Hays Specialist Recruitment Limited
,
London, Greater London
Cyber Security Analyst
Overview
Cyber Security Analyst - Public Transport Body - Immediate Start - Outside IR35 THIS POSITION IS AVAILABLE OUTSIDE IR35 Your new company One of the largest Public Transport Bodies in the UK Your new role Cyber Security Analyst What you'll need to succeed This is a technical role within the Cyber Security Technology and Engineering group. In this role you will provide comprehensive advisory, technical and consultancy services in relation to Cyber Security across Technology and Data projects. The role has the responsibility for providing security guidance and assurance so that projects meet requirements for cyber security. This includes the engagement with stakeholders, identification and capture of requirements, the selection, design and delivery of secure solutions. Responsibilities Work as a technical subject matter expert, reviewing and steering project scope, design and technology. Establish security requirements and advise on security design aspects of technical architectures covering in-house, public cloud and third party applications and infrastructure. Assess security risks related to the development, integration and implementation of enterprise and commercial mobile and web applications. Identify threats against systems and applications within the project lifecycle and develop solutions and strategies to mitigate them. Make technical security recommendations to improve the security of new or existing applications and infrastructure. Ensure projects are run in accordance with appropriate assurance activities, best practices and using optimal architectures. Adopt approaches and techniques for secure delivery in agile development projects. Anticipate and mitigate against project challenges and risks. Define and evaluate technical procurements requirements. Preparing and presenting reports concerning the current security status of project pipelines, engagements, security deliverables, project issues and business/security risks. Liaise with business stake holders in designing and evaluating secure solutions, finding pragmatic solutions that balance business and cyber security needs. Develop and maintain relationships with technology architects, developers, project managers and business analyst's to instil good security practices Knowledge Skills and Experience A demonstrable passion for Cyber Security. A broad understanding in a range of technology stacks and the ability to take a balance approach to technology selection. A detailed and proven understanding of network infrastructure, system and application architecture and associated security controls within highly complex environments. Expertise in public cloud application hosting, mobile and web application security. Proven understanding of current best practise approach to security assurance and the application of security frameworks (E.g. NCSC 10 steps & cloud sec principles, NIST, OWASP, etc.) Working knowledge of cyber threat assessment, malware functionality and capabilities and countermeasures used to defend them; Firewalls , Secure gateways, IDS / IPS, SIEM, DLP, Endpoint Solutions, Access Control etc. Knowledge of cryptographic protocols and solutions. Experience in project and development methodologies covering; architecture pattern development, requirements analysis, design review and project risk assessment. Planning and prioritising multiple project work streams in response to rapidly developing and changing portfolios. Turning business problems into optimal technical security designs, aligning user needs with systems requirements and organisational goals. Experience of supplier and third party risk management Demonstrate analytical, critical and creative thinking skills, identifying many possible causes for a problem based on prior experience and current research. Capable of making and guiding effective decisions, explaining clearly how decisions have been reached and the ability to understand and resolve technical disputes across varying levels of complexity and risk. Highly effective written and verbal communications skills. Qualification Any of the following CISSP Cisco Security Certifications TOGAF What you'll get in return This is a great role to join a High Profile Client in a 6 month role What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. If this job isn't quite right for you but you are looking for a new position, please contact us for a confidential discussion on your career. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk