IT Security Analyst
- Recruiter
- Confidential
- Location
- Staffordshire
- Salary
- 30000.00 - 35000.00 GBP Annual
- Posted
- 02 Sep 2021
- Closes
- 30 Sep 2021
- Sectors
- Accountancy
- Contract Type
- Permanent
- Hours
- Full Time
IT Security Analyst - Upto GBP35k
My client is currently looking for an IT Security Analyst, you will have a technical mind set not only finding the problem and then the solution.
You will be looking to make your move into IT Security maybe from Service Desk, Infrastructure or Networking. You will be involved in working on many varied projects as well as BAU
Your Responsibilities as an Information Security Analyst:
Day-to-day running and monitoring of Information Security systems - analyse and interpret outputs to identify security weaknesses and recommend continuous improvements
Respond to Security Incidents, reports and alerts ensuring prompt containment and recovery - strong incident management and response skills required
Plan and oversee regular security penetration testing against new and existing services to identify weaknesses and formulate plans and processes to minimise current and future risk
Conduct regular security risk reviews and manage security remediation activity, internally on new IT/Business projects and with third parties
Be the technical sign-off for all BAU Change Requests
Promote culture of 'security by design' and facilitate appropriate activities to support and improve Information Security Awareness for all staff globally
Articulate risk in technical and non-technical terminology so that it can be interpreted by Group IT and business stakeholders
Seek out and exploit opportunities for improvement to the group's overall security posture
Be a key participant in large global IT projects, such as Network Access Control
Passionate about cyber security and keeping up with the latest trends, threats and mitigations.
About you:
Proven experience within an Information Security role
Adaptable - whilst this role requires some use of Security Toolsets and a Technical Mindset, you're not expected or required to be an expert in all areas but expected to have a solid understanding and grounding in security principals to adapt to the varied requirements
Ability to manage and use a wide variety of security software, systems, services and toolsets such as E-mail filtering and brand protection, AV, DLP, 365 etc along with an understanding of malware prevention, emerging threats, attacks and vulnerability management. Monitor, maintain and improve
A strong understanding of Information Security best practice for all elements including workstations, servers, cloud, networking, architecture, common protocols and application security
Ability to confidently perform security audits, both internal and external (e.g. third party and supplier assurance) DG and ensure recommendations are followed for continuous improvement
Strong Project Management skills - able to independently manage multiple projects, manage own workload, prioritise and meet tight deadlines
Strong Incident Response Management skills including threat and vulnerability analysis
Good communication skills across all levels of the business - written and verbal
Develop security policies, procedures and guidelines for the business
An understanding of Security Awareness Campaigns and facilitating education
Awareness of security within cloud infrastructure, particularly AWS, Azure and 365.
Awareness of GDPR (and international equivalents)
Awareness of Network segmentation and OT Security
Awareness of Security Frameworks, i.e. Cyber Essentials, ISO 27001, NIST
Has a sense of urgency and a high degree of confidentiality
Understanding of IT Service Management principles ideally ITIL.
Commutable from East Staffordshire, Uttoxeter, Stone, Stafford, Derby
My client is currently looking for an IT Security Analyst, you will have a technical mind set not only finding the problem and then the solution.
You will be looking to make your move into IT Security maybe from Service Desk, Infrastructure or Networking. You will be involved in working on many varied projects as well as BAU
Your Responsibilities as an Information Security Analyst:
Day-to-day running and monitoring of Information Security systems - analyse and interpret outputs to identify security weaknesses and recommend continuous improvements
Respond to Security Incidents, reports and alerts ensuring prompt containment and recovery - strong incident management and response skills required
Plan and oversee regular security penetration testing against new and existing services to identify weaknesses and formulate plans and processes to minimise current and future risk
Conduct regular security risk reviews and manage security remediation activity, internally on new IT/Business projects and with third parties
Be the technical sign-off for all BAU Change Requests
Promote culture of 'security by design' and facilitate appropriate activities to support and improve Information Security Awareness for all staff globally
Articulate risk in technical and non-technical terminology so that it can be interpreted by Group IT and business stakeholders
Seek out and exploit opportunities for improvement to the group's overall security posture
Be a key participant in large global IT projects, such as Network Access Control
Passionate about cyber security and keeping up with the latest trends, threats and mitigations.
About you:
Proven experience within an Information Security role
Adaptable - whilst this role requires some use of Security Toolsets and a Technical Mindset, you're not expected or required to be an expert in all areas but expected to have a solid understanding and grounding in security principals to adapt to the varied requirements
Ability to manage and use a wide variety of security software, systems, services and toolsets such as E-mail filtering and brand protection, AV, DLP, 365 etc along with an understanding of malware prevention, emerging threats, attacks and vulnerability management. Monitor, maintain and improve
A strong understanding of Information Security best practice for all elements including workstations, servers, cloud, networking, architecture, common protocols and application security
Ability to confidently perform security audits, both internal and external (e.g. third party and supplier assurance) DG and ensure recommendations are followed for continuous improvement
Strong Project Management skills - able to independently manage multiple projects, manage own workload, prioritise and meet tight deadlines
Strong Incident Response Management skills including threat and vulnerability analysis
Good communication skills across all levels of the business - written and verbal
Develop security policies, procedures and guidelines for the business
An understanding of Security Awareness Campaigns and facilitating education
Awareness of security within cloud infrastructure, particularly AWS, Azure and 365.
Awareness of GDPR (and international equivalents)
Awareness of Network segmentation and OT Security
Awareness of Security Frameworks, i.e. Cyber Essentials, ISO 27001, NIST
Has a sense of urgency and a high degree of confidentiality
Understanding of IT Service Management principles ideally ITIL.
Commutable from East Staffordshire, Uttoxeter, Stone, Stafford, Derby