Cyber Security Analyst
1. Position information
Vacancy No.: VN19-52
Department: Computing Department
Grade: A2 Section: Platforms and Services Section
Job Ref. No.: STF-C/19-52
Reports to: Networks and Security Team Leader
Publication Date: 13 December 2019 Closing Date: 29 January 2020
2. About ECMWF
ECMWF is both a research institute and a 24/7 operational service, producing and disseminating
numerical weather predictions to its Member States. ECMWF carries out scientific and technical
research directed to the improvement of its forecasts, collects and processes large amounts of
observations, and manages a long-term archive of meteorological data. Satellite and in situ
observations provide the information for up-to-date global analyses and climate reanalyses of the
atmosphere, ocean and land surface.
The Platforms and Services Section forms part of ECMWF’s Computing Department, and is
responsible for delivering all Information, Communication, and Technology (ICT) services that exist
outside of the High-Performance Computing Facility, Data Handling System and Online Storage.
Within the Platforms and Services Section, the Networks and Security Team is responsible for
designing, procuring and deploying the Networks and Security infrastructures and their associated
Operational Security services, and their day-to-day operational running. The co-ordination of
Information Security activities also takes place within the team, reporting to the Centre’s Director of
Computing and ECMWF’s Information Security Governance Board.
3. Summary of the role
The Cyber Security Analyst is responsible for the operational security matters related to Information
Technology security within ECMWF. The successful candidate will report to the Networks and
Security Team Leader and coordinate the implementation of agreed controls across the organisation
to reduce information and IT risks and ensure information assets and technologies are adequately
4. Main duties and key responsibilities
Candidates will have the expertise and in-depth knowledge to adopt and develop standards and new
techniques for Information Security (InfoSec), working with internal and external stakeholders to
introduce these into operations.
Designing new security systems or upgrading existing ones
- Providing technical advice and drafting policies in the area of Information Security
- Configuring and managing network security systems, including firewalls and intrusion detection
- and prevention systems
- Protecting digital information assets and information systems against unauthorised access,
- modification or destruction
- Monitoring and reporting on established Information Security controls
- Cooperating with Information Security representatives in all departments and at all levels of the
- Coordinating regular meetings with InfoSec experts from ECMWF's Member and Cooperating
- Executing regular Information Security audits together with independent external auditors
- Coordinating IT investigations, security incident response, digital forensics and electronic
- Undertaking operational risk assessments to cover changes in the environment
- Recommending solutions to improve IT infrastructure security
- Increasing awareness of Information Security within ECMWF, including training and
- Representing the organisation in conferences and working groups, when required
- Delivering the information security framework in line with ECMWF’s policies, industry best
- practice and associated industry standards, including ISO27000 series of standards
- 5. Personal attributes
- Excellent interpersonal and communication skills
- Strong analytical and problem-solving skills, with a proactive approach
- Self-motivated, and able to work with minimal supervision
- Dedication and enthusiasm to work in a team
- Ability to work efficiently and complete diverse tasks in a timely manner
6. Qualifications and experience required
Education: A university education to degree standard or equivalent industry experience.
Professional: A recognised professional InfoSec certification such as CISSP, CISA, CEH, or
GIAC GCIH is essential.
Experience: An understanding of common security frameworks and legislation, their impact,
and implementation through workable policies, e.g., ISO 27001, GDPR.
Experience of configuring and administering network security and network
virtualisation security technologies including, but not limited to, Fortinet
firewalls, VPNs, intrusion detection/prevention systems, email & web filters,
logging & monitoring platforms, and network admission control.
Experience of implementing endpoint security technologies and products
including, but not limited to, anti-virus, host-based intrusion detection, posture
checking, and local security policies.
Experience of implementing cloud security technologies and products such as,
but not limited to, Openstack, Kubernetes and vSphere NSX.
A working knowledge of Microsoft and Unix operating systems, and their
configuration to support security controls.
An understanding of tools to support event monitoring and incident
Experience with vulnerability assessment or penetration testing methodologies
Demonstrated experience of working with ISO 27001 to support the
implementation of policies into specific, monitored, measurable controls.
Experience in scripting, preferably using python, ansible and jinja. (desirable)
An understanding of network routing/switching technologies such as, but not
limited to, BGP, OSPF and VRFs. (desirable)
Experience of working in an international environment. (desirable)
Experience of working in Security Operations Centre (SOC) environment.
Knowledge and skills (including language)
Candidates must have knowledge and skills in the following areas:
- Information Systems/Network Security
- Identity and Access Management
- Information Assurance
- Infrastructure Design
- Vulnerabilities Assessment
- Security Incident Handling & Response
Candidates should be comfortable working with commercial and open source
Candidates must be able to work effectively in English and interviews will be
conducted in English.
7. Other information
The successful candidate will be recruited at the A2 grade, according to the scales of the Coordinated Organisations and the annual basic salary will be £60,590.64 net of tax. This position is
assigned to the employment category STF-C as defined in the Staff Regulations.
Full details of salary scales and allowances are available on the ECMWF website at
www.ecmwf.int/en/about/jobs, including the Centre’s Staff Regulations regarding the terms and
conditions of employment.
Starting date: As soon as possible.
Length of contract: Four years, with the possibility of a further contract.
Location: The position will be based in the Reading area, in Berkshire, United Kingdom.
8. How to apply
Please apply by completing the online application form available at www.ecmwf.int/en/about/jobs.
To contact the ECMWF Recruitment Team, please email email@example.com.
Please refer to the ECMWF Privacy Statement. For details of how we will handle your personal data
for this purpose, see: https://www.ecmwf.int/en/privacy.
At ECMWF, we consider an inclusive environment as key for our success. We are dedicated to
ensuring a workplace that embraces diversity and provides equal opportunities for all, without
distinction as to race, gender, age, marital status, social status, disability, sexual orientation, religion,
personality, ethnicity and culture. We value the benefits derived from a diverse workforce and are
committed to having staff that reflect the diversity of the countries that are part of our community, in
an environment that nurtures equality and inclusion.
Remember to mention gradireland when contacting employers!