Satellitetalent
,
London, Greater London
Security Analyst
Overview
Job Description
Our networks are being expanded as new offices are opened, new systems implemented, new requirements formulated, and to meet current industry standards and best practices. As part of this network expansion we are looking for a Security Analyst to complement the current team who will focus on security related tasks. The incumbent shall work as part of the security operations team to ensure that security requirements are being implemented and operated as per the overall Security program. The Role A member of the Security Operations team focused on Network, Platform, and Application security issues. Ensure the systems within the company are compliant with ISO27001/2, and NIST 800-53 security control frameworks. Provide Support for the Security Information and Event Management (SIEM) System. Monitor alarm console and make determination on alarm severity, escalation, and response routing. Assist in integrate SIEM monitoring into incident response process and procedures, assist in creating or updating SIEM triggers and threshold rule sets, and assist in developing and implementing SIEM raw data archive strategy. Maintain a Compliance/Vulnerability Assessment (VA) Scanning Capability. Maintain the VA host machine(s) with updated configuration benchmarks, OS and application patches. Maintain an Information Assurance Vulnerability Management (IAVM) and System Patching Process. Maintain an up to date Software Inventory configuration database. Interface with platform and network element administrators to maintain status of software versions and patching. Assist in integrating Windows Server Update Services (WSUS), Red Hat Network (RHN), and/or equivalent automated software update services into the IAVM process. Deliver investigation and remediation activities as a member of the Security Incident Response Team. Participate in Security Incident Response Team (SIRT) events: Conduct research and assessments of security events; provide analysis of firewall, IDS, anti-virus and other network sensor produced events; present findings as input to SIRT. Make recommendations on security threat mitigation strategies. Assist in Writing and Update Security Procedures. Provide research of best business practices, and review security bodies (Information Security Forum, NIST, SANS, etc.) policy and procedure templates; The post may require some travel to remote offices, work during maintenance windows and being on-call as part of a team to provide out of office support. To Apply Cyber security professional with 3- 5 years of direct information security operations experience. University degree level education or equivalent in Computer Science / Data Communication. A Global Information Assurance Certification (GIAC) Certified Incident Handler (GCIH), GIAC Certified Intrusion Analyst (GCIA), or equivalent certification would be advantageous. Intermediate knowledge of Information Security fundamentals, technologies, and design principals. Knowledge of Security Compliance Framework(s) such as ISO 27001 and NIST 800 Series. Proven experience in securing Windows, Linux, Oracle and VM platforms. Proven Experience in writing technical and operational procedures. Proven experience of QRadar or similar Security Information and Event Management (SIEM) tools for analysing network and security incidents. Proven experience in Tenable Network Security Nessus, BeyondTrust Retina or similar Vulnerability Assessment (VA) scanner operations for identifying network and platform risks and mis-configurations. Willingness to learn new skills and be self-motivated. Ability to work in a team environment, to work under pressure and show flexibility. Excellent verbal and written communication skills in English. In Return Our client can offer a long-term, exciting and rewarding career which offers many corporate benefits. To apply you must be eligible to work within the UK.