Precise Placements
,
London, Greater London
IT Security Analyst (CISSP, CISO, CISM)
|
Job Type: Full-time |
---|---|
|
Salary: £40,000 per annum |
Overview
IT Security Analyst (CISSP, CISO, CISM) Our law firm client requires an IT Security Analyst (CISSP, CISO, CISM) on a permanent basis to assist with the procurement, planning, implementation, upgrade and management of the firm's IT security systems, including the reporting of security projects and provide advice on the firms other projects regarding any aspects of IT security. As the firms IT Security Analyst (CISSP, CISO, CISM) you will act as a point of contact for security incidents, investigations, issues or alerts while using existing (and future) security systems. Key Responsibilities for this IT Security Analyst - (CISSP, CISO, CISM): Explains the purpose of and provides advice and guidance on the application and operation of security controls. Performs security risk, vulnerability assessments, and business impact analysis. First point of contact for IT, Business Services and business users regarding security concerns Technical security solution management and configuration Interprets information assurance and security policies and applies these in order to manage risks. Provides advice and guidance to ensure adoption of and adherence to information assurance architectures, strategies, policies, standards and guidelines. Uses testing to support information assurance. Contributes to the development of policies, standards and guidelines. Supports the Security Incident Response process, including both internal and external security incident management Assists with responding to Client Security Assessments, Client Audits and implementing any resulting action plans Takes active part in information security initiatives including Security Awareness Communication and Training Supports User Identity and Access Management processes via Active Directory groups, Password Policy Management, Privileged Account Management and Application Access Control Provides input to the service continuity planning process and implements resulting plans Works with external security providers to proactively maintain a secure environment Assists with Third Party Supplier security monitoring and due diligence Assesses changes to environments and uses threat assessments to advise on security concerns Experience and Skills required: 2 years experience in a security role CISSP, CISA or CISM certification desirable Understanding of data privacy in the context of GDPR and any related qualifications desirable Risk management experience desirable ISO 27001 accreditation and experience of implementing such advantageous Experience administrating security solutions (Citrix, Mimecast, Next-Gen AV, Office365 Security and Compliance, Cisco Umbrella/DNS services, Cisco Meraki Active Directory Admin, Firewalls) essential Network / Windows security management (Wi-Fi and LAN security management, PowerShell, Server Security Management) Good technical understanding of industry leading Cloud platforms and technologies (AWS, Azure) highly desirable Working knowledge of legal applications desirable Knowledge of professional services and partnership environments advantageous