21 Jul, 2018
The Bank of England is the UK's central bank. Our mission is to deliver monetary and financial stability for the British people. The Bank of England is a diverse organisation. Each of its 4,000 people are committed to public service and dedicated to promoting the good of the people of the United Kingdom by maintaining monetary and financial stability. The Technology Division provides information and system technology services to all business areas in the Bank as part of Central Services, and is responsible for all aspects of the Bank's project and programme delivery. We exist to support the Bank in meeting its key objectives and strategic priorities. The Technology Division's structure is designed to reflect the delivery lifecycle for technology. New technologies and investments are planned and designed and then delivered, operated and maintained in a way that ensures information and data is kept safely and securely. The Division also enables and delivers significant business change initiatives that impact all areas of the Bank Department Overview The Technology IT Security Department are responsible for ensuring the Bank's Technology and Data are protected against ever increasing Cyber Attacks. This area is responsible for the delivery of the Bank's 5 year Cyber 2020 strategy, which includes working with other teams in this area such as the Security Operations Centre, the Security and Privacy Division with focus on maintenance and further development of the IT Security Monitoring and Management toolsets towards effectively and efficiently monitoring the security landscape of the Bank's IT estate. This area of the bank is very dynamic, challenging and rewarding with many opportunities to develop, evolve skillsets in other technologies and disciplines. Job Description The Security System Engineering team are a Centre of Excellence within the Technology IT Security Division. They are responsible for the daily management, maintenance and support of a set of specialised IT Security Monitoring and Management Applications used by teams within Technology & the Security Privacy Division, for the detection and prevention of Cyber Attacks that could compromise our systems and data. The Security System Engineering team consists of 7 engineers who support, maintain and develop the Bank's IT Security systems and processes which are critical to the overall success of the Cyber 2020 program. The Security Systems Engineers' main responsibilities consist of: Supporting the Banks Cyber 2020 Program work streams, aligning Vendor Service plans and providing input towards Internal Audit actions. Daily maintenance (availability, integrity and confidentiality) of specialised IT Security Monitoring and Management Applications. Evolving each service towards meeting our internal customer needs (tactical, operational and strategic), thus further improving the Banks Cyber Security Landscape. The primary responsibility for this role will be to work alongside an existing Sailpoint Administrator to aid further development through testing and introducing best practice with delivery, maintenance and ongoing support of this service. This will involve ensuring that the platform is fully operational and configured in line with best practice, whilst also responding to new requirements for further enhancements such as integrations and additional workflows. There will also be the opportunity to support other IT Monitoring Applications the team support. Role Requirements Minimum Criteria The Security System Engineering Team work closely with other teams in Technology Division to complement work already underway and will be expected to help improve the capability and maturity of Sailpoint including integration with other systems. Main responsibilities include supporting existing Administrator: Monitoring of aggregation tasks and investigating errors as a result of failure messages. Utilise the system debug mode for admin functions such as deleting applications or correlating accounts from identities by modifying XML. Monitoring speed and usage of the system (CPU) - Alert, performance and threshold tuning and analysis. Ability to maintain and update local batch file from MFT share to local share of application servers. Use knowledge of Beanshell and Java to filter out any unnecessary data from feeds if required and create custom rules where required. Utilise knowledge of MS SQL and Oracle infrastructure to write queries to integrate with databases via ODBC connection. Perform deployment, configuration and system recovery tasks such as installing the application server Installing and maintaining Tomcat Installing and maintaining Sailpoint identity IQ Additional security admin tasks (i.e. changing standard usernames, known vulnerabilities of pen testing) Branding on UI (BoE logo's) BoE specific requirements (forwarding of responsibilities options etc.) Traffic encryption - creating Keystore Certificate / importing Certificates Prevent unsecure access to servers by commenting out unsecure routes in underling server properties XML files. Application upgrades and patching tasks such as using SailPoint matrix on installation path Familiar with patching release cycle & release notes available from vendor. Backup of existing installation and data. Starting / stopping windows services on application servers Extracting patch files via CMD line Upgrading database via script Installing patch via cmd line Checking version via debug mode within application. Participation in BAU activities such as ensuring SLA's are not breached, thus meeting Service Delivery Performance Targets. Becoming involved in Bank IT Projects and Incident, System changes (Complete Service Requests as directed by Manger). Creating and maintaining System Diagrams and Operational support documentation. Proactively identifying and suggesting enhancements in processes and technologies used by the IAM team. Production of MI reports and maintenance of dashboards. Represent the team in audits involving the IDAM solution Attend project meeting as the IDAM SME (Subject Matter Expert) Essential Criteria Please insert the essential requirements for the role. This includes requirements that cannot be judged from a CV such as a competency or soft skill Proven implementation and support experience of Identity Access & Management toolsets, especially Sailpoint. OS Microsoft SQL and IIS skills Experience of system and application monitoring Strong requirements gathering, system analysis and troubleshooting experience. Ability to translate business requirements into functional product enhancements. Excellent interpersonal skills Excellent planning and time management skills Experience of successfully working within project teams to project deadlines, delivering to multiple stakeholders. Effective Vendor Management skills. Good written and verbal communication skills Able to work with customers at all levels Able to work as part of the team and independently, as required Able to manage own workload and work under pressure to a successful outcome. Desirable Criteria Please insert the any desirable requirements for the role Strong OS knowledge (Wintel and Linux) Experience in scripting (Perl, SQL, PowerShell, VBScript, Python), would be beneficial. Business Continuity Planning and Disaster Recovery execution Experience of integrating 3rd party management toolsets Knowledge of SNMP and Network Protocols (Full OSI especially TCP/IP) Model. ITIL Foundation SIEM Management and Support Experience As a unique institution, we have a reward package which sets us apart from other organisations. It includes a competitive salary, but also a much wider offering, including a defined benefit pension and comprehensive flexible benefits. We also offer a working environment which fully supports individuals through flexible working, wellbeing initiatives including an on-site medical and dental unit. Base Salary £45,900 - £59,220 ( depending on experience) The total package also includes: A non-contributory, career average pension giving you a guaranteed retirement benefit of 1/95th of your annual salary for every year worked. There is the option to increase your pension (to 1/50th) or decrease (to 1/120th) in exchange for salary through our flexible benefits programme each year. The current cost to the Bank of providing this pension is 35% of your salary. A discretionary performance award based on a current award pool and target award of 10%, with a maximum potential award of 25% A 7% benefits allowance with the option to take as salary or purchase a wide range of flexible benefits 25 days annual leave with option to buy up to 13 additional days through flexible benefits Private medical insurance and income protection insurance We anonymise applications so hiring managers will not be able to see your personal information such as name and address when reviewing your submission, including your CV. Please fully complete the application form questions as requested because incomplete submissions may not be reviewed. We continue to build an inclusive culture where everyone can be their whole selves and produce their best work. Our focus on inclusion is intended to build greater diversity in order to reflect the society we serve and be an employer of choice. The closing date for applications is 02-08-2018 Please apply online, ensuring that you answer the application questions and submit your CV.
Bank of England Full time