Location
Dstl Porton Down, Salisbury, Wiltshire, SP4 0JQ or Dstl Portsdown West, Fareham, Hampshire, PO17 6AD
About the job
Job summary
Dstl is the science and technology arm of the Ministry of Defence. We improve the front-line capability of the UK Armed Forces helping keep our country safe.
The Cyber Security and Safety Group has never been more important. Many military platforms such as fast jets, unmanned air vehicles, helicopters, naval vessels, and land vehicles are becoming increasingly reliant on Software, Artificial Intelligence (AI) and Autonomous functions to control all aspects of their behaviour.
We’re looking for mathematically strong data scientists to help make AI reliant military systems robust and trustworthy in complex operations to help save lives.
An example of our world class inspiring work is designing and trialling a variety of autonomous air and ground vehicles out in Salisbury plain with the US and Australia. AI models were retrained in flight to meet changing mission situations to enhance commanders’ decision-making.
You could be involved in:
Assessing and improving AI content in Defence and Security safety critical systems in the Air, Sea and Land domains, to ensure that they are safe, secure and protected.
Applying the latest thinking in verification and validation of artificial intelligence and autonomous functions for defence and security purposes.
Innovating to support the delivery of the UK Cyber Strategy by researching algorithms for Cyber defence.
Dstl recognises the importance of diversity and inclusion as people from diverse backgrounds bring fresh ideas. We are committed to building an inclusive working environment in which each employee fulfils their potential and maximises their contribution.
We particularly welcome female and ethnic minority applicants and those from the LGBTQI community, as they are under-represented within Dstl at these levels.
Job description
In this role you will:
Have a drive for keeping abreast of the latest developments in cyber security and emerging trends in artificial intelligence. We give our people the opportunity to think and innovate. We offer loads of opportunities for training and scholarships, attending and presenting at conferences, and collaborating with internal research and industry and academia.
Work in a team consisting of highly professional Autonomy and Mathematical experts with enviable national and international reputations to take part in cutting edge research. Use your critical thinking and creative problem solving skills to implement state of art methods and tools.
Develop a knowledge of undertaking verification, validation and vulnerability assessments on Systems of interest.
Appreciate the importance of safety, security requirements to have a positive impact on defence and security of the UK.
Deliver technical reports and recommendations to leadership, senior officials across government and military and other non-technical audiences through clear data storytelling and well-crafted verbal presentations
Person specification
We are looking for someone who has:
A keen interest in algorithms, AI, ML or statistical analysis along with a willingness to develop additional capabilities in cyber security and safety.
Experience contributing to Software or AI / ML intensive projects.
Is looking for a career with a difference, doing a job that provides the latest and most effective tools to defend our nation and uphold the principle of freedom.
Important Information:
Our work in defence, security and intelligence requires our employees to be UK Nationals who are able to gain a high level of security clearance to undertake the projects we are involved in to protect us from security threats. For this reason, only UK Nationals will be able to apply for this role. If you are an international or dual-national candidate, and you think you have the skills we need, please consider applying to any of our government, security or defence partners.
This role will require full UK security clearance and you should have resided in the UK for the past 5 years. For some roles Developed Vetting will also be required, in this case you should have resided in the UK for the past 10 years.
Behaviours
We'll assess you against these behaviours during the selection process:
Changing and Improving
Communicating and Influencing
Seeing the Big Picture
Working Together
Benefits
Benefits
Dstl’s full range of great benefits can be found in the information pack which includes:
Financial : An excellent pension scheme starting from 26% employer contribution ( find out more here ). In Year Rewarding Achievement bonuses and thank you vouchers. Rental deposit scheme and cycle to work scheme.
Flexible working : Options include alternative working patterns such as; compressed hours (e.g. working a 4 day week/ 9 day fortnight), job shares and annualised hours (agreed number of hours per annum paid monthly i.e. working term-time only).
Working hours: Flexibility around your working day (e.g. start time, finish time). Ability to bank hours in a 12 month reference period including the ability to accrue and use 3 days per calendar month.
Where you work: Depending on your role, blended working may be available including remote working to suit you and your team. This can be discussed at interview.
Annual leave: 25 days pro rata (rising to 30 after 5 years) plus 8 public holidays with the ability to buy/sell 5 additional days per annum.
Family: Maternity, adoption or shared parental leave of up to 26 weeks with full pay, an additional 13 weeks statutory pay and a further 13 weeks unpaid
Learning and Development: Dstl encourages and supports charterships, accreditations and provides employees access to fully funded apprenticeships up to level 7 (Masters Degree). Dstl will pay for 2 memberships with relevant bodies/institutions. Employees also have access to Civil Service Learning.
Facilities: Onsite parking, EV Charging points, restaurants, cafés and gyms.
Things you need to know
Selection process details
This vacancy is using Success Profiles (opens in a new window) , and will assess your Behaviours and Experience.
We want you to have your best chance of success in our recruitment process, so If at any stage of the application process you would like help or assistance please contact the Dstl Recruitment Team dstlrecruitment@dstl.gov.uk and we will do all we can to support you.
Sifting will be taking place bi-weekly throughout the campaign, successful applicants will be invited to attend an online interview via MS Teams.
Feedback will only be provided if you attend an interview or assessment.
Security
Successful candidates must undergo a criminal record check. Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check (opens in a new window) . See our vetting charter (opens in a new window) . People working with government assets must complete baseline personnel security standard (opens in new window) checks.
Nationality requirements
Open to UK nationals only. This job is not open to candidates who hold a dual nationality.
Working for the Civil Service
The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants. We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window) . The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria. The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.
Apply and further information
This vacancy is part of the Great Place to Work for Veterans (opens in a new window) initiative. Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.
Contact point for applicants
Job contact :
Name : Dstl Recruitment
Email : dstlrecruitment@dstl.gov.uk
Recruitment team
Email : dstlrecruitment@dstl.gov.uk
Further information
Should you wish to raise a formal complaint about the Dstl recruitment process you should email dstlrecruitment@dstl.gov.uk stating the nature of the issue. We will respond within 5 working days.
Attachments
20230626_CSAS_Data_Scientist_Autonomy_Dependability_L5 Opens in new window (docx, 66kB) Candidate_info_pack_CIS - 20220824 Opens in new window (pdf, 1378kB)
Jul 03, 2023
Full time
Location
Dstl Porton Down, Salisbury, Wiltshire, SP4 0JQ or Dstl Portsdown West, Fareham, Hampshire, PO17 6AD
About the job
Job summary
Dstl is the science and technology arm of the Ministry of Defence. We improve the front-line capability of the UK Armed Forces helping keep our country safe.
The Cyber Security and Safety Group has never been more important. Many military platforms such as fast jets, unmanned air vehicles, helicopters, naval vessels, and land vehicles are becoming increasingly reliant on Software, Artificial Intelligence (AI) and Autonomous functions to control all aspects of their behaviour.
We’re looking for mathematically strong data scientists to help make AI reliant military systems robust and trustworthy in complex operations to help save lives.
An example of our world class inspiring work is designing and trialling a variety of autonomous air and ground vehicles out in Salisbury plain with the US and Australia. AI models were retrained in flight to meet changing mission situations to enhance commanders’ decision-making.
You could be involved in:
Assessing and improving AI content in Defence and Security safety critical systems in the Air, Sea and Land domains, to ensure that they are safe, secure and protected.
Applying the latest thinking in verification and validation of artificial intelligence and autonomous functions for defence and security purposes.
Innovating to support the delivery of the UK Cyber Strategy by researching algorithms for Cyber defence.
Dstl recognises the importance of diversity and inclusion as people from diverse backgrounds bring fresh ideas. We are committed to building an inclusive working environment in which each employee fulfils their potential and maximises their contribution.
We particularly welcome female and ethnic minority applicants and those from the LGBTQI community, as they are under-represented within Dstl at these levels.
Job description
In this role you will:
Have a drive for keeping abreast of the latest developments in cyber security and emerging trends in artificial intelligence. We give our people the opportunity to think and innovate. We offer loads of opportunities for training and scholarships, attending and presenting at conferences, and collaborating with internal research and industry and academia.
Work in a team consisting of highly professional Autonomy and Mathematical experts with enviable national and international reputations to take part in cutting edge research. Use your critical thinking and creative problem solving skills to implement state of art methods and tools.
Develop a knowledge of undertaking verification, validation and vulnerability assessments on Systems of interest.
Appreciate the importance of safety, security requirements to have a positive impact on defence and security of the UK.
Deliver technical reports and recommendations to leadership, senior officials across government and military and other non-technical audiences through clear data storytelling and well-crafted verbal presentations
Person specification
We are looking for someone who has:
A keen interest in algorithms, AI, ML or statistical analysis along with a willingness to develop additional capabilities in cyber security and safety.
Experience contributing to Software or AI / ML intensive projects.
Is looking for a career with a difference, doing a job that provides the latest and most effective tools to defend our nation and uphold the principle of freedom.
Important Information:
Our work in defence, security and intelligence requires our employees to be UK Nationals who are able to gain a high level of security clearance to undertake the projects we are involved in to protect us from security threats. For this reason, only UK Nationals will be able to apply for this role. If you are an international or dual-national candidate, and you think you have the skills we need, please consider applying to any of our government, security or defence partners.
This role will require full UK security clearance and you should have resided in the UK for the past 5 years. For some roles Developed Vetting will also be required, in this case you should have resided in the UK for the past 10 years.
Behaviours
We'll assess you against these behaviours during the selection process:
Changing and Improving
Communicating and Influencing
Seeing the Big Picture
Working Together
Benefits
Benefits
Dstl’s full range of great benefits can be found in the information pack which includes:
Financial : An excellent pension scheme starting from 26% employer contribution ( find out more here ). In Year Rewarding Achievement bonuses and thank you vouchers. Rental deposit scheme and cycle to work scheme.
Flexible working : Options include alternative working patterns such as; compressed hours (e.g. working a 4 day week/ 9 day fortnight), job shares and annualised hours (agreed number of hours per annum paid monthly i.e. working term-time only).
Working hours: Flexibility around your working day (e.g. start time, finish time). Ability to bank hours in a 12 month reference period including the ability to accrue and use 3 days per calendar month.
Where you work: Depending on your role, blended working may be available including remote working to suit you and your team. This can be discussed at interview.
Annual leave: 25 days pro rata (rising to 30 after 5 years) plus 8 public holidays with the ability to buy/sell 5 additional days per annum.
Family: Maternity, adoption or shared parental leave of up to 26 weeks with full pay, an additional 13 weeks statutory pay and a further 13 weeks unpaid
Learning and Development: Dstl encourages and supports charterships, accreditations and provides employees access to fully funded apprenticeships up to level 7 (Masters Degree). Dstl will pay for 2 memberships with relevant bodies/institutions. Employees also have access to Civil Service Learning.
Facilities: Onsite parking, EV Charging points, restaurants, cafés and gyms.
Things you need to know
Selection process details
This vacancy is using Success Profiles (opens in a new window) , and will assess your Behaviours and Experience.
We want you to have your best chance of success in our recruitment process, so If at any stage of the application process you would like help or assistance please contact the Dstl Recruitment Team dstlrecruitment@dstl.gov.uk and we will do all we can to support you.
Sifting will be taking place bi-weekly throughout the campaign, successful applicants will be invited to attend an online interview via MS Teams.
Feedback will only be provided if you attend an interview or assessment.
Security
Successful candidates must undergo a criminal record check. Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check (opens in a new window) . See our vetting charter (opens in a new window) . People working with government assets must complete baseline personnel security standard (opens in new window) checks.
Nationality requirements
Open to UK nationals only. This job is not open to candidates who hold a dual nationality.
Working for the Civil Service
The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants. We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window) . The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria. The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.
Apply and further information
This vacancy is part of the Great Place to Work for Veterans (opens in a new window) initiative. Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.
Contact point for applicants
Job contact :
Name : Dstl Recruitment
Email : dstlrecruitment@dstl.gov.uk
Recruitment team
Email : dstlrecruitment@dstl.gov.uk
Further information
Should you wish to raise a formal complaint about the Dstl recruitment process you should email dstlrecruitment@dstl.gov.uk stating the nature of the issue. We will respond within 5 working days.
Attachments
20230626_CSAS_Data_Scientist_Autonomy_Dependability_L5 Opens in new window (docx, 66kB) Candidate_info_pack_CIS - 20220824 Opens in new window (pdf, 1378kB)
Senior Cyber Security Analyst Utilities Hybrid: 2-3 days per week in Taunton or Exeter 6 months+ £650 - £700 per day In short: Classic Cyber Security Analyst required to join a major utilities company in SOC-related activities. In full: Reporting to the Senior Cyber Solutions Architect, you will be responsible for the development, delivery and support of new cyber security systems and processes within the department specialising in OT and Telecoms cyber security. You will also be a subject matter expert and a point of escalation for the business and cyber security analysts. Main Responsibilities Responsible for the management and development of SIEM reports and dashboards. Conduct vulnerability assessments within IT & OT and resolve any identified vulnerabilities, in collaboration with system owners. Responsible for investigating and resolving security queries in relation to company systems. Evaluating security processes against benchmarks. Developing specific cyber security metrics / KPI's. Deliver service improvements, such as process automation, platform tuning and configuration management. Provide subject matter expertise in relation to cyber risks and threats. Respond to cyber security incidents. Identify cyber security training needs. Carry out forensics on systems and hardware as required. Monitoring and assessment of threat intelligence feeds. Analyse the output of various security reports and advise/escalate where required. Liaise with Business System owners on security matters. Participate in and manage penetration tests. You should have an appropriate level of experience within an IT Environment, working with OT and cyber security. It would be advantageous to have or be working towards a recognised Cyber Security qualification such as OSCP, CISSP, CCNA Security etc. Experience and/or knowledge of OT/SCADA, Telecoms and control systems would be beneficial. The successful candidate may initially be appointed on a designate basis and all candidates will be required to undertake and successfully complete a Security Check (SC). Candidates will ideally show evidence of the above in their CV in order to be considered.Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. Pontoon is an employment consultancy and operates as an equal opportunities employer.
May 04, 2024
Full time
Senior Cyber Security Analyst Utilities Hybrid: 2-3 days per week in Taunton or Exeter 6 months+ £650 - £700 per day In short: Classic Cyber Security Analyst required to join a major utilities company in SOC-related activities. In full: Reporting to the Senior Cyber Solutions Architect, you will be responsible for the development, delivery and support of new cyber security systems and processes within the department specialising in OT and Telecoms cyber security. You will also be a subject matter expert and a point of escalation for the business and cyber security analysts. Main Responsibilities Responsible for the management and development of SIEM reports and dashboards. Conduct vulnerability assessments within IT & OT and resolve any identified vulnerabilities, in collaboration with system owners. Responsible for investigating and resolving security queries in relation to company systems. Evaluating security processes against benchmarks. Developing specific cyber security metrics / KPI's. Deliver service improvements, such as process automation, platform tuning and configuration management. Provide subject matter expertise in relation to cyber risks and threats. Respond to cyber security incidents. Identify cyber security training needs. Carry out forensics on systems and hardware as required. Monitoring and assessment of threat intelligence feeds. Analyse the output of various security reports and advise/escalate where required. Liaise with Business System owners on security matters. Participate in and manage penetration tests. You should have an appropriate level of experience within an IT Environment, working with OT and cyber security. It would be advantageous to have or be working towards a recognised Cyber Security qualification such as OSCP, CISSP, CCNA Security etc. Experience and/or knowledge of OT/SCADA, Telecoms and control systems would be beneficial. The successful candidate may initially be appointed on a designate basis and all candidates will be required to undertake and successfully complete a Security Check (SC). Candidates will ideally show evidence of the above in their CV in order to be considered.Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. Pontoon is an employment consultancy and operates as an equal opportunities employer.
Cyber Security Analyst High Level Security Clearance Required Up to 80,000 + Bonus Gloucestershire 2 Stage Interview Process Yolk Recruitment are working with a National Security Consultancy looking to grow their Cyber Security division. They're looking for experience Cyber Security Analyst's to join at their Gloucestershire site. If successful you will join an experienced team workign to keep critical UK assets & applications secure. You will play a crucial role in identifying and mitigating cybersecurity risks, conducting security assessments, and helping protect clients' most valuable assets. They are based in Gloucestershire & the role requires active high level UK security clearance. What you will be doing: Conduct regular security assessments, vulnerability scans, and penetration tests to identify potential weaknesses in client systems and networks. Analyse security data, logs, and events to detect and respond to security incidents and threats. Develop and implement security policies, procedures, and guidelines to ensure compliance with industry standards and regulations. Monitor and investigate security breaches, incidents, and suspicious activities to identify the root causes and recommend remediation actions. Collaborate with clients to provide guidance and recommendations for enhancing their cybersecurity posture. The experience you will bring to the team: Proven experience in cybersecurity, preferably in a consulting or national security environment. Strong understanding of security principles, risk management, and security frameworks. Proficiency in security tools and technologies such as SIEM, IDS/IPS, firewall, and antivirus solutions. Knowledge of network protocols, security standards, and best practices. Excellent problem-solving and analytical skills. Strong communication and interpersonal skills, with the ability to work effectively with diverse teams and clients. What you'll receive in return: Salary up to 80,000 (dependent on experience) Guaranteed clearance bonus of 5,000 Annual performance bonus up to 10% Private medical insurance Enhanced pension scheme (5% / 10%) 25 days holiday (bank holidays on top) Got your attention? If you believe that you have the skills and experience for the role - then please get in touch. We also offer a referral scheme for any candidates whose details are passed to us that we successfully place. If you have any further questions then please contact Ryan Harris at Yolk Recruitment. Please note, whilst we do our best to contact all candidates, due to the high number of applications we receive we cannot guarantee this for every role. If you have not heard anything from us within 7 days of applying - then unfortunately you have been unsuccessful. Please keep an eye on our website for more opportunities. 'Yolk Recruitment Ltd acts as an employment business for temporary positions and an employment agency for permanent positions. Yolk Recruitment Limited is committed to equal opportunity and diversity. Suitable candidates with equivalent qualifications and more or less experience can apply. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
May 03, 2024
Full time
Cyber Security Analyst High Level Security Clearance Required Up to 80,000 + Bonus Gloucestershire 2 Stage Interview Process Yolk Recruitment are working with a National Security Consultancy looking to grow their Cyber Security division. They're looking for experience Cyber Security Analyst's to join at their Gloucestershire site. If successful you will join an experienced team workign to keep critical UK assets & applications secure. You will play a crucial role in identifying and mitigating cybersecurity risks, conducting security assessments, and helping protect clients' most valuable assets. They are based in Gloucestershire & the role requires active high level UK security clearance. What you will be doing: Conduct regular security assessments, vulnerability scans, and penetration tests to identify potential weaknesses in client systems and networks. Analyse security data, logs, and events to detect and respond to security incidents and threats. Develop and implement security policies, procedures, and guidelines to ensure compliance with industry standards and regulations. Monitor and investigate security breaches, incidents, and suspicious activities to identify the root causes and recommend remediation actions. Collaborate with clients to provide guidance and recommendations for enhancing their cybersecurity posture. The experience you will bring to the team: Proven experience in cybersecurity, preferably in a consulting or national security environment. Strong understanding of security principles, risk management, and security frameworks. Proficiency in security tools and technologies such as SIEM, IDS/IPS, firewall, and antivirus solutions. Knowledge of network protocols, security standards, and best practices. Excellent problem-solving and analytical skills. Strong communication and interpersonal skills, with the ability to work effectively with diverse teams and clients. What you'll receive in return: Salary up to 80,000 (dependent on experience) Guaranteed clearance bonus of 5,000 Annual performance bonus up to 10% Private medical insurance Enhanced pension scheme (5% / 10%) 25 days holiday (bank holidays on top) Got your attention? If you believe that you have the skills and experience for the role - then please get in touch. We also offer a referral scheme for any candidates whose details are passed to us that we successfully place. If you have any further questions then please contact Ryan Harris at Yolk Recruitment. Please note, whilst we do our best to contact all candidates, due to the high number of applications we receive we cannot guarantee this for every role. If you have not heard anything from us within 7 days of applying - then unfortunately you have been unsuccessful. Please keep an eye on our website for more opportunities. 'Yolk Recruitment Ltd acts as an employment business for temporary positions and an employment agency for permanent positions. Yolk Recruitment Limited is committed to equal opportunity and diversity. Suitable candidates with equivalent qualifications and more or less experience can apply. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
I am working with a client based in the South of England who specialise in cyber security. This is a fantastic opportunity for the right candidates to join an organisation who are pioneers of cyber risk management, working with a range of customers in both private and public sectors. The Role PLEASE NOTE THIS OPPORTUNITY INVOLVES ON-SITE SHIFT WORK SO PLEASE ONLY APPLY IF YOU ARE HAPPY TO WORK BOTH DAY AND NIGHT SHIFTS AND LIVE WITHIN REASONABLE COMMUTING DISTANCE OF POOLE. Due to rapid expansion, my client is looking for 2 new 24/7 SOC Analysts to add to their local team. You will be responsible for monitoring and defending customers against potential security threats. This critical role will identify, analyse and respond to security incidents to ensure the confidentiality, integrity and availability of sensitive data and systems. You will work closely with other cyber security team members to ensure a strong security posture and prevent or mitigate potential cyber attacks. This role will offer support to the infrastructure engineering project team in responding to incidents so previous infrastructure experience or experience within a 1st or 2nd line support environment would be beneficial. Based on the clients recently refurbished offices in Poole, you will work a four day operational rota including both day shifts (7am - 7pm) and nights shifts (7pm - 7am). Duties include: Monitor security information and event management (SIEM) tools and other security monitoring systems to identify potential security incidents and anomalies. Analyse alerts and log data to assess the severity and impact of potential threats. Investigate and respond to security incidents promptly and effectively. Perform in-depth analysis of security events to understand the scope, impact, and root cause of incidents. Proactively search for hidden threats and potential security weaknesses in the organization's network and systems. Utilize various security tools and methodologies to identify and address potential vulnerabilities before they are exploited. Assist in vulnerability assessments and penetration testing activities. Evaluate and prioritize identified vulnerabilities for remediation by collaborating with IT and system administrators. Create detailed reports on security incidents, response actions taken, and recommendations for improvement. Maintain accurate records of incidents, investigations, and security-related activities. Configure, update, and maintain security tools, including firewalls, intrusion detection/prevention systems, endpoint protection, and SIEM solutions. Who? I would be interested in speaking with both candidates with experience in cyber secruity in a similar role or who have other technical IT infrastructure or IT support experience and are interested in a career in cyber security. You will be provided with full support and a development plan with the opportunity to move in to other career paths within the business. A passion for technology and learning new skills is a key sucess factor for this role. My client prides itself on providing an excellent service to their customers so the sucessful candidates will need to have strong communication skills and a service-based mindset. Successful Candidates Will Be Enrolled On a Full Training & Certification Program Across The Service Portfolio; however, the following certifications and experience will be beneficial to applicants: Certification in Computer Science, Information Security, or related field (or equivalent work experience). Cybersecurity certifications such as CompTIA Security+, Certified Ethical Hacker (CEH) or Microsoft M365/Azure Understanding of cybersecurity principles, networking concepts, and various operating systems. Knowledge of common security threats, attack vectors, and mitigation strategies. Excellent communication skills to convey technical information to both technical and non-technical audiences. Experience in an IT Support/MSP support role Experience within a IT infrastructure role Strong attention to detail and ability to work under pressure in a fast-paced environment. Sucessful applicants will need to undergo a DBS check for this role.
May 03, 2024
Full time
I am working with a client based in the South of England who specialise in cyber security. This is a fantastic opportunity for the right candidates to join an organisation who are pioneers of cyber risk management, working with a range of customers in both private and public sectors. The Role PLEASE NOTE THIS OPPORTUNITY INVOLVES ON-SITE SHIFT WORK SO PLEASE ONLY APPLY IF YOU ARE HAPPY TO WORK BOTH DAY AND NIGHT SHIFTS AND LIVE WITHIN REASONABLE COMMUTING DISTANCE OF POOLE. Due to rapid expansion, my client is looking for 2 new 24/7 SOC Analysts to add to their local team. You will be responsible for monitoring and defending customers against potential security threats. This critical role will identify, analyse and respond to security incidents to ensure the confidentiality, integrity and availability of sensitive data and systems. You will work closely with other cyber security team members to ensure a strong security posture and prevent or mitigate potential cyber attacks. This role will offer support to the infrastructure engineering project team in responding to incidents so previous infrastructure experience or experience within a 1st or 2nd line support environment would be beneficial. Based on the clients recently refurbished offices in Poole, you will work a four day operational rota including both day shifts (7am - 7pm) and nights shifts (7pm - 7am). Duties include: Monitor security information and event management (SIEM) tools and other security monitoring systems to identify potential security incidents and anomalies. Analyse alerts and log data to assess the severity and impact of potential threats. Investigate and respond to security incidents promptly and effectively. Perform in-depth analysis of security events to understand the scope, impact, and root cause of incidents. Proactively search for hidden threats and potential security weaknesses in the organization's network and systems. Utilize various security tools and methodologies to identify and address potential vulnerabilities before they are exploited. Assist in vulnerability assessments and penetration testing activities. Evaluate and prioritize identified vulnerabilities for remediation by collaborating with IT and system administrators. Create detailed reports on security incidents, response actions taken, and recommendations for improvement. Maintain accurate records of incidents, investigations, and security-related activities. Configure, update, and maintain security tools, including firewalls, intrusion detection/prevention systems, endpoint protection, and SIEM solutions. Who? I would be interested in speaking with both candidates with experience in cyber secruity in a similar role or who have other technical IT infrastructure or IT support experience and are interested in a career in cyber security. You will be provided with full support and a development plan with the opportunity to move in to other career paths within the business. A passion for technology and learning new skills is a key sucess factor for this role. My client prides itself on providing an excellent service to their customers so the sucessful candidates will need to have strong communication skills and a service-based mindset. Successful Candidates Will Be Enrolled On a Full Training & Certification Program Across The Service Portfolio; however, the following certifications and experience will be beneficial to applicants: Certification in Computer Science, Information Security, or related field (or equivalent work experience). Cybersecurity certifications such as CompTIA Security+, Certified Ethical Hacker (CEH) or Microsoft M365/Azure Understanding of cybersecurity principles, networking concepts, and various operating systems. Knowledge of common security threats, attack vectors, and mitigation strategies. Excellent communication skills to convey technical information to both technical and non-technical audiences. Experience in an IT Support/MSP support role Experience within a IT infrastructure role Strong attention to detail and ability to work under pressure in a fast-paced environment. Sucessful applicants will need to undergo a DBS check for this role.
Fixed term role until October Start date ASAP 100% remote working daily meetings with the customer to review actions from the previous day and work with them to establish further actions required. that all reports and client-facing documents are of the highest quality. in-depth and sophisticated analyses on alarms and events received by our customers. customers alternative actions or self-fix problems, based on contract and type of incident. threat hunting, threat modelling, and threat intel activities to proactively detect threats. Degree in IT, information security or related field or equivalent experience on the job. in English (Oral and written). Excellent verbal and written communication skills and ability to communicate to both a technical and non-technical audience. understanding of networking fundamentals, TCP/IP, and core protocols. experience in log monitoring and SIEM (ideally Splunk and Tenable), log management and an understanding of vulnerability management. endpoints, investigate threats/alerts (Ideally SentinelOne). management experience (ideally BeyondTrust reported emails, manage urls/attachments/quarantine/senders (ideally Mimecast). & Linux operating systems knowledge (ideally an understanding of Windows Server Environments both on prem and hosted in Azure cloud). experience working with or in IT infrastructure, cyber incident response or SOC teams would be beneficial. and working practice of ITIL. Sec+ and/or N+ (SSCP, CISSP, CCSP) foundation
May 03, 2024
Seasonal
Fixed term role until October Start date ASAP 100% remote working daily meetings with the customer to review actions from the previous day and work with them to establish further actions required. that all reports and client-facing documents are of the highest quality. in-depth and sophisticated analyses on alarms and events received by our customers. customers alternative actions or self-fix problems, based on contract and type of incident. threat hunting, threat modelling, and threat intel activities to proactively detect threats. Degree in IT, information security or related field or equivalent experience on the job. in English (Oral and written). Excellent verbal and written communication skills and ability to communicate to both a technical and non-technical audience. understanding of networking fundamentals, TCP/IP, and core protocols. experience in log monitoring and SIEM (ideally Splunk and Tenable), log management and an understanding of vulnerability management. endpoints, investigate threats/alerts (Ideally SentinelOne). management experience (ideally BeyondTrust reported emails, manage urls/attachments/quarantine/senders (ideally Mimecast). & Linux operating systems knowledge (ideally an understanding of Windows Server Environments both on prem and hosted in Azure cloud). experience working with or in IT infrastructure, cyber incident response or SOC teams would be beneficial. and working practice of ITIL. Sec+ and/or N+ (SSCP, CISSP, CCSP) foundation
Junior Cyber Security Analyst. Location: Duxford, Cambridgeshire. On-premises. Office Based: Four days a week. Remote Working: One day a week. An exceptional career opportunity is available to work for a globally recognized museum. The museum has recently invested significantly in advanced systems to detect, prevent and resolve emerging cyber threats. Additionally, the museum must comply with various regulatory frameworks and legislation such as PCI-DSS, GDPR, CAA and Cyber Essentials. The maintenance of these security systems requires dedicated security team resources. This vacancy is a fantastic opportunity for a junior-level cybersecurity enthusiast with practical blue team knowledge/experience to develop more cyber awareness and understanding. Junior Cyber Security Analyst Key Skills: We are eager to connect with aspiring Junior Cyber Security Analysts, Cyber Security Interns, Entry-Level Cyber Security Engineers, Junior IT Security Engineers, and other early-career professionals focusing on cyber and IT security. To excel in this position, you must possess many of the following: - A good understanding of Cyber and IT Security concepts and practices. - Some experience performing Antivirus audits and checks. - Good knowledge or practical experience of blue team activities, including daily monitoring and reporting cyber threats, hazards, or risks. - The ability to patch devices, systems, or networks against vulnerabilities. - Knowledge or experience of one or more of the following: Cyber Essentials, Darktrace, Qualys. - Experience working with any endpoint security tool or software, such as MS Defender, Sophos, ESET, Trellix, Symantec, etc. - Have excellent English communication skills (written and verbal). All applicants must reside in the UK and have the right to work. About the Junior Cyber Security Analyst position: You will be a member of the IT Security Team. You will track and report daily cyber threats, hazards, risks, controls, mitigations, and measures to safeguard our client's systems and personnel. You will proactively monitor all output from the various security systems to ensure minimal downtime, and the business will always be protected from cyber threats. You will ensure that all websites, services, servers, and employee devices have installed adequate vulnerability patches. Responsibilities include: - Harnessing the cutting-edge capabilities of Darktrace to detect, prevent, and monitor cyber threats in real-time. - Finding systemic cyber vulnerabilities to make sure security is preserved. - To oversee the patching of critical systems and infrastructure across the entire company, including those platforms maintained by third-party suppliers, in accordance with Cyber Essentials, and to make sure that all devices covered by the programme comply with the standard. - Investigating and researching attack methods to create defences against emerging threats. - Support and adhere to the IT Security Incident Response process as needed. - Assistance with cyber security risk assessments, yearly audits, and ongoing improvement of incident management. Salary and Benefits: Salary: To £30-38,000 Location: Duxford, Cambridgeshire. On-premises. Office Based: Four days a week. Remote Working: One day a week. Holiday: 25 days + Bank Holidays. Rising to 30 days after five years. Museum benefits: - 20% discount in all on-site shops - 25% discount in museum cafes - Free entry to a large number of other museums and galleries. - Enhanced maternity and paternity: Yes Other benefits: - Access to Childcare vouchers. - Access to in-house training programmes and development. For more information on this Junior Cyber Security Analyst position, please get in touch with us to discuss. Our client welcomes everyone. They celebrate difference and encourage everyone to join and be themselves at work.
May 03, 2024
Full time
Junior Cyber Security Analyst. Location: Duxford, Cambridgeshire. On-premises. Office Based: Four days a week. Remote Working: One day a week. An exceptional career opportunity is available to work for a globally recognized museum. The museum has recently invested significantly in advanced systems to detect, prevent and resolve emerging cyber threats. Additionally, the museum must comply with various regulatory frameworks and legislation such as PCI-DSS, GDPR, CAA and Cyber Essentials. The maintenance of these security systems requires dedicated security team resources. This vacancy is a fantastic opportunity for a junior-level cybersecurity enthusiast with practical blue team knowledge/experience to develop more cyber awareness and understanding. Junior Cyber Security Analyst Key Skills: We are eager to connect with aspiring Junior Cyber Security Analysts, Cyber Security Interns, Entry-Level Cyber Security Engineers, Junior IT Security Engineers, and other early-career professionals focusing on cyber and IT security. To excel in this position, you must possess many of the following: - A good understanding of Cyber and IT Security concepts and practices. - Some experience performing Antivirus audits and checks. - Good knowledge or practical experience of blue team activities, including daily monitoring and reporting cyber threats, hazards, or risks. - The ability to patch devices, systems, or networks against vulnerabilities. - Knowledge or experience of one or more of the following: Cyber Essentials, Darktrace, Qualys. - Experience working with any endpoint security tool or software, such as MS Defender, Sophos, ESET, Trellix, Symantec, etc. - Have excellent English communication skills (written and verbal). All applicants must reside in the UK and have the right to work. About the Junior Cyber Security Analyst position: You will be a member of the IT Security Team. You will track and report daily cyber threats, hazards, risks, controls, mitigations, and measures to safeguard our client's systems and personnel. You will proactively monitor all output from the various security systems to ensure minimal downtime, and the business will always be protected from cyber threats. You will ensure that all websites, services, servers, and employee devices have installed adequate vulnerability patches. Responsibilities include: - Harnessing the cutting-edge capabilities of Darktrace to detect, prevent, and monitor cyber threats in real-time. - Finding systemic cyber vulnerabilities to make sure security is preserved. - To oversee the patching of critical systems and infrastructure across the entire company, including those platforms maintained by third-party suppliers, in accordance with Cyber Essentials, and to make sure that all devices covered by the programme comply with the standard. - Investigating and researching attack methods to create defences against emerging threats. - Support and adhere to the IT Security Incident Response process as needed. - Assistance with cyber security risk assessments, yearly audits, and ongoing improvement of incident management. Salary and Benefits: Salary: To £30-38,000 Location: Duxford, Cambridgeshire. On-premises. Office Based: Four days a week. Remote Working: One day a week. Holiday: 25 days + Bank Holidays. Rising to 30 days after five years. Museum benefits: - 20% discount in all on-site shops - 25% discount in museum cafes - Free entry to a large number of other museums and galleries. - Enhanced maternity and paternity: Yes Other benefits: - Access to Childcare vouchers. - Access to in-house training programmes and development. For more information on this Junior Cyber Security Analyst position, please get in touch with us to discuss. Our client welcomes everyone. They celebrate difference and encourage everyone to join and be themselves at work.
Junior SOC Analyst - Hybrid - 3 days on site - Nottinghamshire Main Responsibilities: - Triage, analyse and investigate alerts, log data and network traffic using security tools to identify cyber-attacks / security incidents. This includes the investigation and root cause analysis of potential security incidents. - Proactively investigate potential security breaches by utilising threat intelligence and internal and external security systems and provide subject matter expertise for technical responses to confirmed cyber security incidents. - Create and maintain the clients target cyber security architecture. - Deliver subject matter expertise to key stakeholders to drive the implementation of security controls to meet the target architecture. - Accountable for vulnerability scanning, including the prioritisation of unpatched vulnerabilities and reporting against agreed KPIs and KRIs. - Support the annual penetration testing schedule by arranging penetration testing, including tracking, and communicating penetration testing results. - Perform supplementary testing of clients detection and response controls by procuring, installing, and running penetration testing tooling. - Participate in process improvement work to automate and improve critical cyber security processes such as monitoring, patching, and hardening. - Develop and maintain process documentation for security architecture, vulnerability management, cyber incident response, and playbooks. - Provide security representation across multiple geographies, business units and teams to achieve objectives, including engagement with the Information Security Enhancement Office. Skills, Knowledge and Experience - Has obtained one or more of the following qualifications: CEH, CRTSA, and OSCP. - Qualifications such as CISSP and CISM would be advantageous. - Problem solving skills, and the ability to come up with new solutions to existing challenges. - Strengths in key soft skill areas such as relationship management, communication, and presentation of technical security information to a variety of audiences. - Technical skills to investigate potential breaches through existing tools, packet capture and log file analysis. - A logical mindset, the ability to identify proportionate, appropriate mitigations to identified security incidents, and to prioritise incidents based on risk. - Capable of working independently/without ongoing supervision on projects and day to day tasks. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website (url removed)
May 03, 2024
Full time
Junior SOC Analyst - Hybrid - 3 days on site - Nottinghamshire Main Responsibilities: - Triage, analyse and investigate alerts, log data and network traffic using security tools to identify cyber-attacks / security incidents. This includes the investigation and root cause analysis of potential security incidents. - Proactively investigate potential security breaches by utilising threat intelligence and internal and external security systems and provide subject matter expertise for technical responses to confirmed cyber security incidents. - Create and maintain the clients target cyber security architecture. - Deliver subject matter expertise to key stakeholders to drive the implementation of security controls to meet the target architecture. - Accountable for vulnerability scanning, including the prioritisation of unpatched vulnerabilities and reporting against agreed KPIs and KRIs. - Support the annual penetration testing schedule by arranging penetration testing, including tracking, and communicating penetration testing results. - Perform supplementary testing of clients detection and response controls by procuring, installing, and running penetration testing tooling. - Participate in process improvement work to automate and improve critical cyber security processes such as monitoring, patching, and hardening. - Develop and maintain process documentation for security architecture, vulnerability management, cyber incident response, and playbooks. - Provide security representation across multiple geographies, business units and teams to achieve objectives, including engagement with the Information Security Enhancement Office. Skills, Knowledge and Experience - Has obtained one or more of the following qualifications: CEH, CRTSA, and OSCP. - Qualifications such as CISSP and CISM would be advantageous. - Problem solving skills, and the ability to come up with new solutions to existing challenges. - Strengths in key soft skill areas such as relationship management, communication, and presentation of technical security information to a variety of audiences. - Technical skills to investigate potential breaches through existing tools, packet capture and log file analysis. - A logical mindset, the ability to identify proportionate, appropriate mitigations to identified security incidents, and to prioritise incidents based on risk. - Capable of working independently/without ongoing supervision on projects and day to day tasks. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website (url removed)
IT Cyber Security Manager Surrey - Hybrid Working My client is a leading financial services organisation based in Surrey who are recruiting for a IT Cyber Security Manager As a IT Cyber Security Manager, you will Provide Security Input for projects in a Digital Transformation Programme as well as establish and maintain cyber security policies and procedures. Own threat management and response. Manage and mentor the cyber security team. Manage Security tooling risks and processes. Own vulnerability management through the whole lifecycle from internal and external monitoring and identification to remediation and reporting. IT Cyber Security Manager Benefits: 22 days holiday + 8 Bank Holiday (Holiday's increase to 27, 1 additional day per year worked) Healthy contributed pension Training and development Access to a number of financial based products Dress down Fridays As a IT Cyber Security Manager, you will perform the following tasks: Establish and maintain robust cyber security policies, playbooks, and procedures, ensuring compliance with regulatory requirements industry standards and the Cyber Security Strategy. Identify, evaluate, and mitigate cyber threats. Lead incident response activities and investigations into security breaches. Conduct regular risk assessments, audits, and testing of the security infrastructure to identify vulnerabilities and implement necessary improvements. Act as the escalation point on monitoring of corporate environment to identify security issues or incidents (Threat Hunting) Manage and mentor the security analyst, (monitoring, Investigation, root cause analysis of Security alerts from multiple information sources. Including, but not limited to Darktrace, LogPoint, WithSecure, Mimecast, while ensuring the team stays relevant to the latest Cyber Security trends and technologies. Introduce processes to maintain the integrity and protection of corporate and customer data. Responsible for managing the business IT vulnerabilities and provide to the service desk team, paths to remediation, through the whole lifecycle to ensure safety and compliance for the business. Investigate and analyse escalated security matters, identify methods and solutions in response to security related queries including the ones, submitted by end users. Perform root cause analysis of security incidents and participate in post-incident reviews to provide practical recommendations for improving the organisation's threat detection and incident response capabilities and overall security posture Perform malware analysis and digital forensics where appropriate Drive internal phishing campaigns (KnowBe4 platform) and work with management and HR - Training to raise Cyber awareness within the corporate environment, (new hire inductions, periodic training, etc) Own maintenance, renewal and distribution of SSL Certificates Manage and own the process of achieving and maintaining Security related certifications (CE+, PCI, etc) Ensure readiness, appropriate versioning and health, of the security systems used on security operations Identify and promote continual service improvement of all cyber security systems and procedures Share knowledge with and cross-train other members of the other IT teams IT Cyber Security Manager Documentation & Reporting: Assist in development of company-wide best practices for Cyber Security Document all security alerts, incidents and actions taken for both internal and regulatory use Contribute to maintenance of Cyber Security Operations Manual Manage cyber security actions in audits, cyber security exercises and provide supporting documentation Provide cyber security related reporting dashboards for use at different levels within the business (Regulatory, Board updates, Vulnerabilities, etc) IT Cyber Security Manager Key Skills & Experience: At least 5 year experience in a similar Cyber/IT Security/InfoSec based role Experience in a wide range of Cyber Security areas. Experience with security tool sets (SIEM, FIM, EDR, NDR) The ability to contextualise, categorise and prioritise security events, incidents, and alerts Knowledge of security framework and standards implementation (NiST, ISO27001, PCI-DSS, etc) Demonstrable passion and enthusiasm for security, including the ability to keep current with the latest threats, technologies, and trends Thorough understanding of adversarial tactics, techniques, and procedures Knowledge of security related skills within infrastructure, cloud, virtualisation and network concepts and technologies, particularly in a Microsoft-centric environment (Defender for Cloud, Cloud apps, Security scores, Purview including Data classification and retention, Identity Management, and conditional Access) Strong attention to detail with an analytical mindset and the ability to spot and investigate anomalous behaviour Strong Communication skills and the ability to communicate and present at all levels IT Cyber Security Manager Technologies involved: SIEM - Logpoint Automated Intrusion and response - Darktrace AntiVirus / Malware detection Email Filtering & Web Security - Mimecast FIM - Tripwire VMware & VDI Horizon Windows Environment Microsoft Azure & O365 (Purview, IAM, PIM, Defender for cloud, cloud apps, endpoint) AWS WAF Duo Multifactor Authentication IT Cyber Security Manager Additional points if: CISSP Experience in financial sector or other highly regulated environment Experience and understanding of Network Security Services advertised by Gold Group are those of an Agency and/or an Employment Business. We will contact you within the next 14 days if you are selected for interview. For a copy of our privacy policy please visit our website.
May 03, 2024
Full time
IT Cyber Security Manager Surrey - Hybrid Working My client is a leading financial services organisation based in Surrey who are recruiting for a IT Cyber Security Manager As a IT Cyber Security Manager, you will Provide Security Input for projects in a Digital Transformation Programme as well as establish and maintain cyber security policies and procedures. Own threat management and response. Manage and mentor the cyber security team. Manage Security tooling risks and processes. Own vulnerability management through the whole lifecycle from internal and external monitoring and identification to remediation and reporting. IT Cyber Security Manager Benefits: 22 days holiday + 8 Bank Holiday (Holiday's increase to 27, 1 additional day per year worked) Healthy contributed pension Training and development Access to a number of financial based products Dress down Fridays As a IT Cyber Security Manager, you will perform the following tasks: Establish and maintain robust cyber security policies, playbooks, and procedures, ensuring compliance with regulatory requirements industry standards and the Cyber Security Strategy. Identify, evaluate, and mitigate cyber threats. Lead incident response activities and investigations into security breaches. Conduct regular risk assessments, audits, and testing of the security infrastructure to identify vulnerabilities and implement necessary improvements. Act as the escalation point on monitoring of corporate environment to identify security issues or incidents (Threat Hunting) Manage and mentor the security analyst, (monitoring, Investigation, root cause analysis of Security alerts from multiple information sources. Including, but not limited to Darktrace, LogPoint, WithSecure, Mimecast, while ensuring the team stays relevant to the latest Cyber Security trends and technologies. Introduce processes to maintain the integrity and protection of corporate and customer data. Responsible for managing the business IT vulnerabilities and provide to the service desk team, paths to remediation, through the whole lifecycle to ensure safety and compliance for the business. Investigate and analyse escalated security matters, identify methods and solutions in response to security related queries including the ones, submitted by end users. Perform root cause analysis of security incidents and participate in post-incident reviews to provide practical recommendations for improving the organisation's threat detection and incident response capabilities and overall security posture Perform malware analysis and digital forensics where appropriate Drive internal phishing campaigns (KnowBe4 platform) and work with management and HR - Training to raise Cyber awareness within the corporate environment, (new hire inductions, periodic training, etc) Own maintenance, renewal and distribution of SSL Certificates Manage and own the process of achieving and maintaining Security related certifications (CE+, PCI, etc) Ensure readiness, appropriate versioning and health, of the security systems used on security operations Identify and promote continual service improvement of all cyber security systems and procedures Share knowledge with and cross-train other members of the other IT teams IT Cyber Security Manager Documentation & Reporting: Assist in development of company-wide best practices for Cyber Security Document all security alerts, incidents and actions taken for both internal and regulatory use Contribute to maintenance of Cyber Security Operations Manual Manage cyber security actions in audits, cyber security exercises and provide supporting documentation Provide cyber security related reporting dashboards for use at different levels within the business (Regulatory, Board updates, Vulnerabilities, etc) IT Cyber Security Manager Key Skills & Experience: At least 5 year experience in a similar Cyber/IT Security/InfoSec based role Experience in a wide range of Cyber Security areas. Experience with security tool sets (SIEM, FIM, EDR, NDR) The ability to contextualise, categorise and prioritise security events, incidents, and alerts Knowledge of security framework and standards implementation (NiST, ISO27001, PCI-DSS, etc) Demonstrable passion and enthusiasm for security, including the ability to keep current with the latest threats, technologies, and trends Thorough understanding of adversarial tactics, techniques, and procedures Knowledge of security related skills within infrastructure, cloud, virtualisation and network concepts and technologies, particularly in a Microsoft-centric environment (Defender for Cloud, Cloud apps, Security scores, Purview including Data classification and retention, Identity Management, and conditional Access) Strong attention to detail with an analytical mindset and the ability to spot and investigate anomalous behaviour Strong Communication skills and the ability to communicate and present at all levels IT Cyber Security Manager Technologies involved: SIEM - Logpoint Automated Intrusion and response - Darktrace AntiVirus / Malware detection Email Filtering & Web Security - Mimecast FIM - Tripwire VMware & VDI Horizon Windows Environment Microsoft Azure & O365 (Purview, IAM, PIM, Defender for cloud, cloud apps, endpoint) AWS WAF Duo Multifactor Authentication IT Cyber Security Manager Additional points if: CISSP Experience in financial sector or other highly regulated environment Experience and understanding of Network Security Services advertised by Gold Group are those of an Agency and/or an Employment Business. We will contact you within the next 14 days if you are selected for interview. For a copy of our privacy policy please visit our website.
Cyber Security Engineer My client, a leading MSP based in Exeter, is currently looking for a Cyber Security Engineer to join their team and hit the ground running - delivering a suite of technical, operational, and risk management services. Collaborating closely with regional teams, you'll ensure compliance with industry standards, policies, and procedures, while actively mitigating evolving threats, thus driving forward a diverse array of security enhancement initiatives. Salary: Up to 35,000 DOE Location: Exeter Key responsibilities: Monitor for attacks, intrusions and unusual, Unauthorised or illegal activity Creating and executing strategies to secure and protect networks and data resources Planning computer and network security upgrades and testing hardware and software related to the upgrade Use advanced analytic tools to determine emerging threat patterns and vulnerabilities i.e. SentinelOne Managing technical problems related to applications and production equipment Addressing intrusions using expertise in computer forensics Engage in 'ethical hacking', for example, simulating security breaches Foreseeing future problem areas by monitoring workflows and network traffic patterns Monitor identity and access management, including monitoring for abuse of permissions by authorised system users Acting as an escalation point to analysts Threat hunting Vulnerability management Skills: Relevant certifications (CompTIA Security+, CySA+, CASP+, PenTest+, or Microsoft Azure Security). Proficiency in Microsoft Sentinel, KQL queries, and cloud security technologies would be beneficial. Strong understanding of firewalls, networking. Microsoft 365 and endpoint security. Keen awareness of Cyber Security trends and hacking techniques. Network Security Control If you are a highly skilled Cyber Security Engineer, who is looking to take on a new challenge within the realms of a Managed Service Provider, then please apply today! Key words: Cyber Security Engineer, Network Engineer, Information Security, Security Administrator, Security Analyst, Senior Network Engineer Locations: Devon, Torquay, Newton Abbot, Exeter, Tiverton, Hayle, Honiton, Plymouth, Taunton, Paignton, Minehead, Plymouth
May 03, 2024
Full time
Cyber Security Engineer My client, a leading MSP based in Exeter, is currently looking for a Cyber Security Engineer to join their team and hit the ground running - delivering a suite of technical, operational, and risk management services. Collaborating closely with regional teams, you'll ensure compliance with industry standards, policies, and procedures, while actively mitigating evolving threats, thus driving forward a diverse array of security enhancement initiatives. Salary: Up to 35,000 DOE Location: Exeter Key responsibilities: Monitor for attacks, intrusions and unusual, Unauthorised or illegal activity Creating and executing strategies to secure and protect networks and data resources Planning computer and network security upgrades and testing hardware and software related to the upgrade Use advanced analytic tools to determine emerging threat patterns and vulnerabilities i.e. SentinelOne Managing technical problems related to applications and production equipment Addressing intrusions using expertise in computer forensics Engage in 'ethical hacking', for example, simulating security breaches Foreseeing future problem areas by monitoring workflows and network traffic patterns Monitor identity and access management, including monitoring for abuse of permissions by authorised system users Acting as an escalation point to analysts Threat hunting Vulnerability management Skills: Relevant certifications (CompTIA Security+, CySA+, CASP+, PenTest+, or Microsoft Azure Security). Proficiency in Microsoft Sentinel, KQL queries, and cloud security technologies would be beneficial. Strong understanding of firewalls, networking. Microsoft 365 and endpoint security. Keen awareness of Cyber Security trends and hacking techniques. Network Security Control If you are a highly skilled Cyber Security Engineer, who is looking to take on a new challenge within the realms of a Managed Service Provider, then please apply today! Key words: Cyber Security Engineer, Network Engineer, Information Security, Security Administrator, Security Analyst, Senior Network Engineer Locations: Devon, Torquay, Newton Abbot, Exeter, Tiverton, Hayle, Honiton, Plymouth, Taunton, Paignton, Minehead, Plymouth
IT Security Analyst We are working with leading UK company who are looking for an IT Security Analyst, with a focus on vulnerability, the goal being to own vulnerability and patch management processes within their infrastructure and applications. Working as part of the security team you will be expected to work with and bridge the gap between all technical teams to drive vulnerability remediation. The role will involve producing and analysing reports and assisting with mitigating incidents related to vulnerability. Required Skills and Experience: Extensive experience of vulnerability, including pen testing as well as a strong background in IT Security including patching, anti-virus, firewalls and threat detection. Patching tools experience, ideally WSUS or Ivanti but flexible on tools exposure. Experience in the development and implementation of policies, strategies and approaches. Solid understanding of best practice standards including ISO27001. Strong technical experience with Windows technologies, AD, DNS, Group Policy etc as well as IT and Cyber Security measures. Experience of working within a cloud environment, Azure preferred.
May 03, 2024
Full time
IT Security Analyst We are working with leading UK company who are looking for an IT Security Analyst, with a focus on vulnerability, the goal being to own vulnerability and patch management processes within their infrastructure and applications. Working as part of the security team you will be expected to work with and bridge the gap between all technical teams to drive vulnerability remediation. The role will involve producing and analysing reports and assisting with mitigating incidents related to vulnerability. Required Skills and Experience: Extensive experience of vulnerability, including pen testing as well as a strong background in IT Security including patching, anti-virus, firewalls and threat detection. Patching tools experience, ideally WSUS or Ivanti but flexible on tools exposure. Experience in the development and implementation of policies, strategies and approaches. Solid understanding of best practice standards including ISO27001. Strong technical experience with Windows technologies, AD, DNS, Group Policy etc as well as IT and Cyber Security measures. Experience of working within a cloud environment, Azure preferred.
Junior Cyber Security Analyst. Location: London. On-premises. Office Based: Four days a week. Remote Working: One day a week. An exceptional career opportunity is available to work for a nationally recognised museum. The museum has recently invested significantly in advanced systems to detect, prevent and resolve emerging cyber threats. Additionally, the museum must comply with various regulatory frameworks and legislation such as PCI-DSS, GDPR, CAA and Cyber Essentials. The maintenance of these security systems requires dedicated security team resources. This vacancy is a fantastic opportunity for a junior-level cybersecurity enthusiast with practical blue team knowledge/experience to develop more cyber awareness and understanding. Junior Cyber Security Analyst Key Skills: We are eager to connect with aspiring Junior Cyber Security Analysts, Cyber Security Interns, Entry-Level Cyber Security Engineers, Junior IT Security Engineers, and other early-career professionals focusing on cyber and IT security. To excel in this position, you must possess many of the following: - A good understanding of Cyber and IT Security concepts and practices. - Some experience performing Antivirus audits and checks. - Good knowledge or practical experience of blue team activities, including daily monitoring and reporting cyber threats, hazards, or risks. - The ability to patch devices, systems, or networks against vulnerabilities. - Knowledge or experience of one or more of the following: Cyber Essentials, Darktrace, Qualys. - Experience working with any endpoint security tool or software, such as MS Defender, Sophos, ESET, Trellix, Symantec, etc. - Have excellent English communication skills (written and verbal). All applicants must reside in the UK and have the right to work. About the Junior Cyber Security Analyst position: You will be a member of the IT Security Team. You will track and report daily cyber threats, hazards, risks, controls, mitigations, and measures to safeguard our client's systems and personnel. You will proactively monitor all output from the various security systems to ensure minimal downtime, and the business will always be protected from cyber threats. You will ensure that all websites, services, servers, and employee devices have installed adequate vulnerability patches. Responsibilities include: - Harnessing the cutting-edge capabilities of Darktrace to detect, prevent, and monitor cyber threats in real-time. - Finding systemic cyber vulnerabilities to make sure security is preserved. - To oversee the patching of critical systems and infrastructure across the entire company, including those platforms maintained by third-party suppliers, in accordance with Cyber Essentials, and to make sure that all devices covered by the programme comply with the standard. - Investigating and researching attack methods to create defences against emerging threats. - Support and adhere to the IT Security Incident Response process as needed. - Assistance with cyber security risk assessments, yearly audits, and ongoing improvement of incident management. Salary and Benefits: Salary: To £30-38,000 Location: London. On-premises. Office Based: Four days a week. Remote Working: One day a week. Holiday: 25 days + Bank Holidays. Rising to 30 days after five years. Museum benefits: - 20% discount in all on-site shops - 25% discount in museum cafes - Free entry to a large number of other museums and galleries. - Enhanced maternity and paternity: Yes Other benefits: - Access to Childcare vouchers. - Access to in-house training programmes and development. For more information on this Junior Cyber Security Analyst position, please get in touch with us to discuss. Our client welcomes everyone. They celebrate difference and encourage everyone to join and be themselves at work.
May 03, 2024
Full time
Junior Cyber Security Analyst. Location: London. On-premises. Office Based: Four days a week. Remote Working: One day a week. An exceptional career opportunity is available to work for a nationally recognised museum. The museum has recently invested significantly in advanced systems to detect, prevent and resolve emerging cyber threats. Additionally, the museum must comply with various regulatory frameworks and legislation such as PCI-DSS, GDPR, CAA and Cyber Essentials. The maintenance of these security systems requires dedicated security team resources. This vacancy is a fantastic opportunity for a junior-level cybersecurity enthusiast with practical blue team knowledge/experience to develop more cyber awareness and understanding. Junior Cyber Security Analyst Key Skills: We are eager to connect with aspiring Junior Cyber Security Analysts, Cyber Security Interns, Entry-Level Cyber Security Engineers, Junior IT Security Engineers, and other early-career professionals focusing on cyber and IT security. To excel in this position, you must possess many of the following: - A good understanding of Cyber and IT Security concepts and practices. - Some experience performing Antivirus audits and checks. - Good knowledge or practical experience of blue team activities, including daily monitoring and reporting cyber threats, hazards, or risks. - The ability to patch devices, systems, or networks against vulnerabilities. - Knowledge or experience of one or more of the following: Cyber Essentials, Darktrace, Qualys. - Experience working with any endpoint security tool or software, such as MS Defender, Sophos, ESET, Trellix, Symantec, etc. - Have excellent English communication skills (written and verbal). All applicants must reside in the UK and have the right to work. About the Junior Cyber Security Analyst position: You will be a member of the IT Security Team. You will track and report daily cyber threats, hazards, risks, controls, mitigations, and measures to safeguard our client's systems and personnel. You will proactively monitor all output from the various security systems to ensure minimal downtime, and the business will always be protected from cyber threats. You will ensure that all websites, services, servers, and employee devices have installed adequate vulnerability patches. Responsibilities include: - Harnessing the cutting-edge capabilities of Darktrace to detect, prevent, and monitor cyber threats in real-time. - Finding systemic cyber vulnerabilities to make sure security is preserved. - To oversee the patching of critical systems and infrastructure across the entire company, including those platforms maintained by third-party suppliers, in accordance with Cyber Essentials, and to make sure that all devices covered by the programme comply with the standard. - Investigating and researching attack methods to create defences against emerging threats. - Support and adhere to the IT Security Incident Response process as needed. - Assistance with cyber security risk assessments, yearly audits, and ongoing improvement of incident management. Salary and Benefits: Salary: To £30-38,000 Location: London. On-premises. Office Based: Four days a week. Remote Working: One day a week. Holiday: 25 days + Bank Holidays. Rising to 30 days after five years. Museum benefits: - 20% discount in all on-site shops - 25% discount in museum cafes - Free entry to a large number of other museums and galleries. - Enhanced maternity and paternity: Yes Other benefits: - Access to Childcare vouchers. - Access to in-house training programmes and development. For more information on this Junior Cyber Security Analyst position, please get in touch with us to discuss. Our client welcomes everyone. They celebrate difference and encourage everyone to join and be themselves at work.
IT Cyber Security Analyst & Team Leader - CISSP or CySA+ or MSc Information Security Weymouth, Dorset, or London, South East UK or Stoke on Trent, Staffordshire 50,000pa + Hybrid & Flexi-Working & Training & Certifications Available Weymouth, Dorset, or London, South East UK, or Staffordshire + Hybrid and Flexible Working as Standard The Client: Are a well-known High St and Online retailer who are seeking a Senior IT Cyber Security Analyst who specialises in Microsoft / Wintel Servers and Virtualisation supporting a UK wide infrastructure. Objective: You will Lead 2 x Cyber Security Analysts, giving support to the Head of Cyber Security in delivering the Information Security service to the global business. You will lead all Cyber Security Operations function and be the first point of contact for technical information security related matters. Role Responsibilities: You will Lead 2 x Cyber Security Analysts, giving support to the Head of Cyber Security Act as the first point of action or escalation for the identification of security incidents and their investigation. Be responsible for the managed Security Operations Centre (SOC), Network Monitoring and Managed Detection and Response services and associated vendor relationships. Offer mentoring, advice and guidance to those in your Team Be the subject matter expert for technical security related queries, providing the Security Architect, IT Service and Delivery teams and business stakeholders with authoritative advice and defined security requirements. Be responsible for the Security Education and Awareness scheme. Ensure Cyber Security campaigns are conducted, and improvements implemented and ensure colleague queries around policies and requirements are appropriately answered in a timely manner. Be responsible for the Vulnerability Management process. Act on vulnerability information and conduct Cyber Security risk assessments and work with suppliers, partners, and internal teams to ensure security vulnerabilities are identified, assessed, and remediated in good time. Key Requirements you will need: In depth knowledge of Information Security concepts and principles, including cloud security capabilities. Experience with configuring and utilising security tooling, including SIEM, EDR, vulnerability scanners, CASB, network scanning, DLP. Hands-on IT experience with proven expertise in a previous Information Security role. Vendor management experience. A relevant intermediate or advanced Information Security based qualification (e.g. CISSP, CySA+, MSc Information Security) Ability to critically analyse information and make decisions based on judgement, knowledge, and experience. Business Knowledge: Knowledge of Retail and eCommerce is of great advantage but is not essential. Working knowledge of the Information Security elements of Data Protection regulations (e.g. GDPR, The Data Protection Act 2018) is essential. Knowledge of the NIST Cyber Security Framework is of advantage. Awareness of regulations that affect Retail, such as PCI DSS, is of great advantage but experience of maintaining compliance is not essential. CISSP or CySA+ or MSc Information Security Certifications will be advantageous. Call (phone number removed) today!
May 03, 2024
Full time
IT Cyber Security Analyst & Team Leader - CISSP or CySA+ or MSc Information Security Weymouth, Dorset, or London, South East UK or Stoke on Trent, Staffordshire 50,000pa + Hybrid & Flexi-Working & Training & Certifications Available Weymouth, Dorset, or London, South East UK, or Staffordshire + Hybrid and Flexible Working as Standard The Client: Are a well-known High St and Online retailer who are seeking a Senior IT Cyber Security Analyst who specialises in Microsoft / Wintel Servers and Virtualisation supporting a UK wide infrastructure. Objective: You will Lead 2 x Cyber Security Analysts, giving support to the Head of Cyber Security in delivering the Information Security service to the global business. You will lead all Cyber Security Operations function and be the first point of contact for technical information security related matters. Role Responsibilities: You will Lead 2 x Cyber Security Analysts, giving support to the Head of Cyber Security Act as the first point of action or escalation for the identification of security incidents and their investigation. Be responsible for the managed Security Operations Centre (SOC), Network Monitoring and Managed Detection and Response services and associated vendor relationships. Offer mentoring, advice and guidance to those in your Team Be the subject matter expert for technical security related queries, providing the Security Architect, IT Service and Delivery teams and business stakeholders with authoritative advice and defined security requirements. Be responsible for the Security Education and Awareness scheme. Ensure Cyber Security campaigns are conducted, and improvements implemented and ensure colleague queries around policies and requirements are appropriately answered in a timely manner. Be responsible for the Vulnerability Management process. Act on vulnerability information and conduct Cyber Security risk assessments and work with suppliers, partners, and internal teams to ensure security vulnerabilities are identified, assessed, and remediated in good time. Key Requirements you will need: In depth knowledge of Information Security concepts and principles, including cloud security capabilities. Experience with configuring and utilising security tooling, including SIEM, EDR, vulnerability scanners, CASB, network scanning, DLP. Hands-on IT experience with proven expertise in a previous Information Security role. Vendor management experience. A relevant intermediate or advanced Information Security based qualification (e.g. CISSP, CySA+, MSc Information Security) Ability to critically analyse information and make decisions based on judgement, knowledge, and experience. Business Knowledge: Knowledge of Retail and eCommerce is of great advantage but is not essential. Working knowledge of the Information Security elements of Data Protection regulations (e.g. GDPR, The Data Protection Act 2018) is essential. Knowledge of the NIST Cyber Security Framework is of advantage. Awareness of regulations that affect Retail, such as PCI DSS, is of great advantage but experience of maintaining compliance is not essential. CISSP or CySA+ or MSc Information Security Certifications will be advantageous. Call (phone number removed) today!
CSOC Analyst About Us: We are the tech company with people at heart. At Advania, we believe in empowering people to create sustainable value through the clever use of technology. As one of Microsoft's leading partners in the UK, specialising in Azure, Security, Dynamics 365, and Microsoft 365, we have a proven track record of success in delivering transformational IT services. Position Overview: The CSOC Analyst role is part of the Cyber Security Operations Centre (CSOC) and sits within the Security & Networks area of Advania. The candidate will be an active player within the Cyber Security Operations Centre (CSOC) using a variety of SIEM and security toolsets to meet the requirements of the business and its customers. This is a hands-on role and requires a broad technical knowledge, skills and abilities. Although the focus is on Cyber Security, knowledge and/or experience of modern IT systems and infrastructure is advantageous to assist with the development and continuous improvement of the security platforms within Advania and its customer's environments. Responsibilities: Work within a multi-disciplined CSOC team identifying, owning, progressing and resolving security incidents. Perform the prompt and effective triage and investigation of security events and incidents applying sound problem solving methods to determine scope, urgency, and potential impact. Provide technical support for the identification and response to events or incidents of a suspicious or malicious nature, and apparent security breaches. Work with internal and external stakeholders to resolve computer security incidents and vulnerability compliance. Drive customer satisfaction and continuously seek to improve operational performance. Maintain a continuous understanding of the threat landscape with in-depth knowledge around threat actors, TTPs and vulnerabilities Qualifications & Experience: Essential: Demonstrable experience working with SIEM technology, preferably within a CSOC / SOC environment Demonstrable technical knowledge, skills and/or experience in intrusion analysis, and network and security investigation using a variety of security tools (EDR, DLP, AV, Snort, Wireshark, TCPdump etc.). Working knowledge and experience of core security and infrastructure technologies (e.g. firewall logs, network security tools, malware detonation devices, proxies, IPS/IDS) Strong knowledge of understanding of multiple operating systems. Desired but not essential: One or more Microsoft security focused accreditations, SC-200 or AZ-500 Having achieved a BSc or MSc in Cyber Security incorporating Ethical Hacking, Digital Forensics or Information Security One or more of the following industry certifications: CEH, GCIA, GCIH, GSEC, Security+, GCTI Experience in secured cloud architectures (Azure, AWS) and engineering solutions An awareness of cyber security related standards and regulations, for example, NIST, CIS, ISO 27001 and PCI DSS Shift Pattern This role has a shift pattern on a 4 day on / 4 day off rota. Early shift - 06:00 - 17:00 Late shift - 10:00 - 21:00 Night - 20:00 - 07:00 / 21:00 - 08:00 Click here for the list of benefits. This role requires eligibility to obtain security clearance (SC) , which requires UK citizenship and at least 5 years residency in the UK. If you have any questions on this requirement please ask the recruitment team during the process. This is a remote-first hybrid role. See here for details about our hybrid workstyle, although please note that night shifts can be worked from home. Our Selection Process: We are committed to ensuring an equitable experience for all candidates, regardless of race, religion or belief, ethnic or national origin, disability, age, citizenship, marital, domestic or civil partnership status, sexual orientation, gender identity, or any other basis as protected by applicable law. Please do let us know if you'll need any reasonable adjustments as part of the selection process by highlighting these on your application form.
May 03, 2024
Full time
CSOC Analyst About Us: We are the tech company with people at heart. At Advania, we believe in empowering people to create sustainable value through the clever use of technology. As one of Microsoft's leading partners in the UK, specialising in Azure, Security, Dynamics 365, and Microsoft 365, we have a proven track record of success in delivering transformational IT services. Position Overview: The CSOC Analyst role is part of the Cyber Security Operations Centre (CSOC) and sits within the Security & Networks area of Advania. The candidate will be an active player within the Cyber Security Operations Centre (CSOC) using a variety of SIEM and security toolsets to meet the requirements of the business and its customers. This is a hands-on role and requires a broad technical knowledge, skills and abilities. Although the focus is on Cyber Security, knowledge and/or experience of modern IT systems and infrastructure is advantageous to assist with the development and continuous improvement of the security platforms within Advania and its customer's environments. Responsibilities: Work within a multi-disciplined CSOC team identifying, owning, progressing and resolving security incidents. Perform the prompt and effective triage and investigation of security events and incidents applying sound problem solving methods to determine scope, urgency, and potential impact. Provide technical support for the identification and response to events or incidents of a suspicious or malicious nature, and apparent security breaches. Work with internal and external stakeholders to resolve computer security incidents and vulnerability compliance. Drive customer satisfaction and continuously seek to improve operational performance. Maintain a continuous understanding of the threat landscape with in-depth knowledge around threat actors, TTPs and vulnerabilities Qualifications & Experience: Essential: Demonstrable experience working with SIEM technology, preferably within a CSOC / SOC environment Demonstrable technical knowledge, skills and/or experience in intrusion analysis, and network and security investigation using a variety of security tools (EDR, DLP, AV, Snort, Wireshark, TCPdump etc.). Working knowledge and experience of core security and infrastructure technologies (e.g. firewall logs, network security tools, malware detonation devices, proxies, IPS/IDS) Strong knowledge of understanding of multiple operating systems. Desired but not essential: One or more Microsoft security focused accreditations, SC-200 or AZ-500 Having achieved a BSc or MSc in Cyber Security incorporating Ethical Hacking, Digital Forensics or Information Security One or more of the following industry certifications: CEH, GCIA, GCIH, GSEC, Security+, GCTI Experience in secured cloud architectures (Azure, AWS) and engineering solutions An awareness of cyber security related standards and regulations, for example, NIST, CIS, ISO 27001 and PCI DSS Shift Pattern This role has a shift pattern on a 4 day on / 4 day off rota. Early shift - 06:00 - 17:00 Late shift - 10:00 - 21:00 Night - 20:00 - 07:00 / 21:00 - 08:00 Click here for the list of benefits. This role requires eligibility to obtain security clearance (SC) , which requires UK citizenship and at least 5 years residency in the UK. If you have any questions on this requirement please ask the recruitment team during the process. This is a remote-first hybrid role. See here for details about our hybrid workstyle, although please note that night shifts can be worked from home. Our Selection Process: We are committed to ensuring an equitable experience for all candidates, regardless of race, religion or belief, ethnic or national origin, disability, age, citizenship, marital, domestic or civil partnership status, sexual orientation, gender identity, or any other basis as protected by applicable law. Please do let us know if you'll need any reasonable adjustments as part of the selection process by highlighting these on your application form.
Senior IT Security Analyst Up to 55,000 Hybrid - 2 days per week at either the London, Weymouth, or Newcastle offices We are representing a leading B2C retailer who are in the process of modernising their technology estate, with significant investment in IT. As the Senior IT Security Analyst, you will report to the Head of Information Security, whilst leading a team of two IT Security Analysts. You will be the SME for technical security, have the responsibility for the managed SOC and associated vendor relationships, as well as the vulnerability, penetration, and application security testing. We are looking for: An individual with the relevant Information Security based qualification (e.g. CISSP) Proven experience with incident management and the ability to lead on this Technical understanding on a Microsoft stack - especially Darktrace Prior experience managing a 3rd party It would be a bonus if you had: Previous experience/knowledge of the Retail or eCommerce space Experience leading and managing a team If this sounds of interest, please apply today!
May 03, 2024
Full time
Senior IT Security Analyst Up to 55,000 Hybrid - 2 days per week at either the London, Weymouth, or Newcastle offices We are representing a leading B2C retailer who are in the process of modernising their technology estate, with significant investment in IT. As the Senior IT Security Analyst, you will report to the Head of Information Security, whilst leading a team of two IT Security Analysts. You will be the SME for technical security, have the responsibility for the managed SOC and associated vendor relationships, as well as the vulnerability, penetration, and application security testing. We are looking for: An individual with the relevant Information Security based qualification (e.g. CISSP) Proven experience with incident management and the ability to lead on this Technical understanding on a Microsoft stack - especially Darktrace Prior experience managing a 3rd party It would be a bonus if you had: Previous experience/knowledge of the Retail or eCommerce space Experience leading and managing a team If this sounds of interest, please apply today!
Title: Information Security Consultant Salary: Up to 60,000 DOE Location: Leeds (on-site) My client is looking for a skilled Information Security Consultant to join their existing Information Security team to offer guidance on IT security and further develop IT policies across a multi-region infrastructure. This is an opportunity to join a growing team, with a great company culture and several exciting projects to get stuck into, all in a fast-paced environment! They are unable to offer sponsorship, so the perfect candidate will have the full right to work in the UK, without a visa that will expire. Responsibilities: Assist in managing security incidents and alerts. Conduct regular security checks and investigate exceptions. Complete client security questionnaires for bidding. Raise awareness of security risks. Enhance security policies, processes, and controls. Proactively identify security risks and mitigations. Participate in system and application design. Develop training guides for users and staff. Manage the IT Risk register. Test and improve Disaster Recovery plans. Technical Requirements: Minimum two years of practical experience in enterprise security and infrastructure. Familiarity with enterprise information security standards: Cyber Essentials, ISO 27001, 27002, Data Protection Act, GDPR. Proficiency in Microsoft O365 Security, Networking, Security operations, Vulnerability Management, and Security Auditing. Strong understanding of security testing principles, including hands-on experience in vulnerability scanning, risk identification, resolution, and reporting. Demonstrated expertise in formal document creation, including report and procedure development. Essential Skills: Microsoft O365 platform expertise. Advanced Threat Intelligence analysis and best practices implementation. Proficient in managing Security Incident Response processes. Knowledgeable about Disaster Recovery and Business Continuity principles. Experienced in event and log analysis. The company is looking to fill this position ASAP, so please apply with a copy of your CV if interested! Key Words: Information Security Analyst, Information Security Engineer, Security Analyst, Information Security, NIST, COBIT, ISO-27001, ISO-27002, Compliance, Governance, Risk, Cyber Security, SOX, Sentinel, Defender, InTune BeTechnology Group Limited is acting as an Employment Agency in relation to this vacancy.
May 03, 2024
Full time
Title: Information Security Consultant Salary: Up to 60,000 DOE Location: Leeds (on-site) My client is looking for a skilled Information Security Consultant to join their existing Information Security team to offer guidance on IT security and further develop IT policies across a multi-region infrastructure. This is an opportunity to join a growing team, with a great company culture and several exciting projects to get stuck into, all in a fast-paced environment! They are unable to offer sponsorship, so the perfect candidate will have the full right to work in the UK, without a visa that will expire. Responsibilities: Assist in managing security incidents and alerts. Conduct regular security checks and investigate exceptions. Complete client security questionnaires for bidding. Raise awareness of security risks. Enhance security policies, processes, and controls. Proactively identify security risks and mitigations. Participate in system and application design. Develop training guides for users and staff. Manage the IT Risk register. Test and improve Disaster Recovery plans. Technical Requirements: Minimum two years of practical experience in enterprise security and infrastructure. Familiarity with enterprise information security standards: Cyber Essentials, ISO 27001, 27002, Data Protection Act, GDPR. Proficiency in Microsoft O365 Security, Networking, Security operations, Vulnerability Management, and Security Auditing. Strong understanding of security testing principles, including hands-on experience in vulnerability scanning, risk identification, resolution, and reporting. Demonstrated expertise in formal document creation, including report and procedure development. Essential Skills: Microsoft O365 platform expertise. Advanced Threat Intelligence analysis and best practices implementation. Proficient in managing Security Incident Response processes. Knowledgeable about Disaster Recovery and Business Continuity principles. Experienced in event and log analysis. The company is looking to fill this position ASAP, so please apply with a copy of your CV if interested! Key Words: Information Security Analyst, Information Security Engineer, Security Analyst, Information Security, NIST, COBIT, ISO-27001, ISO-27002, Compliance, Governance, Risk, Cyber Security, SOX, Sentinel, Defender, InTune BeTechnology Group Limited is acting as an Employment Agency in relation to this vacancy.
Senior Threat Intelligence Analyst About Us: We are the tech company with people at heart. At Advania, we believe in empowering people to create sustainable value through the clever use of technology. As one of Microsoft's leading partners in the UK, specialising in Azure, Security, Dynamics 365, and Microsoft 365, we have a proven track record of success in delivering transformational IT services. Position Overview: As a Senior Cyber Threat Intelligence Analyst, you will be responsible for the day-today delivery of Cyber Threat Intelligence to clients spanning multiple industries, as well as leadership and coaching of junior analysts, and ongoing development of our service. This is a hands-on role and requires both a broad technical knowledge of Cyber Security, as well as specific focused knowledge of CTI tools and processes. Knowledge and/or experience of modern IT Systems, particularly Microsoft solutions and network infrastructure is advantageous. Responsibilities: Proactively research and analyse emerging cyber threats, malware variants, and attacker Tactics, Techniques, and Procedures (TTPs) from various open and closed sources, including threat intelligence feeds, dark web monitoring, and open-source reporting. Develop and maintain comprehensive threat intelligence reports and briefings tailored for technical and non-technical audiences, translating complex information into actionable insights for informed decision-making. Lead or participate in incident response activities, including investigation, analysis of evidence, and collaboration with other teams like IT operations and forensics. Conduct advanced threat hunting to proactively identify hidden threats within the organisation's network, utilising advanced tools and techniques. Participate in vulnerability management activities, collaborating with the vulnerability management team to prioritise and remediate critical vulnerabilities identified through intelligence gathering and risk assessments. Contribute to the development and implementation of comprehensive security policies and procedures to strengthen the organisation's overall cyber defence posture. Stay up to date with the latest cyber security trends and developments through continuous learning and participation in industry conferences and training programs. Mentor and support junior cyber security analysts within the team. Analyse large volumes of complex data from security tools, logs, and incident reports to identify potential threats and assess their risk level. Professional Experience: Demonstrable understanding of the Cybersecurity Ecosystem and Infrastructure Technologies (e.g. firewall logs, network security tools, malware detonation devices, proxies, IPS/IDS). Experience in secured cloud architectures (Azure, AWS, or similar) and engineering solutions. An understanding of operating systems and their programming interfaces such as UNIX Shell and PowerShell. Experience with scripting languages (Python, Bash) and familiarity with APIs beneficial. An awareness of cyber security related standards and regulations, for example, NIST, CIS, ISO 27001 and PCI DSS. Experience leading teams and providing deputy support to Management. Experience designing a service, reviewing effectiveness of services, procurement, or business project work. Qualifications: One or more of the following industry certifications: SANS301/SANS401/FOR578, Crest CRTIA/CCTIM, Security+, or similar. Ideally a BSc or MSc in Cyber Security, preferably including modules on Ethical Hacking, Digital Forensics, Information Security or Threat Intelligence Please note you need to be eligible to undergo the Security Clearance process for this position. This means you will need to be a British national with 5 years residency in the UK. Click here for the list of benefits. Our Selection Process: We are committed to ensuring an equitable experience for all candidates, regardless of race, religion or belief, ethnic or national origin, disability, age, citizenship, marital, domestic or civil partnership status, sexual orientation, gender identity, or any other basis as protected by applicable law. Please do let us know if you'll need any reasonable adjustments as part of the selection process by highlighting these on your application form.
May 03, 2024
Full time
Senior Threat Intelligence Analyst About Us: We are the tech company with people at heart. At Advania, we believe in empowering people to create sustainable value through the clever use of technology. As one of Microsoft's leading partners in the UK, specialising in Azure, Security, Dynamics 365, and Microsoft 365, we have a proven track record of success in delivering transformational IT services. Position Overview: As a Senior Cyber Threat Intelligence Analyst, you will be responsible for the day-today delivery of Cyber Threat Intelligence to clients spanning multiple industries, as well as leadership and coaching of junior analysts, and ongoing development of our service. This is a hands-on role and requires both a broad technical knowledge of Cyber Security, as well as specific focused knowledge of CTI tools and processes. Knowledge and/or experience of modern IT Systems, particularly Microsoft solutions and network infrastructure is advantageous. Responsibilities: Proactively research and analyse emerging cyber threats, malware variants, and attacker Tactics, Techniques, and Procedures (TTPs) from various open and closed sources, including threat intelligence feeds, dark web monitoring, and open-source reporting. Develop and maintain comprehensive threat intelligence reports and briefings tailored for technical and non-technical audiences, translating complex information into actionable insights for informed decision-making. Lead or participate in incident response activities, including investigation, analysis of evidence, and collaboration with other teams like IT operations and forensics. Conduct advanced threat hunting to proactively identify hidden threats within the organisation's network, utilising advanced tools and techniques. Participate in vulnerability management activities, collaborating with the vulnerability management team to prioritise and remediate critical vulnerabilities identified through intelligence gathering and risk assessments. Contribute to the development and implementation of comprehensive security policies and procedures to strengthen the organisation's overall cyber defence posture. Stay up to date with the latest cyber security trends and developments through continuous learning and participation in industry conferences and training programs. Mentor and support junior cyber security analysts within the team. Analyse large volumes of complex data from security tools, logs, and incident reports to identify potential threats and assess their risk level. Professional Experience: Demonstrable understanding of the Cybersecurity Ecosystem and Infrastructure Technologies (e.g. firewall logs, network security tools, malware detonation devices, proxies, IPS/IDS). Experience in secured cloud architectures (Azure, AWS, or similar) and engineering solutions. An understanding of operating systems and their programming interfaces such as UNIX Shell and PowerShell. Experience with scripting languages (Python, Bash) and familiarity with APIs beneficial. An awareness of cyber security related standards and regulations, for example, NIST, CIS, ISO 27001 and PCI DSS. Experience leading teams and providing deputy support to Management. Experience designing a service, reviewing effectiveness of services, procurement, or business project work. Qualifications: One or more of the following industry certifications: SANS301/SANS401/FOR578, Crest CRTIA/CCTIM, Security+, or similar. Ideally a BSc or MSc in Cyber Security, preferably including modules on Ethical Hacking, Digital Forensics, Information Security or Threat Intelligence Please note you need to be eligible to undergo the Security Clearance process for this position. This means you will need to be a British national with 5 years residency in the UK. Click here for the list of benefits. Our Selection Process: We are committed to ensuring an equitable experience for all candidates, regardless of race, religion or belief, ethnic or national origin, disability, age, citizenship, marital, domestic or civil partnership status, sexual orientation, gender identity, or any other basis as protected by applicable law. Please do let us know if you'll need any reasonable adjustments as part of the selection process by highlighting these on your application form.
Senior Cyber Security Analyst A leading finance company is looking to hire a Senior Cyber Security Analyst. You would be responsible for; - Mentoring a team of cyber security analysts, ensuring optimal performance and productivity. - Collaborating with cross-fucntional teams to identify potential security risks and threats and implement measures to prevent them. - Monitoring and analysing security breaches and leading incident response efforts to mitigate the risk and impact in a timely manner. Therefore, they are looking for candidates with the following skills and experience; - Strong understanding of networking, operating systems and cyber security concepts - Strong knowledge of security pactices such as IAM, SIEM, Vulnerability management, Malware protection and Back up and Recovery - Strong experience with Microsoft security products such as Defender and Sentinel. - Experience mentoring teams or leading teams. Senior Cyber Security Analyst
May 03, 2024
Full time
Senior Cyber Security Analyst A leading finance company is looking to hire a Senior Cyber Security Analyst. You would be responsible for; - Mentoring a team of cyber security analysts, ensuring optimal performance and productivity. - Collaborating with cross-fucntional teams to identify potential security risks and threats and implement measures to prevent them. - Monitoring and analysing security breaches and leading incident response efforts to mitigate the risk and impact in a timely manner. Therefore, they are looking for candidates with the following skills and experience; - Strong understanding of networking, operating systems and cyber security concepts - Strong knowledge of security pactices such as IAM, SIEM, Vulnerability management, Malware protection and Back up and Recovery - Strong experience with Microsoft security products such as Defender and Sentinel. - Experience mentoring teams or leading teams. Senior Cyber Security Analyst
About The Role Position Summary SOC Analysts have responsibility for leading incident response efforts, monitoring security events, analysing logs and data for threats, providing proactive threat intelligence, managing security tools, preparing comprehensive incident reports, conducting security assessments, coordinating incident handling, promoting security awareness, and driving continuous improvement within the SOC. The role is crucial in protecting the organisation and enhancing security operations to mitigate risks effectively. Objectives and Key Results The key objectives will be to: Be responsible for incident analysis, classification and response actions including notification and alerting. Monitor for possible security incidents, using knowledge of attack types and standard protocol behaviour to classify incidents, comment, and provide advice on mitigation or remedial actions to clients. Work with other SOC analysts, the Shift Lead, Senior SOC Analysts and the SOC Team Lead on any delegated tasks. This may include mentorship, rule tuning, threat hunting, reports and service improvements. Essential Duties and Responsibilities Conduct incident triage on new tickets in line with established triage SLAs. Raise incidents to customers as appropriate, in line with established notification SLAs. Escalate incidents to a Level 1 SOC Analyst or Shift Lead as appropriate. About You Behavioural Competencies - Organisational and Behavioural Ability to multi-task, prioritise, and manage time effectively Strong attention to detail and intellectually curious Excellent interpersonal skills and professional demeanour Excellent verbal and written communication skills Excellent customer service skills Proficient in Microsoft Office applications Candidate must be eligible to obtain Security Clearance Critical competencies - Technical Bachelor's degree in a related field or equivalent demonstrated experience and knowledge Knowledge of various security methodologies and processes, and technical security solutions (firewall, SIEM and intrusion detection/prevention systems, vulnerability scanners, etc.) Knowledge of TCP/IP Protocols, network analysis, and network/security applications; and a good background with network troubleshooting and technologies; Firewall configuration, monitoring, network packet capture (tcpdump/Wireshark), etc. Excellent understanding of commonly used Internet protocols such as SMTP, HTTP, and DNS Incident Response: Strong knowledge and experience in handling security incidents, including identifying, analysing, and responding to security events in real-time Intrusion Detection and Prevention Systems (IDS/IPS): Familiarity with IDS/IPS technologies, their configuration, and their use in monitoring and protecting networks from potential threats Threat Intelligence: Understanding of threat intelligence feeds and their application in identifying and mitigating potential threats, as well as the ability to leverage threat intelligence platforms effectively Malware Analysis: Familiarity with basic malware analysis techniques, such as static and dynamic analysis, to identify and understand the behaviour of malicious software Vulnerability Management: Experience with vulnerability scanning tools, knowledge of common vulnerabilities and exposures (CVEs), and the ability to prioritise and remediate vulnerabilities effectively Endpoint Security: Understanding of endpoint protection technologies (antivirus, host-based intrusion detection systems, etc.) and the ability to monitor and respond to security events on endpoints Secure Network Architecture: Knowledge of secure network design principles, including segmentation, DMZ, VPNs, and network access controls Threat Hunting: Ability to proactively search for signs of potential threats or security breaches within the network environment using various techniques and tools Cloud Security: Understanding of cloud security concepts, including secure configuration, identity and access management (IAM), and monitoring of cloud environments Security Standards and Frameworks: Familiarity with industry security standards and frameworks such as NIST Cybersecurity Framework, ISO 27001, and CIS Controls In addition, the following are highly desirable: Cyber Security Training Certifications, including: SANS CREST COMPTIA Network+, Linux+, Security+, CySA+, CASP+ Microsoft Azure Fundamentals (AZ-900) and Security Operations Analyst (SC-200) AWS Certified Cloud Practitioner and Certified Security Speciality Blue Team Level 1 and Level 2 Experience of ticketing systems to manage communication with customers Understanding of performing 1st level analysis and interpretation of information from SOC systems; incident identification/analysis, escalation procedures, and reduction of false-positives Working For Claranet Here at Claranet we pride ourselves on going the extra mile for and with our employees (yes, we really mean it). We offer an extensive benefits package that you can tailor to your needs, inclusive of a matching contribution pension scheme, healthcare, insurance, dental, discounted gyms and app supported benefit access. But what we think makes us different is 'Team Claranet,' our dedicated internal part of the business that supports you with matters close to your heart. We proudly support local charities in each of our office locations, support employees with paid charity leave, organise key charity fundraising event per year and have a dedicated committee responsible for supporting employee's fundraising efforts. Claranet are one of the 10 founding members of TC4RE (Technology Community for Racial Equality). Being a part of a group of leading UK technology organisations, we are dedicated to building a more diverse and inclusive workforce. We are also very proud members of Tech Talent Charter, a government supported, industry-led membership group created to address the UK's tech talent shortage and diversity gap through collective action.
May 02, 2024
Full time
About The Role Position Summary SOC Analysts have responsibility for leading incident response efforts, monitoring security events, analysing logs and data for threats, providing proactive threat intelligence, managing security tools, preparing comprehensive incident reports, conducting security assessments, coordinating incident handling, promoting security awareness, and driving continuous improvement within the SOC. The role is crucial in protecting the organisation and enhancing security operations to mitigate risks effectively. Objectives and Key Results The key objectives will be to: Be responsible for incident analysis, classification and response actions including notification and alerting. Monitor for possible security incidents, using knowledge of attack types and standard protocol behaviour to classify incidents, comment, and provide advice on mitigation or remedial actions to clients. Work with other SOC analysts, the Shift Lead, Senior SOC Analysts and the SOC Team Lead on any delegated tasks. This may include mentorship, rule tuning, threat hunting, reports and service improvements. Essential Duties and Responsibilities Conduct incident triage on new tickets in line with established triage SLAs. Raise incidents to customers as appropriate, in line with established notification SLAs. Escalate incidents to a Level 1 SOC Analyst or Shift Lead as appropriate. About You Behavioural Competencies - Organisational and Behavioural Ability to multi-task, prioritise, and manage time effectively Strong attention to detail and intellectually curious Excellent interpersonal skills and professional demeanour Excellent verbal and written communication skills Excellent customer service skills Proficient in Microsoft Office applications Candidate must be eligible to obtain Security Clearance Critical competencies - Technical Bachelor's degree in a related field or equivalent demonstrated experience and knowledge Knowledge of various security methodologies and processes, and technical security solutions (firewall, SIEM and intrusion detection/prevention systems, vulnerability scanners, etc.) Knowledge of TCP/IP Protocols, network analysis, and network/security applications; and a good background with network troubleshooting and technologies; Firewall configuration, monitoring, network packet capture (tcpdump/Wireshark), etc. Excellent understanding of commonly used Internet protocols such as SMTP, HTTP, and DNS Incident Response: Strong knowledge and experience in handling security incidents, including identifying, analysing, and responding to security events in real-time Intrusion Detection and Prevention Systems (IDS/IPS): Familiarity with IDS/IPS technologies, their configuration, and their use in monitoring and protecting networks from potential threats Threat Intelligence: Understanding of threat intelligence feeds and their application in identifying and mitigating potential threats, as well as the ability to leverage threat intelligence platforms effectively Malware Analysis: Familiarity with basic malware analysis techniques, such as static and dynamic analysis, to identify and understand the behaviour of malicious software Vulnerability Management: Experience with vulnerability scanning tools, knowledge of common vulnerabilities and exposures (CVEs), and the ability to prioritise and remediate vulnerabilities effectively Endpoint Security: Understanding of endpoint protection technologies (antivirus, host-based intrusion detection systems, etc.) and the ability to monitor and respond to security events on endpoints Secure Network Architecture: Knowledge of secure network design principles, including segmentation, DMZ, VPNs, and network access controls Threat Hunting: Ability to proactively search for signs of potential threats or security breaches within the network environment using various techniques and tools Cloud Security: Understanding of cloud security concepts, including secure configuration, identity and access management (IAM), and monitoring of cloud environments Security Standards and Frameworks: Familiarity with industry security standards and frameworks such as NIST Cybersecurity Framework, ISO 27001, and CIS Controls In addition, the following are highly desirable: Cyber Security Training Certifications, including: SANS CREST COMPTIA Network+, Linux+, Security+, CySA+, CASP+ Microsoft Azure Fundamentals (AZ-900) and Security Operations Analyst (SC-200) AWS Certified Cloud Practitioner and Certified Security Speciality Blue Team Level 1 and Level 2 Experience of ticketing systems to manage communication with customers Understanding of performing 1st level analysis and interpretation of information from SOC systems; incident identification/analysis, escalation procedures, and reduction of false-positives Working For Claranet Here at Claranet we pride ourselves on going the extra mile for and with our employees (yes, we really mean it). We offer an extensive benefits package that you can tailor to your needs, inclusive of a matching contribution pension scheme, healthcare, insurance, dental, discounted gyms and app supported benefit access. But what we think makes us different is 'Team Claranet,' our dedicated internal part of the business that supports you with matters close to your heart. We proudly support local charities in each of our office locations, support employees with paid charity leave, organise key charity fundraising event per year and have a dedicated committee responsible for supporting employee's fundraising efforts. Claranet are one of the 10 founding members of TC4RE (Technology Community for Racial Equality). Being a part of a group of leading UK technology organisations, we are dedicated to building a more diverse and inclusive workforce. We are also very proud members of Tech Talent Charter, a government supported, industry-led membership group created to address the UK's tech talent shortage and diversity gap through collective action.
The company: A thriving company in the Durham area is looking to expand their Cyber security services for their large client base. They are on a journey of service excellence and are looking for proactive team players to join them in their growth. With an aim for technical excellence, this company offers strong progression and training opportunities, alongside the opportunity to work alongside some of the best in the industry. The role: As a Security Analyst, where you will play a pivotal role in developing and enhancing the SIEM and Endpoint Detection and Response platforms. You will be supporting the expanding SOC service and will play a pivotal role in defining what cyber excellence looks like. This is a great greenfield opportunity to put best practice processes in place, and use your proactive way of working to make a difference. This position is ideal for someone passionate about cybersecurity and eager to drive digital transformation for our clients. Day to Day of the role: Assist in customer onboarding to the Security Operations Centre (SOC) and SIEM. Create and implement new detection rules for the SIEM. Analyse and respond to alerts from SIEM solutions, focusing on identifying unusual and anomalous behaviours within our information systems. Conduct proactive threat and vulnerability searches within our information systems. Collaborate with Incident Response team members to contain and resolve security incidents. Continuously enhance the security posture for both our organisation and our clients. Required Skills & Qualifications: Prior experience working in a Security Operations Centre. Demonstrable expertise with SIEM, EDR, and Vulnerability Scanning tools, preferably Microsoft Sentinel and Defender. Proficiency in developing SOC triage runbooks. Ability to set up data connectors and integrate with third-party APIs and applications. Experience in creating and implementing use cases for analytics and threat hunting. Skill in fine-tuning SIEM platforms to reduce false positives and enhance automation. Relevant certifications in the field of cybersecurity. Strong analytical abilities and effective problem-solving skills. Resilience under pressure and adeptness in prioritising workloads. Benefits: 27 Days Annual Leave Your birthday off 7% matched pension contribution Hybrid and flexible workign options Annual pay reviews Enhanced sick pay benefit Car lease scheme Training programmes Progression plans Perk box membership 4 months full pay maternity leave And more! Next Steps? If you would like to know anything more about this role or even just want to hear what other Infrastructure, Cloud and Security positions I have that may also be a good match for you then please apply to this advert / or catch me on LinkedIn "Hayley Bee You must be fully eligible to work in the UK to apply to this position and be able to travel into office on occasion
May 02, 2024
Full time
The company: A thriving company in the Durham area is looking to expand their Cyber security services for their large client base. They are on a journey of service excellence and are looking for proactive team players to join them in their growth. With an aim for technical excellence, this company offers strong progression and training opportunities, alongside the opportunity to work alongside some of the best in the industry. The role: As a Security Analyst, where you will play a pivotal role in developing and enhancing the SIEM and Endpoint Detection and Response platforms. You will be supporting the expanding SOC service and will play a pivotal role in defining what cyber excellence looks like. This is a great greenfield opportunity to put best practice processes in place, and use your proactive way of working to make a difference. This position is ideal for someone passionate about cybersecurity and eager to drive digital transformation for our clients. Day to Day of the role: Assist in customer onboarding to the Security Operations Centre (SOC) and SIEM. Create and implement new detection rules for the SIEM. Analyse and respond to alerts from SIEM solutions, focusing on identifying unusual and anomalous behaviours within our information systems. Conduct proactive threat and vulnerability searches within our information systems. Collaborate with Incident Response team members to contain and resolve security incidents. Continuously enhance the security posture for both our organisation and our clients. Required Skills & Qualifications: Prior experience working in a Security Operations Centre. Demonstrable expertise with SIEM, EDR, and Vulnerability Scanning tools, preferably Microsoft Sentinel and Defender. Proficiency in developing SOC triage runbooks. Ability to set up data connectors and integrate with third-party APIs and applications. Experience in creating and implementing use cases for analytics and threat hunting. Skill in fine-tuning SIEM platforms to reduce false positives and enhance automation. Relevant certifications in the field of cybersecurity. Strong analytical abilities and effective problem-solving skills. Resilience under pressure and adeptness in prioritising workloads. Benefits: 27 Days Annual Leave Your birthday off 7% matched pension contribution Hybrid and flexible workign options Annual pay reviews Enhanced sick pay benefit Car lease scheme Training programmes Progression plans Perk box membership 4 months full pay maternity leave And more! Next Steps? If you would like to know anything more about this role or even just want to hear what other Infrastructure, Cloud and Security positions I have that may also be a good match for you then please apply to this advert / or catch me on LinkedIn "Hayley Bee You must be fully eligible to work in the UK to apply to this position and be able to travel into office on occasion
Are you looking for a Security role within a dynamic, innovative financial technology organisation? If so, we are recruiting for a Cyber Operations Engineer to join our IT Department! Working alongside the Cyber Operations Lead you will help to design, develop, and mature the company's cybersecurity capability, including the selection, implementation, and management of security tools/technologies, focused on detection, prevention, and analysis of security threats. This role offers a great opportunity to help define and shape the security function within a collaborative IT department, ensuring the protection of customer assets. Responsibilities include: Work with technology and business teams to deliver security processes, technologies and controls, acting as the authority on security related queries. Define, design, implement, and maintain security solutions appropriate to the business' needs. Support the definition, execution and continuous improvement of key cybersecurity processes including vulnerability & patch management, security incident response, security monitoring, endpoint security, identity and access management, network security, and cryptography. Assist with developing and maintaining security policies, processes and incident response management plans and playbooks. Prepare and document standard operating procedures and protocols. Provide expertise on security requirements into core technology processes like asset management, change management, third-party management, technology development & acquisition, configuration management, etc. Contribute as a team member in projects and change initiatives aimed at increasing enterprise security capabilities e.g., identity and access management, log aggregation, etc. Required experience: Minimum of 3 years' experience in a Security/Cyber Engineer/Analyst, role focusing on designing and implementing security solutions and managing security infrastructure. Previous experience working within a financial services environment and a working understanding of relevant regulations. Experience and in-depth technical knowledge of deploying, maintaining, and configuring a wide range of security technologies within a large and complex environment (anti-malware/EDR, SIEM solutions, vulnerability scanners, patch management, CASB, DLP, penetration testing tools, etc.) Knowledge of TCP/IP and related network protocols: knowledge of standard network protocols like TCP, ARP, ICMP, DHCP, DNS, HTTP, SNMP, VPN etc., and accompanying protocol/packet analysis/manipulation tools. Understanding of key operating systems and network appliances and the ability to assess their security posture based on their configuration/deployment. Experience of working effectively with a variety of stakeholders from different technology and business teams. Strong verbal and written communication skills. Desirable experience: Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or Certified Information Security Manager (CISM). Strong knowledge of Operating System security and system hardening concepts such as CIS Benchmarks. Experience in working with information security frameworks and regulatory requirements including ISO27001, NIST, PCI DSS, GDPR, Cyber Essentials. Experience of general IT Audit processes and conducting risk assessments. You will be a proactive self - starter with strong communication skills and comfortable interacting with stakeholders at all levels. You will have the ability to tailor your approach and translate requirements to non-technical members of staff. We offer a competitive remuneration package, including company discretionary bonus, excellent pension contributions, an attractive staff share scheme, BUPA health insurance, buying and selling of annual leave and sponsorship of relevant professional qualifications. The role is based in our central London office, working a minimum of two days a week in the office and three days a week from home. About Us Transact is the leading independent investment wrap platform in the UK. Established in 2000, we have over £54.9 billion of funds under direction (as at Sept 2023) on behalf of over 7,600 advisers and 230,000 investor clients. Our service includes an online platform, owned and built by us, and dedicated regional adviser support to help bring clients' assets and investments together in a smarter, more tax efficient way. We offer access to a wide range of tax wrappers (including ISAs, pensions and life insurance investment bonds) and funds which advisers use to build client investment portfolios. Portfolio valuations, purchases and sales are all supported via Transact Online which is available 24/7. Transact's parent company, IntegraFin Holdings plc, is listed on the London Stock Exchange and is a constituent of the FTSE 250 index. Equal Opportunities We provide a diverse and inclusive workplace and ensure that all of our staff respect and understand individual differences. We are an equal opportunities employer and positively encourage applications from suitably qualified and eligible candidates regardless of age, disability, gender reassignment, marital or civil partner status, pregnancy or maternity, race, religion or belief, sex or sexual orientation.
May 02, 2024
Full time
Are you looking for a Security role within a dynamic, innovative financial technology organisation? If so, we are recruiting for a Cyber Operations Engineer to join our IT Department! Working alongside the Cyber Operations Lead you will help to design, develop, and mature the company's cybersecurity capability, including the selection, implementation, and management of security tools/technologies, focused on detection, prevention, and analysis of security threats. This role offers a great opportunity to help define and shape the security function within a collaborative IT department, ensuring the protection of customer assets. Responsibilities include: Work with technology and business teams to deliver security processes, technologies and controls, acting as the authority on security related queries. Define, design, implement, and maintain security solutions appropriate to the business' needs. Support the definition, execution and continuous improvement of key cybersecurity processes including vulnerability & patch management, security incident response, security monitoring, endpoint security, identity and access management, network security, and cryptography. Assist with developing and maintaining security policies, processes and incident response management plans and playbooks. Prepare and document standard operating procedures and protocols. Provide expertise on security requirements into core technology processes like asset management, change management, third-party management, technology development & acquisition, configuration management, etc. Contribute as a team member in projects and change initiatives aimed at increasing enterprise security capabilities e.g., identity and access management, log aggregation, etc. Required experience: Minimum of 3 years' experience in a Security/Cyber Engineer/Analyst, role focusing on designing and implementing security solutions and managing security infrastructure. Previous experience working within a financial services environment and a working understanding of relevant regulations. Experience and in-depth technical knowledge of deploying, maintaining, and configuring a wide range of security technologies within a large and complex environment (anti-malware/EDR, SIEM solutions, vulnerability scanners, patch management, CASB, DLP, penetration testing tools, etc.) Knowledge of TCP/IP and related network protocols: knowledge of standard network protocols like TCP, ARP, ICMP, DHCP, DNS, HTTP, SNMP, VPN etc., and accompanying protocol/packet analysis/manipulation tools. Understanding of key operating systems and network appliances and the ability to assess their security posture based on their configuration/deployment. Experience of working effectively with a variety of stakeholders from different technology and business teams. Strong verbal and written communication skills. Desirable experience: Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or Certified Information Security Manager (CISM). Strong knowledge of Operating System security and system hardening concepts such as CIS Benchmarks. Experience in working with information security frameworks and regulatory requirements including ISO27001, NIST, PCI DSS, GDPR, Cyber Essentials. Experience of general IT Audit processes and conducting risk assessments. You will be a proactive self - starter with strong communication skills and comfortable interacting with stakeholders at all levels. You will have the ability to tailor your approach and translate requirements to non-technical members of staff. We offer a competitive remuneration package, including company discretionary bonus, excellent pension contributions, an attractive staff share scheme, BUPA health insurance, buying and selling of annual leave and sponsorship of relevant professional qualifications. The role is based in our central London office, working a minimum of two days a week in the office and three days a week from home. About Us Transact is the leading independent investment wrap platform in the UK. Established in 2000, we have over £54.9 billion of funds under direction (as at Sept 2023) on behalf of over 7,600 advisers and 230,000 investor clients. Our service includes an online platform, owned and built by us, and dedicated regional adviser support to help bring clients' assets and investments together in a smarter, more tax efficient way. We offer access to a wide range of tax wrappers (including ISAs, pensions and life insurance investment bonds) and funds which advisers use to build client investment portfolios. Portfolio valuations, purchases and sales are all supported via Transact Online which is available 24/7. Transact's parent company, IntegraFin Holdings plc, is listed on the London Stock Exchange and is a constituent of the FTSE 250 index. Equal Opportunities We provide a diverse and inclusive workplace and ensure that all of our staff respect and understand individual differences. We are an equal opportunities employer and positively encourage applications from suitably qualified and eligible candidates regardless of age, disability, gender reassignment, marital or civil partner status, pregnancy or maternity, race, religion or belief, sex or sexual orientation.