Ever considered joining the University's Information Security Team?

Our latest job adverts have gone online. The Information Security team is growing and we are recruiting for a variety of roles in both functions of the team:

• OxCERT: Senior Computer Security Specialist (G8, 2 years fixed-term)
• OxCERT: Senior Computer Security Analyst (G6, permanent)
• SGRC: Security Governance Risk and Compliance Officer (2x G8 posts, 2 year fixed-term)
• SGRC: Head of Security Governance Risk and Compliance (G9, permanent)

Senior Computer Security Specialist

Closing date: 11-May-2018

The University of Oxford is seeking an experienced information security professional with excellent technical skills to join the University’s security operations function. You will have extensive knowledge in information systems security, undertake independent analysis and research in the field, provide strategic technical advice for decision makers, and educate stakeholders in technical roles in the field of Windows Security.

You bring extensive operational experience in operating heterogeneous system landscapes to the OxCERT security team; take a leadership role in the development, and operation of internal systems; and offer expert consultancy across a wide range of University departments, projects, and initiatives. You will take a leading role in the information security incident response activities to identify threats and respond with the appropriate actions to investigate and remediate.

A key component of the work will be the ownership of the Windows-based systems operated for the Information Security group. The postholder will be responsible for the Windows infrastructure and systems supporting OxCERT’s security operations function. You will continuously improve the set-up with a strong focus on automation in collaboration with the Head of Information Security Operations and the OxCERT team.

For this purpose, the postholder is expected to bring prior experience in Windows systems, profound knowledge in managing and configuring industry standard Microsoft technologies, and excellent programming and automation skills.

OxCERT: Senior Computer Security Analyst

Closing date: 11-May-2018

We are looking for a Senior Computer Security Analyst, to support the incident response function and work with colleagues within the Information Security Team, wider IT Services, and beyond to deliver innovative, appropriate and timely incident response and incident resolution.

This fast paced and varied role, requires excellent communication and customer service skills as well as a broad range of IT knowledge. The focus is on investigating more information security incidents to implement countermeasures, contain and eradicate problems, and recover from incidents. The postholder will need good analytical problem-solving skills and the ability to take a logical approach to troubleshooting when investigating and solving complex IT issues. Efficient handling of a large volume of email messages and other signals is also needed.

This is a great opportunity to learn and play an important role in a critical function. Training and support will be provided, and the team is actively encouraging applications from applicants with transferable skills.

Security Governance Risk and Compliance Officer (2xG8, 2x fixed term)

Closing date: 14-May-2018

Do you have experience of managing information security risk in a complex environment? Can you support developing and implementing an approach to information security that is proportionate, actionable and easily understood? Are you interested in working as part of a team of experts to support one of the world’s leading Universities in securing its people, processes and technology? If so, the University’s Information Security Team has an excellent opportunity to offer.

As a Security Governance, Risk and Compliance Officer you will work closely with the rest of the Information Security Team, part of the University’s IT Services department, to support the improvement of Information Security across the entire organisation. With knowledge of information security and governance standards such as ISO 27001 and the NHS IG Toolkit you will be responsible for providing expert advice covering a wide range of activities. In addition to a thorough understanding of end-to-end information security, you will require excellent interpersonal and collaborative skills in order to develop strong working relationships and positively influence technical staff, project teams and senior stakeholders to support the University in its pursuit of excellence in research and teaching.

In addition to the opportunity to work for one of the world’s leading research and educational institutions, the University of Oxford offers range of excellent benefits including training and development opportunities, a generous pension scheme, a range of travel schemes and excellent social and sporting facilities. For more details on the benefits of living and working in Oxford please see Staff benefits | HR Support (ox.ac.uk).

Head of Security Governance Risk and Compliance

Closing date: 14-May-2018

The University of Oxford is seeking an experienced information security professional with excellent leadership skills to head up the University’s security governance risk and compliance function. The Head of Security Governance Risk and Compliance will lead the Governance Risk and Compliance team (GRC) in the delivery of the cross-University approach for the governance and management of information security risk and compliance in support of the University’s strategic and operational objectives, legislative requirements and industry-accepted good practice.

Experience in managing information security risk and related compliance activities is a must, along with a thorough understanding of the broader information security domains. We’re also looking for great professional skills and someone who can lead, motivate, challenge and oversee a diverse team whilst embedding a culture of highly visible, responsive and effective service provision.

Do you want to help shape the University’s information security strategy and develop new University-wide information security services? Can you lead a great team in governing information security across the entire University? Will you build effective relationships at all levels in order to collaborate effectively to the benefit of the University?