Information Security Analyst

identifi Global Resources
Closing date
14 Jul 2022

View more

Technology & New Media
Contract Type
Full Time
Information Security Analyst - London (Hybrid) - £70-75k + Bens + Bonus

About the company

An award-winning international law firm that prides itself on its service to thier clients whilst enabling thier people to achieve professional fulfilment in a supportive, inclusive, and enjoyable working environment.

About the role

This role will incorporate skills and tasks from both a security analyst and security engineer role, from identifying and managing risks, the effectiveness of security controls to designing, building, and maintaining robust security solutions.

In this broad and varied role you will support and gain exposure across procurement, planning, implementation, upgrade, and management of the firm's information security systems, including the reporting of security projects and provide advice on the firm's other projects regarding any aspects of information security.

You will act as a point of contact for security incidents, investigations, issues, or alerts while using existing (and future) security systems employed by the firm to regularly read, interpret, report and act on event logs produced by those systems.

You will also help drive information security best practices both in new ideas and in communications with other team members and staff across the firm, including creating awareness content and delivering training as part of a security awareness program.

Further more you will assess, review, and audit systems and controls in line with company and industry policies and standards. Manage the existing accreditations or assist with ISO 27001 accreditation process if the firm wishes to implement in the future.

What we are looking for;

Experience working in an information security analyst/engineer role.

Experience with; firewalls, anti-malware, email, web and application gateways, network security, virtual private networks, application security and control, device and system hardening, endpoint and mobile security, encryption, data loss prevention, event log management, vulnerability and patch management, identity and access controls, privileged account management and cloud security.

Experience in threat detection, analysis, containment, mitigation, recovery, and post incident reporting, securing and hardening server, network, and cloud infrastructure.

Experience using risk-based approach to threat assessments, including technical and executive reporting with recommended treatments, countermeasures etc.

Experience of incident and change management.

Experience of working in an ISO 27001 environment or involved in maintaining.

Experience in cyber incident response practices.

Knowledge of security frameworks such as CIS, NIST and Mitre Att&ck.

Security certifications such as Security+, SSCP, CCSP, CISM, CISSP etc.

What's in it for you

Normal hours will be 9.30 to 5.30 Monday to Friday - but flexibility and hybrid remote working is in place.

Fantastic working enviornment and lots of opportunity to progress.

Competitive Salary + bonus potential


Income protection

Life Assurance

plus a Range of flexible benefits

For more information and immediate consideration apply today

Get job alerts

Create a job alert and receive personalised job recommendations straight to your inbox.

Create alert