Job summary
The post is to act as a Cyber Security Tester for Arden and Greater East Midlands CSU (AGEM CSU). The role is key in supporting the management and development of Systems Applications and Reporting Technology (SART), along with being the liaison for security related testing within the CSU. Reporting to the Head of Assurance.
As a member of the software engineering division, you will assist in assessing cyber threats. You will be responsible for preventing, finding and reporting any unauthorised cyber-attacks. The role will ensure that all products, applications, and systems work correctly.
Main duties of the job
- Contribute to the operational planning of Agile delivery, identifying interdependencies across functions, potential impacts on wider organisation, resource requirements and building in contingency and adjustments as necessary
- Keep up to date with the latest security and technology developments.
- Research and evaluate emerging cyber security threats and ways to manage them.
- Monitor for attacks, intrusions and unusual or unauthorized activity
- Engage in 'ethical hacking', for example simulating security breaches.
- Identify potential weaknesses and implement measures, such as firewalls and encryption.
- Liaise with stakeholders in relation to cyber security issues and provide future recommendations
Design and implement test plans to highly complex requirements provided by NHSE/I and primary care specifications and lead all testing requirements
About us
We are a multi award-winning organisation that has achieved the prestigious Investors in People Gold Award for 'We invest in people' and 'We invest in wellbeing' and are passionate about creating an inclusive workplace that promotes and values diversity. We believe that every team member should have the opportunity to contribute and share their ideas.
We reward the hard work and commitment of our people with the following benefits:
- A competitive salary with annual pay reviews
- A generous annual leave entitlement starting at 27 days
- Membership of the NHS Pension Scheme
- Flexible working and family friendly policies, including enhanced parental leave and pay
- A wide range of in-house and external learning and development opportunities
- Access to salary sacrifice and discount schemes
- Access to employee assistance and occupational health services.
Applicants must have the right to work in UK.
Job description
Job responsibilities
- Execute all levels of testing (System, Integration, and Regression) detecting and tracking solution defects and inconsistencies.
- Design and develop automation/test scripts (Automation first approach), providing timely solutions and supporting documentation, including test packs for customer(s). Present test evidence and lead discussions around findings.
- Complete all aspects of Functional & Non-Functional testing ensuring collaboration with the development team to develop effective strategies and test plans.
- Complete security test scripts on products such as XSS and SQL injection tests where applicable on products, generating detailed reports for technical and non-technical staff and stakeholders.
- Investigate security alerts and provide incident response, feeding back to relevant parties where necessary.
- Help troubleshoot and resolve issues and conduct post-release/ post-implementation testing
- Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues.
Job description
Job responsibilities
- Execute all levels of testing (System, Integration, and Regression) detecting and tracking solution defects and inconsistencies.
- Design and develop automation/test scripts (Automation first approach), providing timely solutions and supporting documentation, including test packs for customer(s). Present test evidence and lead discussions around findings.
- Complete all aspects of Functional & Non-Functional testing ensuring collaboration with the development team to develop effective strategies and test plans.
- Complete security test scripts on products such as XSS and SQL injection tests where applicable on products, generating detailed reports for technical and non-technical staff and stakeholders.
- Investigate security alerts and provide incident response, feeding back to relevant parties where necessary.
- Help troubleshoot and resolve issues and conduct post-release/ post-implementation testing
- Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues.
Person Specification
Qualifications and Experience
Essential
- Educated to Degree or equivalent level in a computing, engineering, analysis or related subject.
- Experience of working on large scale, complex, tight deadline projects.
- Experience and can provide evidence of working as a Software Tester.
- Evidence of post qualifying and continuing professional development.
- Experience in an Agile / SCRUM methodology.
Desirable
- ISTQB Foundation level certification, with experience in a relevant field. Relevant Cyber Security qualification
- Experience of working with the NHS.
- Experience of working with Azure Cloud, Azure Sentinel, IT System Monitoring (SIEM)
- Experience of working with Firewalls and WAF
- Knowledge of Encryption systems, security products, SIEM, Firewall/WAF administration
Person Specification
Qualifications and Experience
Essential
- Educated to Degree or equivalent level in a computing, engineering, analysis or related subject.
- Experience of working on large scale, complex, tight deadline projects.
- Experience and can provide evidence of working as a Software Tester.
- Evidence of post qualifying and continuing professional development.
- Experience in an Agile / SCRUM methodology.
Desirable
- ISTQB Foundation level certification, with experience in a relevant field. Relevant Cyber Security qualification
- Experience of working with the NHS.
- Experience of working with Azure Cloud, Azure Sentinel, IT System Monitoring (SIEM)
- Experience of working with Firewalls and WAF
- Knowledge of Encryption systems, security products, SIEM, Firewall/WAF administration
Disclosure and Barring Service Check
This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.
