Cyber Security Analyst (UK-based)

Greater London
08 Apr 2021
06 May 2021
Contract Type
Full Time
Corporate Services (CoS) is responsible for the information security of all information systems across the global IFS organisation. The Cyber Security Analyst position complements the existing CoS security team by bringing deep technical security skills to help protect our IT infrastructure, systems and services from a range of security threats. The intention is to appoint two Cyber Security Analysts, both in the UK, where this position will be expected additionally to develop a less experienced "Associate Cyber Security Analyst" in their role. Working hours will normally conform to local office hours, but limited periods of working outside this time frame may be necessary in response to specific projects or events. Appropriate compensation will be included within the offer of employment should the candidate be successful.

As a Cyber Security Analyst you will help protect IFS' IT infrastructure and Information Systems/Services (including company networks, hardware and software hosted both within IFS' own Data Centres and in private and public Cloud services) from a range of cyber risks. The candidate must have strong experience in Microsoft technologies and their security controls and potential weaknesses, both as deployed on-premise and within Microsoft Azure. Reporting to the Vice President, Cyber Security and working with the Head of IT Security and IFS Security Operations Centre (SOC), you will be involved with the following primary activities:

* Perform threat analysis utilising threat intelligence sources and identify potential security risks, based upon the nature and operation of IFS infrastructure, information systems/services, and identify ways to mitigate them;

* Evaluate and test IFS information systems/services and networks including third party Cloud systems and integrations where applicable, in order to identify potential security weakness and vulnerabilities including conducting "ethical hacking" and running security breach simulations;

* Advise on technical security best practices, working with the Head of IT Security and CoS IT Project teams and architects in developing new, and amending existing, IT infrastructure, systems and services in accordance within information security best practice;

* Support security incident management and investigations, conducting technical activities, including forensics, to investigate, contain, recover and prevent recurrences of similar events;

* Support the IFS SOC with the technical investigation of specific security events and alerts, including phishing attacks, malware outbreaks and system compromises and help determine corrective and preventative actions plans;

* Support IFS internal security audit in identifying weakness in existing security practices and identifying corrective actions to address them;

* Support the maintenance of the IFS Information Security Risk Register and help identify risk mitigation actions;

* Assist with responding to IFS customers' and prospects' concerns, questions, RFIs and RFPs regarding IFS information security;

* Help develop an Associate Cyber Security Analyst in their role, sharing skills and competencies through work shadowing, guidance and mentoring to help with their personal development and identify formal training needs and pathways to establish the skills required in their role;

* Assist with security training, providing guidance and promoting awareness regarding security risks and ways to mitigate them;

* Promote IFS information security across the IFS organisation, using engaging ways to capture employee interest and help develop a healthy information security culture and behaviour;

* Keep up to date with the latest emerging security threats, hacking techniques, security remediation and risk mitigation approaches and tool sets

More searches like this