Security & Compliance Apprentice

Middlesbrough College

Cleveland, TS2 1AD

Closes in 23 days (Wednesday 9 October)

Posted on 3 September 2024

Print

Contents

Summary

The successful candidate will have the opportunity to play a pivotal role in implementing the college's Digital Strategy, whilst attending an NSG apprentice program. Whilst being supported and mentored by our staff, the successful candidate will be able to have a "hands-on" role on new and emerging technologies, tools and techniques.

Annual wage
£12,347 a year

Minimum wage rates (opens in new tab)

Training course
Cyber security technician (level 3)
Hours
Monday - Friday. Times to be confirmed.

37 hours a week

Possible start date

Wednesday 23 October

Duration

1 Year 9 Months

Positions available

1

Work

As an apprentice, you’ll work at a company and get hands-on experience. You’ll gain new skills and work alongside experienced staff.

What you’ll do at work

  • To support the wider Security & Compliance team with conducting and documenting regular internal audits with all functions within the organisation to ensure working practices align with the CIPHR policy set
  • Working in coordination with the wider Security & Compliance team, help manage the external audit processes that Digital Services undertake and ensure compliance against the scope of any such audit 
  • Regularly reviewing the information security policy set and making improvements and updates where appropriate 
  • Periodically reviewing processes within the business to ensure that information security is maintained to an appropriate level throughout
  • Participate in the Major Incident Process response 
  • Assess each Non-Standard Request, working with other teams within IT Services if necessary 
  • Assist with IT projects as required 
  • Assist in the investigation of security incidents 
  • Actively support the implementation of the digital strategy for the College 
  • Assist the Security & Compliance Team to ensure the College implements and maintains the highest industry standards to achieve necessary accreditations such as Cyber Essentials Plus and ISO 27001/9001 
  • Help manage the Vulnerability and Risk registers, i.e., identification, documentation, risk asset and remediation
  • Establishing information security monitoring arrangements for new services/programmes/projects ensuring that information security controls effectiveness is monitored and improved
  • Maintain a sound knowledge of information security compliance standards and requirements based on industry best practice 
  • Adhere to the change control process for changes to live systems 
  • Provide assistance to other IT teams as required to meet the needs of the organisation 

Where you’ll work

Middlesbrough College

Dock Street

Middlesbrough

Cleveland

TS2 1AD

Training

An apprenticeship includes regular training with a college or other training organisation. At least 20% of your working hours will be spent training or studying.

College or training organisation

MIDDLESBROUGH COLLEGE

Your training course

Cyber security technician (level 3)

Equal to A level

Course contents
  • Follow information security procedures
  • Maintain information security controls
  • Develop information security training and awareness resources
  • Monitor the effectiveness of information security training and awareness
  • Handle and assess the validity of security requests from a range of internal and external stakeholders
  • Follow technical procedures to install and maintain technical security controls
  • Monitor and report information security events
  • Recognise when and how to escalate information security events in accordance with relevant procedures and standards
  • Review and modify access rights to digital information systems, services, devices or data
  • Maintain an inventory of digital information systems, services, devices and data storage
  • Scopes cyber security vulnerability assessments
  • Evaluate the results of a cyber security vulnerability assessment
  • Perform routine threat intelligence gathering tasks through consulting external sources
  • Undertake digital information risk assessments
  • Identify and categorise threats, vulnerabilities and risks in preparation for response or escalation
  • Document cyber security event information whilst preserving evidence
  • Draft information management reports using standard formats appropriate to the recipients
  • Review and comment upon cyber security policies, procedures, standards and guidelines
  • Perform cyber security compliance checks
  • Translate audit requirements and collate relevant information from log files, incident reports and other data sources
  • Communication skills to co-operate as part of a multi-functional, multi-disciplinary team using a range of technical and non-technical language to provide an effective interface between internal or external users and suppliers
  • Keep up-to-date with legislation and industry standards related to the implementation of cyber security in an organisation
  • Follow information security procedures
  • Maintain information security controls
  • Develop information security training and awareness resources
  • Monitor the effectiveness of information security training and awareness
  • Handle and assess the validity of security requests from a range of internal and external stakeholders
  • Follow technical procedures to install and maintain technical security controls
  • Monitor and report information security events
  • Recognise when and how to escalate information security events in accordance with relevant procedures and standards
  • Review and modify access rights to digital information systems, services, devices or data
  • Maintain an inventory of digital information systems, services, devices and data storage
  • Scopes cyber security vulnerability assessments
  • Evaluate the results of a cyber security vulnerability assessment
  • Perform routine threat intelligence gathering tasks through consulting external sources
  • Undertake digital information risk assessments
  • Identify and categorise threats, vulnerabilities and risks in preparation for response or escalation
  • Document cyber security event information whilst preserving evidence
  • Draft information management reports using standard formats appropriate to the recipients
  • Review and comment upon cyber security policies, procedures, standards and guidelines
  • Perform cyber security compliance checks
  • Translate audit requirements and collate relevant information from log files, incident reports and other data sources
  • Communication skills to co-operate as part of a multi-functional, multi-disciplinary team using a range of technical and non-technical language to provide an effective interface between internal or external users and suppliers
  • Keep up-to-date with legislation and industry standards related to the implementation of cyber security in an organisation

    • Your training plan

    • Level 3 Cyber Security Technician
    • Day release one day per week
    • Middlesbrough College

    Requirements

    Essential qualifications

    GCSE in:

    • Maths and English (grade 4)

    Let the company know about other relevant qualifications and industry experience you have. They can adjust the apprenticeship to reflect what you already know.

    Skills

    • Communication skills
    • IT skills
    • Problem solving skills
    • Team working
    • Initiative

    Other requirements

    This vacancy is to start immediately therefore you must be available to start before applying. All closing, interview and start dates are subject to change and may close early if sufficient applications are received. Please ensure you apply early to avoid disappointment. Northern Skills will check candidates' eligibility prior to any interviews.

    About this company

    To actively contribute to the College’s Strategic Plan and in particular the ambition to become an outstanding provider of education and training. To hold and actively demonstrate the College’s Core Values in all that you do. • Aim High… • Work Hard… • Take Responsibility… • Do What’s Right… • Respect Others… • Challenge Yourself… • Take Pride… To commit to the College’s Safeguarding Policy and promote a safe environment for children, young people and vulnerable adults within the College.

    After this apprenticeship

    Depending on the circumstances of the business upon completion of the apprenticeship programme there could be a potential position of employment available. 

    Ask a question

    The contact for this apprenticeship is:

    MIDDLESBROUGH COLLEGE

    The reference code for this apprenticeship is VAC1000274556.

    Apply now

    Closes in 23 days (Wednesday 9 October)

    When you apply, you’ll be asked to sign in with a GOV.UK One Login. You can create one at the same time as applying for this apprenticeship.

    After signing in, you’ll apply for this apprenticeship on the company's website.