Naukrijobs UK
Register
London Jobs
Manchester Jobs
Liverpool Jobs
Nottingham Jobs
Birmingham Jobs
Cambridge Jobs
Glasgow Jobs
Bristol Jobs
Wales Jobs
Oil & Gas Jobs
Banking Jobs
Construction Jobs
Top Management Jobs
IT - Software Jobs
Medical Healthcare Jobs
Purchase / Logistics Jobs
Sales
Ajax Jobs
Designing Jobs
ASP .NET Jobs
Java Jobs
MySQL Jobs
Sap hr Jobs
Software Testing Jobs
Html Jobs
IT Jobs
Logistics Jobs
Customer Service Jobs
Airport Jobs
Banking Jobs
Driver Jobs
Part Time Jobs
Civil Engineering Jobs
Accountant Jobs
Safety Officer Jobs
Nursing Jobs
Civil Engineering Jobs
Hospitality Jobs
Part Time Jobs
Security Jobs
Finance Jobs
Marketing Jobs
Shipping Jobs
Real Estate Jobs
Telecom Jobs

Security Analyst

SOM-3 RECRUITMENT LIMITED
Job LocationManchester
EducationNot Mentioned
Salary£35,000 - £40,000 per annum, negotiable, inc benef
IndustryNot Mentioned
Functional AreaNot Mentioned
Job TypePermanent, full-time

Job Description

Role: Security AnalystLocation: ManchesterSalary: £40k + Bonus & BenefitsBenefits: Bonus, SAYE share buying options, Pension, 40% staff discount 25 Days Holiday + BHsRole type: Permanent, ideally to start ASAPAre you a Security Analyst / Engineer looking for your next exciting opportunity with a fast paced and market leading e-commerce businessThis is a fabulous opportunity to join a massively successful eCommerce business that is truly on a charge! Their IT & Technology team is experiencing significant growth with many new technologies and processes being introduced.In this role you will assist in the development and enhancement of the IT security function, dealing with every aspect of IT security monitoring and testing across the business. You will be pivotal in the early stages of creating a security operations center (SOC), and work with a market leading managed security services provider (MssP) partner.Responsibilities

  • Daily monitoring and administration of security controls, tooling solutions and Cloud based systems such as Office 365, AWS, Azure.
  • Monitoring of SIEM, Brand Protection, Vulnerability Scanning, Threat Detection & Intelligence, working in partnership with the incumbent MssP
  • Monitor security services to ensure patching, security controls and mechanisms are effective - investigate issues and escalate to 3rd parties where appropriate.
  • Assist in developing, maturing and managing existing operational processes for run books to be created or automated
  • Assist in the delivery of security reviews and management metrics to ensure the integrity, confidentiality, and availability.
  • Propose improvements within the scope of Security Operations that will lead to automation, standardisation, and consolidation for ease of support / maintenance
  • Create working relationships with stakeholders to deliver and enhance the service.
  • Take ownership in obtaining information, evidence & data required to diagnose and resolve complex problems
  • Proactively analyse trends and reports to highlight potential problems, maintain and enhance service.
  • Be a flexible member of the security operations team to provide knowledge, assistance and advice to other members
  • Maintain awareness of technical and service developments, taking the initiative to extend your own knowledge to learn about products, technologies and techniques to deliver enhancements
  • Monitor events and alerts from multiple technologies to detect potential malicious activity.
  • Carrying out analysis and triage of Cyber Security events.
  • Taking ownership to identify and assess appropriate outcomes and responses to events
  • Provide clear and concise communication and collaboration when responding to events through to remediation.
  • Identify, escalate and debate all risks to the business, by analysing events/metrics and escalation data, identify patterns and trends on high risk controls and proactively suggest, develop and implement enhancements to reduce risk.
    • Required:
  • At least 2+ years working in a SOC (Security Operations Center) function
  • Strong knowledge of common operation systems (Windows, Linux, etc.) and endpoint security principles.
  • Commercial experience in Cyber Security, Incident Response, or a related field.
  • Prior experience detecting and analysing security events and/or responding to security incidents.
  • Demonstrable ability to analyse and correlate information from a various enterprise technologies.
  • Hands-on experience with security technologies (IDS, Firewall, SIEM, etc.).
  • Strong knowledge of common security analysis tools & techniques.
  • Understanding of common security threats, attack vectors, vulnerabilities and exploits.
  • Strong knowledge of common networking services and protocols (TCP/IP, SSH, FTP, DNS, DHCP, SMTP, SSL, etc.).
  • Malware Analysis (Analysis of documents/ malicious binaries/ understanding and interpreting results of Sandbox output)
  • Contain service attacks i.e. lateral movement privilege escalation and APT
  • Network Based Attacks/ Incidents (DDoS/ IDS Alerts)
  • Containment (Understanding of containment of security incidents both at the network and host layer)
  • Good verbal and written communication skills
  • Good analytical and problem solving skills
  • Knowledge using Vulnerability Assessment tools like Nessus, Qualys etc.
  • Good understanding of IT security principles
  • Creation of use cases and Mitre ATT&CK framework
    • Preferred:
  • Digital Forensics (Basic understanding of key concepts)
  • Experience of common information security management frameworks and standards, such as ISO27K, ITIL, COBIT, PCI-DSS and National Institute of Standards and Technology (NIST
  • Exposure to standards and policies relating to ISO27001/2 controls
  • Ability to read and understand architectural design and implement security controls
  • Experience with Security design testing in accordance with the OWASP security testing methodology
  • Experience with Threat identification and remediation including penetration testing
  • Familiarity with relevant legislation including DPA and GDPR.
  • Exposure to risk assessments of products and services.
  • Exposure to treatment plans for risks and management of risk models.
  • Exposure to audits from external sources, i.e. PCI-DSS
  • Exposure to cloud technologies layered security practices for network, host, applications, data and access to IaaS, PaaS and SaaS services in a hybrid deployment environment
  • Working towards or have obtained a GIAC, CEH qualification
    • Search Terms: IT Security Analyst, IT Security Engineer, SOC, Security Operations Centre, Office 365, Microsoft Azure, Cloud, Linux, RHEL, Redhat, IDS, Firewall, SIEM, TCP/IP, SSH, FTP, DNS, DHCP, SMTP, SSL, ISO27001, ITIL, DDoS/ IDS Alerts, OWASP, DPA, GDPR Required skills
  • IT Security Analyst

    • Keyskills :
    IT Security Analyst

    APPLY NOW

    Security Analyst Related Jobs

    © 2019 Naukrijobs All Rights Reserved