Job purpose:

The security analyst will join a small security team for one of our clients in Central London. you will be a subject matter expert on all aspects of security to include mail security, web security, infrastructure security and end user device security.

The security analyst plays a key role in driving and improving and technology security at the organisation, providing expert advice and reliable guidance to a broad range of colleagues and stakeholders to achieve this.

Key Accountabilities:

• Proactively assess device and application logs for security vulnerabilities, as well as investigate causes and ultimately resolve or mitigate those vulnerabilities

• Lead and investigate security breaches and cyber incidents, providing timely resolution to agreed service level agreements/expectations

• Install Security updates/measures in line with best practices to ensure that the client is protected against the latest cyber security threats

• Work with third parties and internal teams to schedule proactive penetration tests, ensuring that vulnerabilities are resolved or mitigated

• Support the delivery of security training to all end users

• Regular monitoring of potential security risks externally and internally, provide clear expert advice and reliable guidance

• Manage regular security assessments of various key services

• Regularly assess key third party suppliers to ensure their security compliance

• Work with operational and delivery teams to ensure security design principles have been evaluated and adopted

• Provide clear expert advice and reliable guidance to end users on all things relating to cybersecurity

• Effectively collaborate with internal teams in relation to cybersecurity audits, including the resolution of outstanding actions

• Manage the creation and regular updating of Security policies

• A proactive approach to supporting a welcoming and respectful working environment for all colleagues at the organisation.

Knowledge, skills and experience

Essential:

• Relevant experience working as an effective Security Analyst

• Strong understanding of mail filtering technologies

• Strong understanding of Cloud infrastructure technologies, including encryption

• Demonstrable experience of working with Microsoft Sentinel, Defender and Purview

• Excellent understanding of security frameworks (NIST and Cyber Essentials)

• Ability to lead and manage third party providers

• Strong understanding of incident response processes and methodologies including leading and managing incidents

• Lead on root cause analysis, providing relevant documentation including recommendations

• indemonstrable experience of implementing a robust and trustworthy security configuration for various devices, ensuring that all security protocols are effectively set up to protect against unauthorised access and potential threats

• Proficient with SIEM, IDS/IPS, vulnerability scanners, and Azure security tools.

• Experience of leading on technical vulnerability assessments and regular penetration testing of IT systems and processes to identify potential vulnerabilities and provide recommendations for risk mitigation

• Experience in testing and reviewing new security solutions

• A strong commitment to supporting of diversity, inclusion, respect and dignity in the workplace