Security Analyst/Consultant

Summary about this job

Detail information about job Security Analyst/Consultant. Terms and conditions vacancy

Highly successful organisation experiencing tremendous growth is seeking a Security Analyst/Consultant to join them!

Reporting to the Head of Security, you will be responsible for operational information security management including perimeter systems, endpoint protection, backup, archiving and SIEM reporting.  You will work with a broad range of technologies across modern data centre and cloud environments.


Specifically you will take ownership of: 

• Information security assessments for systems and processes (customer, internal, new systems)
• Risk assessments for specific customer requests
• Daily threat intelligence management 
• Daily monitoring, analysis and reporting of Elastic SIEM
• Regular review/investigation of alerts from logging frameworks
• Perform firewall rule assessment and regular review
• Daily operations and upkeep of various IT security appliances
• Quarterly system/user access management and provisioning
• Undertaking Nessus vulnerability scans, and analyse and report on findings
• Represent IT security in the change management board
• Create and maintain operational IT security procedures
• Act as 1st level responder to IT security investigations and/or incidents
• Education and awareness activities
• Support PCI compliance project and ongoing PCI compliance

Skills and Experience sought:

• Proven experience working in a similar role with 3-5+ years experience in operational information security
• Good experience with SIEM (Elastic preferred) including daily monitoring, analyse and report events, logging, events correlation and basic scripting and tuning of alerts.
• Vulnerability scanning (Nessus preferred)
• IDS / IPS 
• Web Filtering (Eg BlueCoat)
• Antivirus (Trend Micro/McAfee /Symantec etc)
• Security monitoring / Tripwire FIM
• Good understanding of Windows / Unix Servers, Active Directory, databases, Citrix, Virtual environments, Firewalls, networking, orchestration,Cryptography and PKI.
• Strong Risk assessment skills
• Excellent data analysis skills

Desirable

• Broad understanding of information security control frameworks and architectures, including PCI DSS, 27000 series, COBIT etc.
• Security certifications e.g. CISSP
• Any experience with milti-factor authentication & digital certificate management
• Scripting skills (eg Perl, Python, VBA)
• Experience working within a customer focussed environment
• Experience working within the Financial industry

In addition to the above you will possess excellent communication skills (verbal & written), have close attention to detail and be a strong team player!

If this sounds like you, please send your resume addressed to Skye Kirkby-Gray !