Security & Risk Adviser (Hybrid)

HEAnet – Security & Risk Adviser (Hybrid)

HEAnet is Ireland’s National Research and Education Network, providing internet connectivity and ICT shared services across all levels of the Irish education system, reaching in excess of 1,000,000 end users. We connect learners and researchers across all of Ireland to education resources and to fellow national educational and research networks in Europe, and the rest of the world.

HEAnet also provides our client base with support in the procurement of ICT hardware, software and services. The Brokerage Services portfolio covers a wide range of products and services, delivering significant savings for the sector annually.

 

We have an exciting opportunity for an experienced Security & Risk Adviser to join our ICT Security Services Team on a permanent contract basis.

This role is primarily based at our Dublin 1 offices, but we are pleased to offer a flexible remote working arrangement. This allows you to work from home up to three (3) days a week. You will be expected to work at least two (2) days a week in the office, giving you the opportunity to enjoy a balanced and dynamic work environment.

 

 

What the ICT Security Services Team does

 

HEAnet provides a range of ICT Security services. The objective is to provide a standardised set of core security services which are common to all clients. These will be provided using a dedicated HEAnet team to augment the Institutions IT Department resources, whilst using a suite of services which are common, sharable and repeatable across HEAnet clients. These services include but are not limited to: Web Application Penetration Testing, Network Vulnerability Scanning, Phishing Simulations, Security Awareness Training, Policy Review and Development.

How we do it

Our company values underpin how we do things in HEAnet. We believe in and live by our values and understand they are integral to making HEAnet a great place to work.

                                                                                         

Positive                 Future             Empowered      Enjoy It            Equality &            We Share

Impact                  Focused           Decision                                      Fairness 

                                                        Making                                   

For further information about who we are and our core values, see https://www.heanet.ie/who-we-are

 

What you get from us

We value knowledge-sharing and communication. Each week we have a team meeting where the team has catch-ups to cover outstanding issues and planned work for the week. You will also have a 1:1 meeting every week with your manager. 

 

We have frequent presentations from anyone in the company on a wide range of topics from technical demos to project management to mental health.  On different days of the week any team member may be working from home, so we use tools like Microsoft Teams to keep in touch.

 

We encourage critical thinking and the exploration of new ideas. We often form cross-team special interest groups for specific topic discussions, both ongoing and for fixed projects. 

 

We provide a diverse workload.  Everyone on the team has responsibility for responsibility for their assigned tasks, but we limit individual performance objectives to a max of 30%, so you will get to work in multiple areas with different team members.

 

We promote a healthy work/life balance. Work outside of standard hours is rare and agreed in advance. We take the care of our team members' mental health seriously. 

 

Company Benefits

• Hybrid Working
• Flexible start/finish times
• Health insurance for employees
• Defined contribution pension scheme
• On-going well-being initiatives
• Employee Assistance Programme (EAP)
• Tax Saver Ticket scheme
• Cycle to Work scheme
• Professional education support
• Comprehensive group and individual training & development initiatives

For further information about who we are and our core values, see https://www.heanet.ie/who-we-are/who-we-are

What we need from you

As a Security & Risk Adviser, you will have the below key responsibilities:

• Conduct advanced penetration testing of web applications, infrastructure and other online services to identify vulnerabilities, including OWASP Top 10 risks and beyond.
• Perform detailed network scanning and vulnerability assessments of both internal and external networks, identifying security weaknesses across various protocols and services.
• Lead and execute complex security assessments and red team exercises, simulating real-world attack scenarios on critical infrastructure and high-value targets.
• Provide detailed technical and non-technical reports, outlining vulnerabilities discovered, exploit potential, and step-by-step remediation guidance.
• Stay up-to-date with the latest security trends, vulnerabilities, and techniques, incorporating them into testing procedures.
• An organised approach to work and an ability to prioritise effectively.
• Self-motivation and the willingness to take on responsibility for your own area of work.
• Valuing teamwork and an ability to work effectively with all our Security & Risk Advisers, the organisation, and clients to achieve common goals.
• Excellent communication skills with the ability to convey complex technical details to both technical and non-technical stakeholders.

Must-Have Qualifications:

• 3+ years of hands-on experience in penetration testing, with a strong focus on web application security and network vulnerability assessments.
• Industry certification such as: PNPT, CRTP, CEH, or OSCP
• Bachelor's degree or higher in a related field

     

Nice-To-Have Qualifications:

We do not need you to have experience in the following areas, but if you do it could be beneficial:

• Knowledge and experience working with phishing tools, carrying out social engineering attack simulations.
• Scripting skills
• Familiarity with international best practices such as ISO 27001 and NIST.
• Experience in delivering information security awareness training

More important information

 

At HEAnet we celebrate diversity and understand how important it is to our ongoing success.  We would like to hear from candidates who are great at what they do and whose values align with ours.

 

If you need any adjustments made to the application or selection process so you can do your best, please let us know.

HEAnet are delighted to be awarded with the Ibec Keep Well Mark. We take pride in developing, maintaining and enhancing our culture of wellbeing and continue to focus on this into 2024 and beyond.