Provide Consulting Ltd London, United Kingdom
Information Security Analyst/Engineer Are you an experienced Information Security Engineer/Cyber Security Analyst? Do you have up-to-date technical knowledge of IT Security technologies including; SIEM, Vulnerability scanners, WAF, IDS/IPS, Firewalls, IAM, patch management, Antivirus & PCI/DSS etc? Does the prospect of a varied and challenging role where you will be developing, documenting & implementing security policies & processes, providing Cyber incident response/support and also participating in other security related activities related to governance, project planning and management working for a market leading infrastructure services company appeal to you? If this sounds like you then please read on Here you will report directly to the IT Security Manager and work closely with other 3rd line tech teams in the organisation where your primary objectives will be develop, document & implement security processes as well as respond to Cyber Security Incidents and provide input in to the design and development of the IT infrastructure. Core tasks will include but not be limited to; Writing, documenting and developing security policies, processes and procedures Performing identification and collection of cyber threats utilising both proactive and reactive threat hunting techniques/methods. Executing vulnerability & web application assessments and providing analysis and recommendations Formulating security assurance reviews against the compliance framework Data loss prevention Participation in infrastructure and technical projects Management of various infrastructure elements Ideal candidates will have 3+ years experience in a similar Information Security Engineer/Cyber Analyst role with specific experience to include at least some of the following; Proven knowledge in developing, documenting & implementing information security processes and also in providing Cyber Incident Response Experience of working across multiple security technologies, including Cloud collaboration tools and Endpoint Security. Experience of PCI/DSS compliance Experience of Security Analysis toolkits, defensive technologies and other security systems eg SIEM, Vulnerability scanners, WAF, IDS/IPS, Firewalls, IAM, patch management, ZScaler, Sophos AV A good understanding of Vulnerability and Risk Assessment techniques/methodologies. Knowledge of Network Information System (NIS), GDPR, MITRE framework or ISO 27001 CISSP or CISSM qualified (or working towards it) Infrastructure skills including some of the following; Azure, Citrix, Windows Server, PowerShell Scripting, Proxy Servers and VMware Working in a small, close knit team the working culture/environment is high energy and fast paced. On offer is a highly competitive salary plus benefits and the opportunity to join a market leading infrastructure services company with a "technology first" mentality. Apply now with a current CV for further information, interviewing immediately!