Information Security Analyst - London
- Recruiter
- BCT Resourcing
- Location
- London, London
- Salary
- £40,000 - £60,000 per annum
- Posted
- 10 Aug 2017
- Closes
- 07 Sep 2017
- Ref
- 1450804
- Contract Type
- Permanent
- Hours
- Full Time
Job title: Information Security Analyst
Location: City of London
Salary: £40000 - £60000 per annum
Purpose:
Planning and implementing security measures to protect computer systems, networks and data. Analysing and assessing potential security risks, developing plans to deal with such incidents by putting measures in place such as firewalls and encryption, monitoring and auditing systems for abnormal activity, and executing corrective actions.
Main duties:
* Threat intelligence collection, analysis, and dissemination to SOC & IT Ops team members
* Forensic and malware analysis
* Harvest Indicators of Compromise (IOCs) and Tactics, Techniques, and Procedures (TTPs) to investigate if a threat has affected the environment
* Investigation of compromised assets
* Hunt through available logs to look for anomalous behaviours
* Work with third parties in order to effectively respond to Incidents raised and develop use case library
* Develop improved processes to reduce security incident detection time, as well as that time to contain an attack.
* Maintenance of Incident Response plans and procedures and development of incident response playbooks to ensure the availability of consistent response actions that can be utilised by Information Security staff.
* Maintain appropriate security technology stack (Check Point, FireEye, patching, vulnerability scanning) and ensure global coverage
* Undertake third party security audits and assessments.
* Maintain up-to-date knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors.
* Perform risk assessments and testing of new systems and services to identify weaknesses in Security
* Work with the Security & Networks Operations Manager to select, review and recommend security enhancements - for example, HIDS, Encryption, Full Packet Capture
* Build up threat intelligence information capability by joining sharing communities and subscribing to feeds.
* Developing metrics to demonstrate security coverage and highlight risks and issues
* Organise penetration testing and vulnerability scanning. Track and close outstanding actions
* Develop and maintain a secure, access-controlled repository
* Assist in supporting existing Network operations technologies
* 2-3 years of related information and cyber security experience within Financial Services
* Experience of defining security requirements for projects
* Flexible and co-operative team player.
* Good understanding of technology developments.
* Some experience of supporting Financial Services business.
* Interest in and awareness of modern computer security technical challenges.
* Scripting and programming
* Experience with security incident response including identification, preservation and interpretation of computer evidence
* IDS/IPS technologies
* Experience in the following technologies: Cisco, Bluecoat, CheckPoint, FireEye, McAfee ePO, SIEM, Dell Secureworks
* SANS training beneficial
* A Global Information Assurance Certification (GIAC) Certified Incident Handler (GCIH), GIAC Certified Intrusion Analyst (GCIA), or equivalent certification would be advantageous
* Knowledge of Security Compliance Framework(s) such as ISO 27001 and NIST 800 Series
* Proven experience in securing Windows, Linux and VM platforms
* Proven Experience in writing technical and operational procedures
Skills:
* Self-motivated.
* Confident and decisive.
* A "can do" attitude in respect of delivering IT support.
* Strong Analytical and problem solving skills.
* Ability to work effectively with business and technical people, including Third Party Suppliers.
* Strong technical skills.
* Strong customer satisfaction focus.
* Ability to work in fast moving environment with rapidly evolving targets
* Ability to work in a team across multiple time zones
Location: City of London
Salary: £40000 - £60000 per annum
Purpose:
Planning and implementing security measures to protect computer systems, networks and data. Analysing and assessing potential security risks, developing plans to deal with such incidents by putting measures in place such as firewalls and encryption, monitoring and auditing systems for abnormal activity, and executing corrective actions.
Main duties:
* Threat intelligence collection, analysis, and dissemination to SOC & IT Ops team members
* Forensic and malware analysis
* Harvest Indicators of Compromise (IOCs) and Tactics, Techniques, and Procedures (TTPs) to investigate if a threat has affected the environment
* Investigation of compromised assets
* Hunt through available logs to look for anomalous behaviours
* Work with third parties in order to effectively respond to Incidents raised and develop use case library
* Develop improved processes to reduce security incident detection time, as well as that time to contain an attack.
* Maintenance of Incident Response plans and procedures and development of incident response playbooks to ensure the availability of consistent response actions that can be utilised by Information Security staff.
* Maintain appropriate security technology stack (Check Point, FireEye, patching, vulnerability scanning) and ensure global coverage
* Undertake third party security audits and assessments.
* Maintain up-to-date knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors.
* Perform risk assessments and testing of new systems and services to identify weaknesses in Security
* Work with the Security & Networks Operations Manager to select, review and recommend security enhancements - for example, HIDS, Encryption, Full Packet Capture
* Build up threat intelligence information capability by joining sharing communities and subscribing to feeds.
* Developing metrics to demonstrate security coverage and highlight risks and issues
* Organise penetration testing and vulnerability scanning. Track and close outstanding actions
* Develop and maintain a secure, access-controlled repository
* Assist in supporting existing Network operations technologies
* 2-3 years of related information and cyber security experience within Financial Services
* Experience of defining security requirements for projects
* Flexible and co-operative team player.
* Good understanding of technology developments.
* Some experience of supporting Financial Services business.
* Interest in and awareness of modern computer security technical challenges.
* Scripting and programming
* Experience with security incident response including identification, preservation and interpretation of computer evidence
* IDS/IPS technologies
* Experience in the following technologies: Cisco, Bluecoat, CheckPoint, FireEye, McAfee ePO, SIEM, Dell Secureworks
* SANS training beneficial
* A Global Information Assurance Certification (GIAC) Certified Incident Handler (GCIH), GIAC Certified Intrusion Analyst (GCIA), or equivalent certification would be advantageous
* Knowledge of Security Compliance Framework(s) such as ISO 27001 and NIST 800 Series
* Proven experience in securing Windows, Linux and VM platforms
* Proven Experience in writing technical and operational procedures
Skills:
* Self-motivated.
* Confident and decisive.
* A "can do" attitude in respect of delivering IT support.
* Strong Analytical and problem solving skills.
* Ability to work effectively with business and technical people, including Third Party Suppliers.
* Strong technical skills.
* Strong customer satisfaction focus.
* Ability to work in fast moving environment with rapidly evolving targets
* Ability to work in a team across multiple time zones