Venesky-Brown’s client, a public sector organisation in Edinburgh, is currently looking to recruit a Cyber Security Analyst for an initial 12 month contract with option to extend on a rate of £475-£500/day (Outside IR35). This role will be based in Edinburgh - home working will be considered subject to attendance where needed.
Responsibilities:
- Process alerts and incidents through tools and direct user reports, knowing when to escalate, ensuring lessons are learned to minimise re-occurrence where appropriate.
- Configure appropriate alerts and remediation processes including automation where possible to ensure significant volumes of security event data can be manged within the small team
- Proactively engage colleagues to develop understanding of good cyber security across the organisation, not limited to overseeing phishing simulations and drafting news articles.
- Determine valuable intelligence feeds, process reports, assess within organisational context, and use intelligence to proactively seek out configuration and process weaknesses, escalating where necessary.
- Configure Cyber Security scanning tools to ensure trusted data pertaining to current digital system configuration and vulnerabilities is available, prioritise findings and raise with engineers and or risk mangers where necessary, ensure business priorities are considered and where greatest reduction of risk for invested time will be achieved.
- Proactive review access controls to report excessive permissions to digital systems
- Carry out investigation and troubleshoot in conjunction with engineers, developers, and business colleagues
- Proactively highlight potential security improvements
- Provide excellent service in response to all business requirements
- Document procedures and share experience with colleagues.
- Provide recommendations for SecOps processes and automation
Essential Skills:
- Analytical and troubleshooting skills are essential, including problem solving from first principles
- Significant operational cyber security experience on digital systems on an enterprise scale
- Demonstrable recent record of directly carrying out cyber security activities above
- Ability to self-start, accept ownership and see through change start to finish
- Communicate effectively on technical subject with users
Desirable Skills:
- Microsoft – on-premise and cloud related engineering level certifications
- Security – vendor or industry (such as SANS) qualifications
- ITIL certification
If you would like to hear more about this opportunity please get in touch.