Job Title: Cyber Security Analyst
Location: Head Office, Watford
Reporting to: Senior IT Governance and Security Manager
Grade: Middle Manager
Department: IT
Purpose Of The Role
The cyber security analyst is responsible for the day-to-day tasks which protect the business from cyber threats and attacks. Based in Watford, at head office, this role gives an opportunity to contribute to Wetherspoon's cyber response and to identify cyber risks, helping IT to protect the company's systems.
Role Overview
* Working closely with the IT governance and security manager, contributing to cyber strategy.
* Administering IT security systems.
* Identifying, mitigating and escalating IT security incidents.
* Identifying deviations from IT security standards.
* Analysing logs and reporting relevant information.
* Reporting trends and threats in e‑mail and web traffic, as appropriate.
* Analysing security information and producing relevant reports.
* Administering and evaluating cyber security questionnaires.
* Co‑ordinating and scheduling penetration tests.
* Managing third‑party forensic investigations.
* Completing cyber security posture‑reporting.
* Supporting excellent cyber security design and contributing to good cyber security practices.
In Detail, The Role Will Involve
* Log‑analysing.
* Security posture‑monitoring.
* Trellix antivirus‑reporting and some EPO management tasks.
* Secure physical and electronic destruction of sensitive data.
* Helping the business to protect sensitive information (e.g. encrypting data).
* Educating and awareness through spam‑testing; supporting the training teams with e‑learning.
* Monitoring public and third‑party feeds for emerging cyber trends.
* Performing cyber risk assessments.
* Co‑ordinating cyber security incidents.
* Defining cyber policies and cyber standards.
* Assessing third‑party suppliers' cyber standards.
* Keeping abreast of current and emerging threats.
Skills Required
* Understanding log management (at an analysis level): Microsoft Windows and AD log structure, network system log (e.g. Cisco and Checkpoint), Office 365 and Defender security, knowledge of Splunk the SIEM platform.
* Understanding of systems and integrity: Netwrix security solutions administration, including AD Auditor and Change Tracker; Trellix and SkyHigh reporting and management, including Trellix antivirus‑reporting and DLP using EPO.
* Operational security and incident management: experience of cyber security, quickly analysing data and making decisions on security threats.
Salary And Benefits
* Competitive salary.
* 25 days paid holiday (plus bank holidays) pro rata; head‑office bonus scheme; free shares (after 18 months with the company); private medical insurance; contributory pension scheme.
#J-18808-Ljbffr