Description:
IT Security Analyst This full-time post is available from the 6th July on a permanent basis.
The starting salary will be from £33,951 on Grade E, depending on knowledge, skills and experience.
This role offers the opportunity for hybrid working - some time on campus and some from home.
This role may be subject to additional background screening.
The Role The role will involve application of expertise for the following:
- Analysing potential security threats and assessing the risks they pose to the organisation, using a range of tools and techniques to identify vulnerabilities and support mitigation activities.
- Running the vulnerability management process to ensure services and assets are regularly assessed, working with technical teams to ensure remediation activities are completed in line with policy.
- Working daily with SIEM / SOAR platforms to detect, investigate, and respond to security incidents in a timely manner, while identifying opportunities for automation and service improvement.
- Supporting incident response activities and proactively hunting for threats across the University environment.
- Delivering phishing simulations, security awareness campaigns, and training to promote good security practices and compliance with University policies.
- Producing monthly service and operational reports to support performance monitoring and continuous improvement.
- Integrating and managing the University’s in-house Threat Intelligence capability, providing actionable recommendations and insight into emerging threats and industry trends.
- Monitoring and escalating high-severity threats identified through Threat Intelligence activities to ensure risks are acted upon promptly.
About You Key skills and experience
- Experience working with SIEM solutions, with the ability to analyse logs from systems such as Active Directory, IDS/IPS, firewalls, EDR platforms, and email gateways to identify and respond to security threats.
- Experience operating vulnerability and patch management processes, preferably using tools such as Nessus or Tenable.io.
- Strong knowledge of technical infrastructure, networks, databases, and systems in relation to cyber security and IT risk.
- Ability to produce detailed reports, technical documentation, and operational procedures to a high standard.
- Excellent analytical, problem-solving, and communication skills, with the ability to explain complex technical issues to both technical and non-technical audiences.
- Ability to build effective working relationships with colleagues, stakeholders, and external partners to support collaborative security operations.
- Experience interpreting and analysing threat intelligence data to provide actionable insights and recommendations.
- Experience supporting the sharing and operational use of threat intelligence with internal stakeholders and external partners.
- A proactive, pragmatic, and positive approach to problem-solving, with the ability to adapt well in a fast-changing environment.