Lead Security Analyst

You will be working alongside other technical analysts in the network, servers and storage sectors. You will be monitoring the current environment, enhancing existing processes and working towards continuous improvement of cyber and information security controls to help manage human and technological risks. Reporting into the Group Head of IT Infrastructure, you will be actively identifying inefficiencies and championing the adoption of new controls, technologies, and approaches to meet business needs and manage risk. You will be responsible of providing advice and guidance on how to minimise the impact of threats to assets and services. You will also be continuously identifying opportunities to improve technical risk management controls. Requirements Objectives of the Role Managing security solutions that will protect the security of systems and infrastructure of the organisation. This includes web filtering, file integrity monitoring, vulnerability scanning and configuration management, log collection, event correlation, VPNs, and other safeguards. Analyse system and network data from sources such enterprise security information and event monitoring (SIEM), data feeds of alerts and logs from firewalls, routers, and other network devices or hosts, network IPS/IDS systems, other host and network-based signature and heuristics-based systems, and other information sources. Ensure the safety of digital assets and to protect systems from intentional or inadvertent access, prevent security violations, system intrusions, data breaches, and system destruction. Prepare reports on an as needed basis for compliance, change management, systems monitoring and intrusion analysis. Assist in the development and implementation of new security alerting criteria based on new or existing data in the SIEM environment. Create formal documentation and diagrams for systems administration, operations, and maintenance. Assist with the management of Information Security service ticket queue. Perform service ticket resolution or escalation in a timely fashion while meeting SLA response time. Work as a key member of the Cyber Security Incident Response Team during significant security incidents.

The position is not an entry-level position and prior full-time Information Security or SOC experience is required. Strong logical and methodical approach, especially under pressure. Excellent verbal and written communication skills, able to explain technical concepts to both technical and non-technical audiences. Relevant education, training, or certifications in cyber security. Knowledge of Cyber Essentials Plus accreditation and ISO27001 information security standard.