

Relationships)

a.    Analytical Thinking

b.    Information Acquisition

Qualifications

(e.g. Technical)

Formal qualifications in or extensive experience of:

Information Security

Security Administration

CCNA - Cisco Certification - Associate

Certificate in Information Security Management Principles (Foundation)

SSCP - Systems Security Certified Practitioner

Security +

A.Inst.ISP Associate of the Institute of Information Security Professionals

ISSMP - Information Systems Security Management Professional

Registered IT Technician (RITTech)

Certified Cyber Professional (CCP)

AWS Certified Security Specialty

Incident Responder

Azure / MCP

Personal Qualities /

Aptitudes

(e.g. Initiative, flexibility,

commitment, reliability)

a.    Attention to Detail

Our Excellence Behaviours: Customer Focus, Accountability, Respect, Communication, Achievement & Leading and Managing others