Position Title: Security Analyst
Department: Cyber Security
Reports to: Security Operations Manager
Job Purpose:
Analyse, maintain, and implement cyber security requirements, focusing on incident and threat identification, prioritization, and remediation. Monitor and report on threat status, and provide recommendations based on security information from various sources.
Primary Responsibilities:
- Review and manage threat and activity information from sources including MSSP data, email gateway, DDoS services, Qualys vulnerability reports, Azure and O365 security information, AD protection, and networking services.
- Daily review of security data and ensure prompt action on high-priority issues.
- Manage incident remediation with the IT Service Provider.
- Provide technical leadership during security incidents.
- Translate technical threat information into business impact information for management.
- Ensure accurate and relevant security information across systems.
- Coordinate with MSSP and SP for threat prioritization and remediation.
- Raise and highlight obstacles to threat removal.
- Respond to lower-level alerts and ensure proper management of alerts within the business and SI's.
- Understand the company's security standards and policies.
- Act as the main contact for data from the MSSP.
- Raise appropriate security incidents and manage risk remediation.
- Prepare and present regular governance reports on security threat detection and remediation.
- Monitor and report on security trends within the business and the industry.
Key Relationships:
- IT Senior Leadership
- MSSP
- Service Delivery/Support Managers
- Internal and External audit teams
- Cyber Security Practice
Measures of Success:
- Successful completion of annual financial audit
- Accurate analysis and reporting of cyber security issues and concerns
- Timely completion of scheduled tests and assessments
Experience and Qualifications:
- Minimum 3 years of operational cyber security experience, ideally in a SOC environment
- Self-motivated and able to work autonomously
- Knowledge of Cyber Security Risk Management
- Preferred qualifications: CISM or equivalent, SOC, forensic investigation, and/or threat intelligence experience
- Ability to work with various management levels and SMEs
- Power BI
- Microsoft Stack and Azure
- Excellent communication and stakeholder management
- Testing
Pre-employment Checks:
- May include criminal records (DBS), credit reference, and DVLA checks.
Key Competencies:
- Well-planned and organized
- Effective communication and collaboration
- Customer-focused
- Informed decision-making
- Solution-oriented