Description:
We’re working with a high-impact organisation operating in a critical infrastructure environment and they’re looking to bring in an IT Security Analyst to bolster their cyber defence capabilities.
This is a broad and hands-on role for someone who thrives in dynamic environments, enjoys diving into complex investigations, and wants to make a tangible difference to the overall security posture of a hybrid on-prem/Azure setup.
Responsibilities:
- Endpoint monitoring and analysis.
- Incident readiness and handling as part of the Computer Security Incident Response (CSIRT) team.
- Monitor and administer Security Information and Event Management (SIEM).
- Malware analysis and forensics research.
- Understanding/ differentiation of intrusion attempts and false positives.
- Investigation tracking and threat resolution.
- Vulnerability identification & mitigation / remediation.
- Compose security alert notifications.
- Help develop cyber security process & procedures.
- Advise incident responders & other teams on threat.
- Triage security events and incidents apply containment and mitigation/remediation strategies.
- Generate reports and document security incidents / events.
- Proactively monitoring the performance of systems, and make regular routine inspections of installed equipment and take corrective avoidance actions to prevent wider problems.
- Act as the point of escalation for the Service desk for security related tickets.
- Analysis of weekly vulnerability scans and update relevant records.
Skills Needed:
- An IT Security Analyst with a strong understanding of Microsoft 365 and Azure Security (Defender, EntraID, Intune, Purview etc)
- An IT Security Analyst with 4+ years in IT/Networking/Infrastructure roles, as well as at least 2 years in a Cyber Security focused role
- An IT Security Analyst who has strong experience with vulnerability management and endpoint detection
- An IT Security Analyst with credible knowledge/experience in Microsoft Windows Operating Systems.
- An IT Security Analyst with credible knowledge/experience of Active Directory, Group policies, TCP/IP, DNS, DHCP and Exchange Server.
- An IT Security Analyst capable of effectively multi-tasking, prioritizing work, and handling competing interests
- An IT Security Analyst who is capable of analysing information technology logs and events sources preferred
- An IT Security Analyst with working knowledge of data storage systems, data backup and restoration methods.
- An IT Security Analyst with understanding of security tooling, its purpose and functionality (Anti-Malware, IPS, Web and Email Gateways, security analysis tools, web security tools, next generation firewall/UTMs)