Classified Networks Vulnerability and Protective Monitoring Liaison Officer

Job Description

Location(s): UK, Europe & Africa : UK : Manchester

Job Title: Vulnerability and Protective Monitoring Liaison Officer (Operations – Classified)

Location: Manchester – Please note that due to the secure nature of the role this is a fully onsite position

What you’ll be doing

• Security Incident response and reporting, including Security Vulnerability and Protective Monitoring incidents across the Enterprise Classified estate.

• Security alert review for networks and solutions, effectively prioritise and escalate incidents, from Splunk, and SOC tools, as well as acting on other threat intelligence.
• The role supports the co-authoring of playbook/rules, vulnerability scanning configuration, and Incident response of alerts/reports (primarily via Splunk and other SOC tools).
• Classified network Auditing and Compliance review
• Responding to Information Security and IT incidents for Enterprise networks.
• Vulnerability management (Patching, COTS & OS) assessments
• Assist with any security tasks as deemed appropriate by the Chief Security Officer or Head of Information Security
• Promote and ensure BAE Systems Behaviours
• Knowledge of industry security regulations, for example ISO27001 and ISO9001

Your skills and experiences

• Experience in monitoring, triaging, analysing and investigating alerts, log data and network traffic using tools such as Splunk, SOAR, and/or Tanium.
• Significant experience of UK Government Security frameworks/regulations, such as:
• Cabinet Office Security Policy Framework;
• Joint Service Publication 440/441/490;
• Information Assurance Standards;
• Approved security products and build standards;
• Working knowledge and experience in developing and reporting performance and risk metrics (e.g., KPIs/KRIs – Status Reporting and Dashboard for senior management)
• Working knowledge and experience in leading and performing data security, data privacy discussions, reviews, and IT/security audits
• Data security or security architecture and engineering experience
• Demonstrated ability to work within matrixed resources in a team environment. Possesses strong organisational, time management and diplomacy skills
• Independent tasking and project completion with little supervision is a must
• Excellent analytical and problem-solving skills as well as interpersonal skills to interact with users, team members and senior management
• Progressive experience with increasing responsibilities within Information Security Dept. (e.g., Cyber SecOps, Security Architecture & Engineering, and/or Data Security/Forensic Analysis)
• Ability to respond to Information Security incidents in a timely, professional, and structured manner, providing clear updates throughout the incident lifecycle.
• Strong communication skills, with the capability to liaise effectively with internal teams, stakeholders, and third‑party suppliers during security events.
• Understanding of the MITRE ATT&CK framework, including the ability to identify and map relevant adversary tactics and techniques.
• Willingness to continuously learn, develop, and improve both new and existing skillsets, particularly within the Information Security domain.

Desirable Qualifications:

• Experience of UK affecting Security certifications/regulations, such as: ISO27001, NIST SP800-53 framework, Information Assurance Standards, Approved security products and build standards, Cyber Essentials Plus
• Experience in the use of security toolsets used for vulnerability scanning (Tanium), protective monitoring (Splunk and other SEIM tools), email security, cryptography, identity and access management, end user behavioural analysis, statistical anomaly detection, security log collection, collation and analysis.
• Prior experience of administering and maintaining Splunk Enterprise and SOAR infrastructure.
• Demonstrable Linux proficiency, including hands-on experience with Bash scripting for system administration, automation, and operational tasks.
• Excellent communications & MS Office skills;
• Good understanding of networking, subnetting, and basic network segregation.
• Desirable certifications include recognised security qualification such as CompTIA Network and Security + or equivalent.
• Ability to obtain Developed Vetting National Security Clearance

Benefits

As well as a competitive pension scheme, BAE also offers employee share plans, an extensive range of flexible discounted health, wellbeing & lifestyle benefits, including a green car scheme, private health plans and shopping discounts – you may also be eligible for an annual incentive

This role is primarily focused on the operational security support to our classified networks, role is responsible for providing technical expertise and guidance, including strategic vision, whilst also part of the team providing best practice and frameworks for IT Services within the organisation.

As a Classified Cyber Security Vulnerability and Protective Monitoring Liaison Officer, you will be focused on the Operational Security team’s responsibilities to support Classified Enterprise networks, primarily through Vulnerability and Protective Monitoring analysis, incident response and compliance.

Why BAE Systems?

This is a place where you’ll be able to make a real difference. You’ll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you’ll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments.

Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks.

.