Security Analyst

NST Recruitment Limited
11 Nov 2017
18 Nov 2017
Contract Type
Full Time
Security Analyst 45,000 + Benefits Berkshire My client, a leading Provider of IT Managed Services, require an experienced Security Analyst. The successful candidate will be responsible for delivering the technical security program for the internal network. The role-holder will work alongside the Security & Compliance Manager to deliver a robust Security & Compliance Program (the Program) and will advise on all technical aspects of the program including policy definition and technical controls. Requirements: The Security Architect is responsible for defining the technical components of the Security & Compliance Program. The objective of the Program is to improve the internal security posture. Technology evaluation. The Security Architect will be responsible for assessing technology and making recommendations to support the objectives of the Program. Vendor selection. The Security Architect will use his/her knowledge of the vendor landscape to recommend vendor solutions against the technology requirements. Documentation review and definition. The Security Architect will be responsible for assessing the suitability of existing technical documentation such as patching policies and hardening guidelines and identifying gaps. The role will also contribute to the creation of new policies, procedures and guidelines in collaboration with MIS and Platform teams. Breach analysis. The Security Architect will be responsible for post-breach analysis of security events to identify root cause and recommend network and/or configuration changes to mitigate the likelihood of future breaches. The Security Architect will contribute to responses to customer security questionnaires in support of bids and proposals where those questionnaires relate to the security of the internal systems. The Security Architect will be responsible for managing the remediation of technical audit non-compliances in collaboration with the wider business. The Security Architect will be responsible for managing the internal security testing program as defined in the Security & Compliance program. This may include vulnerability assessment and penetration testing. Skills: Firewall experience, Cisco ASA, Checkpoint, Palo A lot, F5, etc Experience within configuration Experience with ISO policies and governance Significant security technology understanding, track record and experience within operational security environments Proven experience managing security infrastructure implementations including the ability to manage multiple works reams concurrently Excellent knowledge of the vendor landscape and product sets Significant hands-on experience of security technologies Experience of security testing including the ability to interpret and action test results (eg vulnerability assessments) A working knowledge of security compliance and governance frameworks such as CyberEssentials, NIST, ISO27001 etc. would be advantageous - provided by Dice CISCO, FIREWALL, ISO27001, PENETRATION TESTING, VULNERABILITY ASSESSMENT