Security Analyst

Job purpose:

The security analyst will join a small security team for one of our clients in Central London. you will be a subject matter expert on all aspects of security to include mail security, web security, infrastructure security and end user device security.

The security analyst plays a key role in driving and improving and technology security at the organisation, providing expert advice and reliable guidance to a broad range of colleagues and stakeholders to achieve this.

Key Accountabilities:

andbull; Proactively assess device and application logs for security vulnerabilities, as well as investigate causes and ultimately resolve or mitigate those vulnerabilities
andbull; Lead and investigate security breaches and cyber incidents, providing timely resolution to agreed service level agreements/expectations
andbull; Install Security updates/measures in line with best practices to ensure that the client is protected against the latest cyber security threats
andbull; Work with third parties and internal teams to schedule proactive penetration tests, ensuring that vulnerabilities are resolved or mitigated
andbull; Support the delivery of security training to all end users
andbull; Regular monitoring of potential security risks externally and internally, provide clear expert advice and reliable guidance
andbull; Manage regular security assessments of various key services
andbull; Regularly assess key third party suppliers to ensure their security compliance
andbull; Work with operational and delivery teams to ensure security design principles have been evaluated and adopted
andbull; Provide clear expert advice and reliable guidance to end users on all things relating to cybersecurity
andbull; Effectively collaborate with internal teams in relation to cybersecurity audits, including the resolution of outstanding actions
andbull; Manage the creation and regular updating of Security policies
andbull; A proactive approach to supporting a welcoming and respectful working environment for all colleagues at the organisation.

Knowledge, skills and experience

Essential:

andbull; Relevant experience working as an effective Security Analyst
andbull; Strong understanding of mail filtering technologies
andbull; Strong understanding of Cloud infrastructure technologies, including encryption
andbull; Demonstrable experience of working with Microsoft Sentinel, Defender and Purview
andbull; Excellent understanding of security frameworks (NIST and Cyber Essentials)
andbull; Ability to lead and manage third party providers
andbull; Strong understanding of incident response processes and methodologies including leading and managing incidents
andbull; Lead on root cause analysis, providing relevant documentation including recommendations
andbull; indemonstrable experience of implementing a robust and trustworthy security configuration for various devices, ensuring that all security protocols are effectively set up to protect against unauthorised access and potential threats
andbull; Proficient with SIEM, IDS/IPS, vulnerability scanners, and Azure security tools.
andbull; Experience of leading on technical vulnerability assessments and regular penetration testing of IT systems and processes to identify potential vulnerabilities and provide recommendations for risk mitigation
andbull; Experience in testing and reviewing new security solutions
andbull; A strong commitment to supporting of di