Lead Security Analyst

As our business continues to develop, so do the threats to the company’s information security and right now, we are seeking an experienced Lead Security Analyst to join the Group IT Infrastructure team.

This hybrid role, minimum 2 days on site will have you working alongside other technical analysts in the network, servers and storage sectors. You will be monitoring the current environment, enhancing existing processes and working towards continuous improvement of cyber and information security controls to help manage human and technological risks.

Reporting into the Group Head of IT Infrastructure, you will be actively identifying inefficiencies and championing the adoption of new controls, technologies, and approaches to meet business needs and manage risk. You will be responsible of providing advice and guidance on how to minimise the impact of threats to assets and services. You will also be continuously identifying opportunities to improve technical risk management controls.

Requirements

Objectives of the Role

VPNs, and other safeguards.

Analyse system and network data from sources such enterprise security information and event monitoring (SIEM), data feeds of alerts and logs from firewalls, routers, and other network devices or hosts, network IPS/IDS systems, other host and network-based signature and heuristics-based systems, and other information sources.

Ensure the safety of digital assets and to protect systems from intentional or inadvertent access, prevent security violations, system intrusions, data breaches, and system destruction.

Prepare reports on an as needed basis for compliance, change management, systems monitoring and intrusion analysis.

Assist in the development and implementation of new security alerting criteria based on new or existing data in the SIEM environment.

Create formal documentation and diagrams for systems administration, operations, and maintenance.

Assist with the management of Information Security service ticket queue. Perform service ticket resolution or escalation in a timely fashion while meeting SLA response time.

Work as a key member of the Cyber Security Incident Response Team during significant security incidents.

Requirements:

The position is not an entry-level position and prior full-time Information Security or SOC experience is required.

 Excellent verbal and written communication skills, able to explain technical concepts to both technical and non-technical audiences.

 Relevant education, training, or certifications in cyber security.

 Knowledge of Cyber Essentials Plus accreditation and ISO27001 information security standard.

Benefits

• 25 Days annual leave + 8 Bank Holidays
  


• Employee assistance programme
  


• Enhanced Maternity and Paternity Leave
  


• Enhanced sickness pay scheme
  


• Cycle to work scheme
  


• On Site Gym
  


• free weekly yoga class
  


• On site parking
  


•