Senior Information Security Analyst
Start: ASAP
Salary: - per annum
Contract Type: Permanent
Hybrid Working Arrangement: 2 days per week at one of 3 sites (full time in the office for the first month)
Benefits:
1. Local Government Pension Scheme (LGPS) between of an employee’s salary
2. Family Friendly Policies including flexible working, occupational maternity, paternity and adoption leave
3. Annual leave- Enjoy 26 days plus bank holidays and the option to purchase up to 5 days extra plus your birthday off* Also provide an option for you to flex when you take your bank holidays
4. Hybrid working- Coming together and learning from each other is important, through Hybrid working our employees can work from home and office, with a minimum of 2 days working in our offices per week
5. Learning and Development opportunities to support your career progression
6. Employee Benefits platform
Responsibilities:
7. Escalation point and reporting officer for network related security incidents, threat and vulnerabilities
8. Investigate priority threats and potential cyber incidents, ensuring no Indicators of Compromise are present on internal systems
9. Maintain and enhance the progressive Cyber Security roadmap/Strategy
10. Maintenance of a Cyber Security Incident Response Plan
11. Maintain the robust approach to security and event information management
12. Review/modify and update ICT policies and processes
13. Co-ordination of security audits and management of outcomes
14. Attend routine board meetings to overview current and future information security developments
15. Manage and enhance the corporate SIEM solution to ensure the estate is being monitored for threats and vulnerabilities. Ensuring the system remains fit for purpose for future threats and estate changes
16. Co-ordination of penetration testing
17. The continued review and recommendation of security assessment tools
18. Management of security with regards to new systems acquisition
19. Analyse and report on potential threats or patterns
20. Respond to security related enquiries
Ideal Technical Knowledge:
21. CISSP qualification
22. Networking (prefer Cisco)
23. Active Directory
24. Virtualisation Platforms (prefer VMWARE)
25. AV / EDR / XDR
26. SIEM (preference AlienVault)
27. Email Security (Prefer Mimecast)
28. Vulnerability Management (prefer Nessus)
Please apply to hear more!