Connecting Talent to opportunity

Connecting Talent to opportunity

Research & Development Technical Officer


Job Description:

Summary At HMRC we are committed to creating a great place to work for all our colleagues; an inclusive and respectful environment that reflects the diversity of the society we serve.

We want to maximise the potential of everyone who chooses to work for us and we offer a range of flexible working patterns and support to make a fulfilling career at HMRC accessible to you.

Diverse perspectives and experiences are critical to our success and we welcome applications from all people from all backgrounds with the experience and skills needed to perform this role.

HMRC is the UK’s tax, payments and customs authority and we have a vital purpose: we collect the money that pays for the UK’s public services and help families and individuals with targeted financial support.

Digital Support and Innovation (DSI) sits within HMRC’s wider Fraud Investigation Service (FIS) responsible for the department’s civil and criminal investigation work. FIS ensures that HMRC has an effective approach to taking on the most serious tax evasion and fraud.

Working across Law Enforcement and government, DSI provides investigative tools and both overt and covert techniques to front-line investigations and works with key partners to develop and provide access to new technology and systems to enable investigators to respond to serious and complex tax evasion and crime. Job description The Research, Development & Innovation area of Cyber & Digital Forensics is an evolving capability that is pioneering new ways of working within DSI, often partnering with wider HMRC stakeholders as well as private industry technology experts and academia. From helping build new platforms, creating bespoke software solutions, to investigating forensic anomalies or mysteries, and supporting operational findings. It plays an integral role in Her Majesty's Government's fight against serious and organised crime, supporting investigations totalling hundreds of millions of pounds each year.

As a Research & Development Technical Officer, you will play an integral role assisting DSI in delivering all aspects of research and development capability, often working with, or contributing to, the wider law enforcement effort. You may be required to attend criminal court prosecutions on occasion to give testimony to your work.

Candidates must live within reasonable daily travel, which is usually an hour each way.

HMRC are an equal opportunity employer and value diversity at our company. HMRC do not discriminate on the basis of race, religion, colour, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. HMRC will ensure that individuals with disabilities are provided reasonable adjustments to participate in the job application or interview process.

Responsibilities 1. Carry out research and development of new equipment, tools and techniques to counter the threat, risk and harm posed by new software or hardware and document how that may be leveraged by serious organised criminals.

2. Conduct reverse engineering techniques on software or hardware to facilitate access to underlying data and acquire said data to an evidential standard.

3. Perform routine maintenance and testing of existing software and hardware tools and contribute to the teams continued ISO17025 accredited standard.

4. Collaborate as part of a team to design components for larger systems and help engineer new platforms.

5. Provide guidance, technical operational support and training in the installation and use of developed tools and techniques.

6. Ensure all work is carried out within the requirements of the legal framework to be compliant in the law enforcement and legislative process.

7. Build relationships and collaborate with external partners, private industry and academia. On occasion, your findings may require wider or open publication (depending on sensitivity) or presented to audiences.

Essential Criteria:

Proven ability to successfully develop computer software and have an understanding of the software development lifecycle. Must be able to demonstrate identifying user requirements, ability to design software, write secure code and implement testing methods.

Experience in one or more of the following languages:

• Delphi, Freepascal, Go, C, C#, Objective-C, C++, Assembler.

• Rust, or Python.

• Web Development: JavaScript, Node.js, React.

And experience in at least one of the following technologies:

• Database: MongoDB, MySQL, PostgreSQL, SQLite.

• Virtualisation: Docker, VMWare, VirtualBox, AWS, Azure, Hyper-V.

• Automation and testing: GitHub, Ansible, Chef, Jenkins, Terraform, Travis CI.

• Logging and Visualisation: Elastic, Graylog, Splunk.

• Experience in the use of Linux, OS X and Windows operating systems.

• Proven ability to work in a secure environment with the highest standards of integrity; able to recognise sensitive information and always maintain discretion and confidentiality.

• Proven ability to work on own initiative and experience of working effectively within a team.

• Demonstrate an understanding of relevant legislation including PACE, CPIA, Criminal Justice & Police Act (CJPA), The Police Act, RIPA.

Desirable Criteria:

• Experience of designing, using, or have training in cloud technology such as Microsoft Azure, Amazon Web Services (AWS), and similar technology.

• Abilities with compiled programming languages as well as scripting languages and experience with software development lifecycle (SDLC) and agile/iterative methodologies.

• Experience of conducting or being part of digital forensics investigations or penetration testing.

• Experience of big data problems and data linking.

• Experience in Cryptography – either the use of tools to bypass encryption such as Hashcat, Passware etc and\or experience of implementing encryption and an awareness of the technology.

• Low level raw data analysis skills, i.e. recognising hexadecimal patterns, binary patterns, string patterns with regard to artefact detection and similar. Qualifications STEM degree or degree-level qualification and/or at least 2 years’ practical experience in a technical environment. Must be able to demonstrate up-to-date knowledge of relevant research and development methodologies, tools and techniques.

Qualifications and certifications held may include (but not limited to): MSc, BSc, EnCe, ACE, CCMP, CCLO, CCPA, A+, Security+, Network+, MCP, GIAC, OSCP, OSWP and CWSA