Job Description Network Security Analyst Accountable to: Scope of Job: Technical Services Manager To ensure front-line defence of Airport networks and networked services, protecting information from unauthorised access and violations in addition to assisting colleagues in other sections of the Airport Engineering department as required. Responsibilities / Tasks: Operational (Primary) Being aware of current affairs and their potential impact on the business Conduct and coordinate penetration / social engineering / vulnerability / web application / wireless assessments Create and deliver training to non-technical users to mitigate the human factor relative to network security Define a baseline(s) for legitimate network behaviours Define new and maintain existing technical control measures Determine security violations and inefficiencies through logging / audits Develop coordinated responses to security events Develop security policies and a set standard for best practise Identify and resolve potential and actual security shortcomings Implement security improvements by assessing current situation, evaluating trends and anticipating outcomes Perform systems and network hardening Prepare reports that document security breaches and the extent of the damage Recognise problems by identifying abnormalities Recommend security enhancements to management Research of latest security trends Set up resource monitoring and alerts where applicable Tuning of ACL, AV, CF, DLP, Firewall, IDS and IPS rules / sensors Update of systems and services to maintain required vulnerability threshold Validation and update where applicable of disaster recovery and business continuity processes Working towards the Airport achieving and maintaining recognised network / information security accreditations Operational (Secondary) Be(come) familiar with and provide general 1 st /2 nd line reactive maintenance and support for IT systems across the Airport estate, eg: HR/Public/Form/036S (staff) 1 of 5 Issue 03
Building Access Control / Physical Asset Monitoring Services Car Park Control Systems CCTV Systems Check-in Systems Desktop / Laptop / Tablet / GSM Devices Emergency Comms & Facilities Network / Fixed Telephony Printers Physical & Virtual Servers and the Services Hosted Therein Public Announcement and Information Display Systems Any other services that at a later date fall under the remit of Airport Engineering Systems Provide support directly to the Airport Engineering department relating to longer term projects, eg: Development and Maintenance of Bespoke Systems Server and Systems Maintenance / Replacement System Installation, Testing, Evaluation and Commissioning Disaster Recovery Contingency Planning and Validation Development and Maintenance of System Documentation Any other projects / systems works which may from time to time be requested by management Assist in the overall function of the Airport Engineering department and work in any of the departmental sections (with appropriate supervision) at the request of departmental management. Assist in the provision of technical services / support to a major emergency, incident or special event. Develop customer / supplier relationships to enhance service offering. Ensure all systems are comprehensively documented and the information properly archived. Establish appropriate working procedures to ensure the provision of a consistently high quality level of systems implementation and support. Follow procedures with regard to change control. Keep up to date with developments in the industry and make recommendations to management for employing such developments where appropriate. Maintain backup systems for all stored information with consideration to sustainability. Maintain documentary records of all work in support of regulatory requirements examined by external authorities. Play a key role in the future development, planning and implementation of technical systems across the estate. Provide input to and assist with the creation and maintenance of policies and procedures for the effective use of technical systems across the Airport estate. Provide on-call support on site / via VPN if required by the department to meet service delivery obligations HR/Public/Form/036S (staff) 2 of 5 Issue 03
Provide out of hours support to ensure operational continuity and an integral response to an emergency incident / assist appropriately based on situations arising. Responsible for ownership of reported issues through to conclusion / appropriate escalation. Understand the roles of other teams and draw on expertise to resolve issues where appropriate. Safety To ensure knowledge and understanding of all appropriate safety responsibilities as detailed in the Airport / Aerodrome Manual. To carry out duties in a manner which minimises the incidents and accidents within your Department, particularly promoting a safe working environment. To advise your Manager of any safety occurrence or system failure and to identify and report any situation of potential risk or concern affecting safety or system sustainability of which you are aware. Security To ensure knowledge and understanding of all appropriate security responsibilities as detailed in this job description and other relevant policy documents. To ensure that standards set at security training courses are adhered to. Key Performance Indicators To ensure the delivery of operational key performance indicators as defined by your Manager. Financial To be aware of the costs associated with the scope of the role and to strive to provide value at all times. Stakeholder Relationship To interface with relevant internal and external stakeholders, positively promoting the Airport. The above list is not exhaustive, due to business needs individuals may be required to carry out additional duties. To ensure maximum efficiencies within the operation, flexibility is essential. Individuals will be required to assist in other areas. Review By: Review Frequency: Technical Services Manager Annually HR/Public/Form/036S (staff) 3 of 5 Issue 03
General Training: Induction Course Workplace Induction Airside Driver Training Full Blue Permit Standard Attributes *This role is rated as STAFF The following shows the standard list of attributes against which all roles shall be rated. * Different levels of each attribute will be required to perform at each of the three key levels. Observable behaviours are detailed in attached appendices. Company Values Other Attributes Integrity Responsibility/Accountability Professionalism Passion Communication Motivation Team Work Leadership Assertiveness & Influencing Judgement and Decision Making Initial Requirements Candidate should ideally be degree educated however degree specific relevance to Computer Science / Information Security / Network Engineering (or equivalent) is not essential. Practical skills and experience that would be advantageous: - Ability to clearly articulate complex concepts both written and verbally - Ability to work methodically and very detail oriented - Eagerness to dig into technical problems and examine them from all sides - Evaluation of network and systems design - Excellent presentation and communication skills - General programming / software development concepts and software analytical skills - General Server Administration and Desktop Support Skills - Proficiency in programming (eg: C / C++, Java), disassemblers, assembly language and knowledge of at least one scripting language (eg: Perl, PHP, Python) - Strong Analytical and Diagnostic Skills - Understanding of administration, architecture and management of operating systems, networking and virtualisation - Understanding of how network routers, switches and security appliances work - Experience of / exposure to: o Access Control Technologies o Anti-X Endpoint Protection Services o Intrusion Detection / Prevention Technologies o Linux Operating Systems o Microsoft Technologies (Client, Server and Virtualisation) HR/Public/Form/036S (staff) 4 of 5 Issue 03
o Managed Access Points, Switches, Routers, Security Appliances and Other Network Infrastructure o Network Analyser o Remote Access Technologies o Telephony Technologies o Web Application Technologies o Wireless Technologies For minimum requirements regarding qualifications, experience, competencies and attributes required to initially apply for the position, please refer also to the Vacancy Notice. It is your responsibility to ensure your own health, safety and welfare and that of others who may be affected by what you do or do not do. Agreed (Signature of staff member) Print Name Authorised by (Line Manager) Date Attached documents: Appendix 1 Form 036A - Attributes & Behaviours HR/Public/Form/036S (staff) 5 of 5 Issue 03