Senior Information Security Analyst / Specialist - Wolverhampton

Additional Resources Ltd
18 May 2017
17 Jun 2017
Contract Type
Full Time
Senior Information Security Analyst / Specialist - Wolverhampton

£40-48,000pa plus truly excellent benefits & bonus

As a Senior Security Analyst, your role on the team will include leveraging your knowledge of industry best practices, good judgment and problem solving skills to execute security operations.

You will be reporting directly to the IT Security Manager and be expected to support him in his role and be prepared to deputize for him when required.

Strong written and verbal communication skills are essential as is the ability to communicate well with Business stakeholders. You should be analytical with the ability to identify and define problems or risks; determine probable causes and recommend appropriate solutions.

In return you will receive a competitive salary & benefits, and be part of a team that encourages individual ideas and innovation and which is integral in supporting the business through its exciting, on-going transformation and growth.

We are looking for someone who is committed to the long term and we value loyalty and a desire to be part of something special.

In this position you will:

- Provide security monitoring for a growing environment; support incident responses and provide root cause analysis support for incidents.

- Review aggregated server logs, firewall logs, intrusion prevention logs, and network traffic for unusual or suspicious activity.

- Provide Information Security Reporting and Metrics and provide input into improving information security reporting and metrics; identify/recommend improvements on internal investigation capabilities via tool building.

- Provide assistance in recovering from security breaches; participates in investigation and remediation of security incidents this may include working as part of a team, performing deep-dive incident analysis and determining if critical systems or data sets has been impacted.

- Establish configuration policies for security technologies.

- Conduct research on emerging threats in support of security enhancement and development efforts; recommend security improvements, upgrades, and/or purchases.

- Coordinating the incident response of minor incidents by advising on remediation actions and escalating major incidents to the designated parties.

- Recording lessons learnt and improving existing processes and procedures.

- Providing support of new analytic methods for detecting threats. Continuously seeking to identify potential service and process improvements.

- Work with IT Technical teams in ensuring Vulnerability management processes are implemented maintained and monitored.

Essential experience:

- Have a strong IT technical background within enterprise level IT security operations. (4 years +)

- Has functional knowledge and experience of using tools for security monitoring (e.g. Splunk, QRadar, Intel MacAfee, ArcSight, RSA NetWitness),

- Knowledge of or experience in vulnerability management tools (e.g. Qualys, Nmap, Nessus, Nexpose)

- Functional knowledge of TCP/IP protocol suite, LAN/WAN topologies, switching, routing, VoIP and Telephony systems, firewalls and VPN, Intrusion Prevention Systems (IPS), vulnerability assessment and patch management tools.

- Email best practices & staff training on security.

- Functional knowledge of UNIX, Linux, Apple and Windows technologies.

- Functional knowledge of operating protocol analyzers and analyzing output e.g. Wireshark

- Functional experience performing monitoring, analysis and recovery procedures.

- Functional experience performing deep-dive incident analysis by correlating data from various sources.

- Knowledge of targeted cyber-attack (APT), how to analysis these and respond to and mitigate against further attacks.

- A strong understanding of Information Security standards such as ISO 27001/2 Cyber Essentials, PCI DSS

- Maintain PCS DSS certification

- Come from a structured ITIL environment

Desirable experience:

- Active CISSP, CISA, SSCP, SANS certifications, Security or equivalents.

- Exposure to and experience in dealing with external and internal auditors

- Experience of working within Risk management frameworks such as RCSA

- Experience of working in a regulated industry like financial services considered highly advantageous.

- PCI DSS certification standards

- ITIL v3 certification (Security Management)

- Application development with an understanding of secure code development

The position attracts a competitive salary and benefits including 25 days holiday, non-contributory cover for Life Assurance of up to 3 times basic salary and a performance related bonus up to 20% of base salary, based upon achieving company budgets and targets.

Key Words

Information Security Analyst, Analysis, SOC, Specialist, Officer, Server, Firewall, Logs, Intrusion, Prevention, Network Traffic, Reporting, Audits, Info Sec, Cyber, Breaches, Incidents, Policies, Improvement, Vulnerability, Monitoring, Management, Splunk, QRadar, Intel MacAfee, ArcSight, RSA NetWitness, Qualys, Nmap, Nessus, Nexpose, TCP./IP, LAN, WAN, Switches, Routers, VOIP, Firewalls, VPN, IPS, Patch Management, Unix, Linux, Windows, Protocol Analyzers, Wireshark, Recovery, Monitoring, Prevention, Analysing, APT, Targheted Cyber-Attacks, ISO 27001, 27002 Cyber Essentials, PCI DSS, CISSP, CISA, SSCP, SANS, Audits, Risk Management, RCSA, ITIL v3

Additional Resources Ltd is an Employment Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003.