Job Description To be part of PA Group Systems Security Operations Centre team, providing in-depth analysis of internal security intelligence and external security view The Information Security Analyst will: Review daily security system logs and alerts - Firewall/Intrusion Detection System/Data Leak Prevention/Endpoint Detection and Response – and identify security issues. Provide insight into the countermeasures PA should adopt and generate key performance indicator metrics for the security board Works as a technical resource in security related projects Perform forensic analysis as required Working with operational teams, ensure vulnerabilities are resolved Review security bulletins for threats. Liaise with key security firms reviewing threat reports. Provide out of hours On-Call availability and response to high severity incidents (usually 1 week per month – paid) Accountabilities and Measures of Success 50% Accountability: Review daily security system logs, maintain logging system policies, and resolve incidents. Measure of Success: Security issues are dealt with quickly and PA’s threats are managed effectively. 25% Accountability: Input into PA IT security controls/countermeasures and generate key performance indicators. Measure of Success: Controls are more aligned with PA’s risk and help consultants be more effective. 10% Accountability: Work as a technical resource within identified security projects. Measure of Success: Timely recommendation of security technology that works for PA. 10% Accountability: Review bulletins from key suppliers and take appropriate action. Review leading security company threat reports. Measure of Success: PA is informed of the latest threats. Operational teams are informed of any actions needed, with follow-up to ensure coverage. Key stakeholders are aware of relevant security threats and controls are made appropriate. 5% Accountability: Manage external penetration testing results and, working with operational teams, ensure vulnerabilities are resolved. Measure of Success: Operational teams are informed quickly of vulnerabilities and their resolution priority. Senior managers are informed of the status. Additional Responsibilities Work closely with the SOC Manager and Director of Cyber Security. Work with GS operational staff who require assistance with technical security issues. Interface with the rest of Group Systems on new projects/support functions undertaken. Liaise with the Head of Security. Liaise with consultants and other corporate functions. Provide clear messages around security to different levels of stakeholders, from technical staff through to senior managers. Apply investigative and intelligence analysis to security information and alerts from different sources, and provide convincing answers to IT security-related issues. Use experience to provide 4th line support with the ability to increase knowledge across GS and PA.