About the Oversight Board
The Oversight Board makes binding and independent decisions about the most challenging content issues on Facebook and Instagram. Members of the Board include Helle Thorning-Schmidt, former Prime Minister of Denmark, Tawakkol Karman, Nobel Peace Prize Winner, Michael McConnell, Director of Stanford’s Constitutional Law Center, and may other diverse leaders and thinkers from around the world. The Board issued its first decisions in January 2021.
The Oversight Board Administration is the team of full-time staff who supports Board Members in carrying out their duties. The Administration has a presence in London, San Francisco and Washington, D.C., and operates with a global scope.
You can learn more about the Board at www.oversightboard.com.
Role and responsibilities
Joining the Oversight Board Administration is a chance to be part of an organization which is leading on some of the most challenging issues facing the tech industry and society.
The Security Analyst will join the Security, Operations Team at Oversight Board, reporting to Chief Security Officer. They will play a crucial role in supporting the Cyber Intelligence, Threat Detection, Crisis Preparedness and Response, Penetration Testing and Vulnerability Management efforts at the Oversight Board. They will work to ensure that appropriate, risk-based technical measures are being taken to adequately and effectively protect the Oversight Board’s IT infrastructure from malicious activity.
In partnership with the Technology team and working in close collaboration with relevant vendors, they will play a key role in monitoring the Oversight Board’s networks and systems for attacks, intrusions, and anomalous, unauthorised or illegal activity. The Security Analyst will drive the technical analysis, investigation and response to incidents, detected security threats, relevant alarms, and intrusion attempts.
They must be an innovator with a passion for security and technology and be willing to try new ideas, processes and ways of thinking that challenge the established industry norms. They will have excellent communication skills and be able to break down complex technical issues easily to engage key stakeholders and enable efficient and effective action.
Responsibilities will include, but are not limited to:
- Support operational workflows by performing risk-based security reviews of operational systems, applications and third-party integrations.
- Engage with Technology colleagues and relevant partners to realise the full potential of the Oversight Board’s Security Operations capabilities.
- Leverage a mix of technologies (detection and prevention), processes and human capital to ensure emerging, new, and existing cyber security threats to the organisation are managed appropriately.
- Monitor external intelligence sources to research and evaluate emerging cyber security and technology developments, threats, and vulnerabilities of relevance to the Oversight Board and determine how to manage them adequately and effectively.
- Plan for disaster recovery and create response and contingency plans in the event of security incidents.
- Test and evaluate security solutions and advise on how they can be leveraged to address security challenges.
- Coordinate penetration testing and ethical hacking efforts for the Oversight Board and ensure the delivery of actionable contextualised reports.
- Perform security assessments of applications, systems, and networks, to identify potential weaknesses and ensure adequate defence against exploits of applicable vulnerabilities.
- Monitor identity and access management, including monitoring for abuse of permissions by authorised system users.
- Generate customised reports for both technical and non-technical staff and stakeholders on new threats or vulnerabilities driven by analysis, incidents, and adversary engagement.
- Maintain an information security risk register and assist with internal and external audits relating to information security.
- Assist with the creation, maintenance and delivery of a cyber security awareness programme for colleagues and other stakeholders.
- Identify and drive opportunities to further enhance the security posture of the OSB.
- Be an advocate of Information Security both within the Operations function and throughout the rest of the organisation. Provide advice and guidance to staff and other stakeholders on a wide range of security issues.
- Partner with the Technology team and the wider organisation to ensure that activities and projects are secure by design and implementation.
Skills, Competencies and Experience
Successful candidates are liable to have the following skills and experiences:
- Strong technical background in security controls/operations, system, and network security.
- Expert understanding of the elements of cyber mal-space. Specifically, key threat actors and their motivations, attack types, routes of attack, services, and tools.
- Extensive experience of Threat Intelligence, Anomaly Detection and Response, Data Leakage Prevention, Intrusion Analysis and SIEM solutions.
- Experienced working with, and enabling organisations heavily invested/investing in cloud-based technologies.
- Previous relevant experience of working within an international and complex professional services, start-up or highly regulated industry would be an advantage.
- Strong analytical and problem-solving skills with ability to balance multiple priorities and meet deadlines, adjust to changing priorities.
- Experience of working in a Security Operations Centre or partnering with/working for a Managed Security Service Provider would be an advantage.
- Excellent communication skills, with an ability to explain technical details to support people with all ranges of technical ability and/or security knowledge.
- A hands-on, forward thinker, with a flexible mindset and ability to work in a fast-moving environment that embraces autonomy and is accountable for results.
- Experience in working with a security framework such as CIS, NIST & ISO27001
What we can offer you
As well as a competitive salary of £60,000, we also offer an excellent market leading benefits package, covering a variety of areas, both professional and personal. These benefits include:
- A generous 12% pension employer contribution with no requirement for you to contribute;
- Progressive family friendly benefits including a robust paid parental leave policy;
- An extensive health support package, including comprehensive healthcare and dental coverage for both you and your family members;
- Comprehensive life assurance, income protection and business travel insurance packages providing financial support in events of ill health, injury etc;
- A generous childcare subsidy to provide financial support for eligible childcare costs;
- A generous home working and commuting allowance to provide financial support for remote and/or office working;
- A training allowance to support both your continuous professional development and professional membership;
- 5 study leave days per calendar year to support professional development;
- 25 days of annual leave (in addition to bank holidays), with the opportunity to carry up to 5 unused days to the next year;
- 2 'recharge' paid vacation days per calendar year;
- 2 'personal' paid vacation days per calendar year
- A holistic wellbeing support plan encompassing a variety of offerings to assist you. We provide you with an allowance to fund activities to best support your wellbeing as well as workshops and training to provide tools and guidance. Additionally, there is a wide-ranging employee assistance programme available to advise on personal, family or financial matters, and also fun social events all year round.
Oversight Board is committed to promoting equal opportunities in employment. You will receive equal treatment regardless of age, mental or physical disability, gender, gender expression or gender identity (including transgender status), gender reassignment, marital or civil partner status, pregnancy (including childbirth and related medical conditions) or maternity, race, colour, creed, nationality, ancestry, citizenship status, ethnic or national origin, religion or belief, sex, sexual orientation, military and veteran status, protected medical condition as defined by applicable state or local law, genetic information, and any other characteristic protected by applicable federal, state, or local laws and ordinances.
We welcome all applications for this role. Applications will be reviewed on a rolling basis until the position is filled. Please see our privacy notice here.
If you would like to keep updated with the work of the Oversight Board and future opportunities, please follow us on our LinkedIn page.