Security Analyst

The security analyst will join a small security team for one of our clients in Central London. you will be a subject matter expert on all aspects of security to include mail security, web security, infrastructure security and end user device security.

The security analyst plays a key role in driving and improving and technology security at the organisation, providing expert advice and reliable guidance to a broad range of colleagues and stakeholders to achieve this., * Proactively assess device and application logs for security vulnerabilities, as well as investigate causes and ultimately resolve or mitigate those vulnerabilities

• Lead and investigate security breaches and cyber incidents, providing timely resolution to agreed service level agreements/expectations
• Install Security updates/measures in line with best practices to ensure that the client is protected against the latest cyber security threats
• Work with third parties and internal teams to schedule proactive penetration tests, ensuring that vulnerabilities are resolved or mitigated
• Support the delivery of security training to all end users
• Regular monitoring of potential security risks externally and internally, provide clear expert advice and reliable guidance
• Manage regular security assessments of various key services
• Regularly assess key third party suppliers to ensure their security compliance
• Work with operational and delivery teams to ensure security design principles have been evaluated and adopted
• Provide clear expert advice and reliable guidance to end users on all things relating to cybersecurity
• Effectively collaborate with internal teams in relation to cybersecurity audits, including the resolution of outstanding actions
• Manage the creation and regular updating of Security policies
• A proactive approach to supporting a welcoming and respectful working environment for all colleagues at the organisation.

Do you have experience in SIEM?, * Relevant experience working as an effective Security Analyst

• Strong understanding of mail filtering technologies
• Strong understanding of Cloud infrastructure technologies, including encryption
• Demonstrable experience of working with Microsoft Sentinel, Defender and Purview
• Excellent understanding of security frameworks (NIST and Cyber Essentials)
• Ability to lead and manage third party providers
• Strong understanding of incident response processes and methodologies including leading and managing incidents
• Lead on root cause analysis, providing relevant documentation including recommendations
• indemonstrable experience of implementing a robust and trustworthy security configuration for various devices, ensuring that all security protocols are effectively set up to protect against unauthorised access and potential threats
• Proficient with SIEM, IDS/IPS, vulnerability scanners, and Azure security tools.
• Experience of leading on technical vulnerability assessments and regular penetration testing of IT systems and processes to identify potential vulnerabilities and provide recommendations for risk mitigation
• Experience in testing and reviewing new security solutions
• A strong commitment to supporting of diversity, inclusion, respect and dignity in the workplace