This role exists in sectors where digital information is an asset, such as finance, retail, telecoms, health, media, manufacturing, and local authorities.
The main purpose is to provide first-line cyber security support by monitoring and detecting threats, escalating issues, and ensuring secure business operations. This includes implementing cyber security mechanisms and procedures, understanding vulnerabilities, and supporting the organization’s cyber security maturity.
Responsibilities can include supporting a cyber security function (e.g., Security Operations Centre) under supervision. Tasks involve patching software, installing updates, implementing access control, configuring firewalls, and using SIEM and protection tools. Employees handle specific cyber security events, use discretion in complex issues, and escalate when necessary.