Cyber Security Analyst

About The Role

Purpose To maintain appropriate Cyber security controls across the [Employer hidden — view at passion-project.co.uk] Group, providing support for colleagues through training and guidance on cyber related questions, and will be comfortable working with a variety of technologies, security problems, and troubleshooting of the network. To be able to respond to security incidents, update and secure devices across the [Employer hidden] Group.

Responsibilities

• Managing, monitoring, and upgrading security measures for the protection of the [Employer hidden] group's data, systems, and networks, ensuring that the networks are protected from malware and viruses, identifying areas that might be under threat and areas where security can be improved.
• Management of SIEM activities and working alongside an outsourced 24/7 SOC team.
• Troubleshooting cyber security related issues.
• Responding to all system security breaches, investigating and implementing solid plans of incident response, learning from past shortcomings to create ever more robust security protocols.
• Conducting scans to identify any vulnerabilities in the network and system, creating resolution plans for any resulting issues.
• Regular administrative tasks, reporting, and communication with the relevant departments in the [Employer hidden] group, including IT Governance committee attendance and participation, reporting of relevant management information.
• Participation in the change management process, analysing changing security requirements across the whole lifecycle of a product, and make sure these are met at every stage.
• Contribute to colleague engagement in cyber through user training, appropriate regular cyber testing, and conduct cyber scenario tests.
• Stay on top of industry standards and developments with Cyber Security Industry where applicable to [Employer hidden] group.
• Contribute to internal cyber security policies for the organisation, updating where relevant and/or necessary.
• Assist with the completion of regular disaster recovery testing of IT infrastructure, configuring cyber specific components of the designed disaster recovery plan.
• Reports to the Cyber Security Engineer, immediately escalating outages, major delays and other serious issues.
• Support [Employer hidden]’s VPVPs and complete all necessary compliance and cyber initiatives.

About You

Knowledge

• Experience with Microsoft Security tooling such as M365 Defender and Sentinel
• Experience with vulnerability management
• Knowledge of operating systems, virtual machines, Network Security Control and Cloud security.
• Knowledge of industry recognised IT and support practices.
• Comprehensive functional knowledge of Business Operations and processes and related Technology.
• Awareness of The Internet of Things (IoT) and Artificial Intelligence (AI).
• Experience and underlying knowledge of IT infrastructure technologies. Including networking, Active Directory, Entra ID, Exchange, Intune and virtualisation.
• Excellent PC support skills including a broad knowledge of Windows 10 & 11. Office 365 and experience of supporting 3rd party desktop applications.
• Ability to logically and methodically problem solve IT incidents and outages.
• Proven track record of delivering to commitments.
• Excellent written and oral communication skills, with an ability to make technical information easy to understand.
• Ability to identify, manage and mitigate risk.

Qualifications

• Applicable Cyber security qualifications (i.e. CompTIA Security+ & SC-200) would be beneficial.
• Microsoft Infrastructure specific, including Azure, certifications are a distinct advantage.

Skills/Other relevant information

• Team player.
• Conscientious.
• Great problem-solving skills
• Good attention to detail.
• Good time management skills
• Proactive approach.
• Ability to think laterally.
• Proven track record.
• Can-do attitude.
• Willing to take responsibility.

About Us

Not Specified