Cyber Security Analyst

<p>Cyber Security Analyst required by a financial services organisation &#8211; responsible for influencing and shaping the overarching security strategy, and to recommend and adopt technologies to better safeguard the organisation.</p> <p><em>This role would be ideal opportunity for an Infrastructure specialist with cyber security knowledge looking for a role to specialise further in Cyber security. </em></p> <p>The role offers the opportunity for hybrid working with only 1 day a week required in office in a really welcoming and positive working environment. Our client offers a competitive salary and package which includes:-</p> <ul> <li>c£40K salary depending on experience</li> <li>Hybrid Working – mainly remote with 1 day per week required in office</li> <li>35 Hour Week</li> <li>Private Healthcare</li> <li>Generous pension</li> <li>Free Onsite Parking</li> <li>25 days holidays (rising with service) + 8 bank holidays plus other benefits.</li> </ul> <p><strong><u>Key Skills &amp; Experience:</u></strong></p> <ul> <li>Prior experience of a cyber security role. Experience of a regulated or audited industry would be beneficial.</li> <li>Experience in managing Windows 11, Microsoft Office &amp; Active Directory.</li> <li>Excellent working knowledge of Microsoft Group Policy and InTune configuration</li> <li>Excellent understanding of firewall (NGFW) and network technologies and configuration.</li> <li>Proficiently troubleshoot and resolve IT related issues</li> <li>A sound general range of IT skills, which need to be kept up to date in line with IT developments in the business.</li> <li>An excellent understanding of NIST, CIS, ISO27001 framework and controls</li> <li>Experience developing cyber resilience and disaster recovery</li> <li>Confidence to communicate effectively with all layers of the business, including the delivery of reports to management and training and best-practice guidance to all staff</li> <li>Drive efficiency through automation utilising PowerShell, with integration to Microsoft services such as Active Directory and Graph API</li> </ul> <p><strong><u>Responsibilities:</u></strong></p> <ul> <li>End to end management of phishing, through design, scheduling, reporting and training.</li> <li>Conduct staff training covering emerging threats, end-user best practices, phishing, password management and more.</li> <li>Vulnerability management life cycle including detection and remediation</li> <li>Maintain third party 24/7 SOC relationship and workflow approvals</li> <li>Engage in proactive threat assessment with support of the SOC</li> <li>Oversee access reviews across all systems with continued development</li> <li>Infrastructure best practice audit, development and maintenance including work on firewalls, networking, Microsoft Office 365, MDM and antivirus to reduce exposure</li> <li>Data Loss Prevention development and maintenance</li> <li>Maintaining server and end-user compute security in addition to MDM compliance</li> <li>Collaborate within the IT Team to develop security policies, hardening guidelines and department procedure guides</li> <li>Continue development in ISO27001 / CIS / NIST type frameworks ensuring industry best practices</li> </ul> <p>This is an excellent opportunity to join a professional working environment with exciting career development opportunities. The role is offered as a permanent role and will provide the incumbent the chance to develop their skills and experience. In return you will enjoy an attractive salary c£40K, a hybrid working environment and a range of benefits including a 35-hour week, healthcare, pension, and free onsite parking.</p> <p>Our client welcomes applications from a diverse background and encourages equality and inclusion in their workforce.</p> <p>Forward your CV to Elaine Hallworth and we will be back in touch to discuss the role and client further.</p> <p>&nbsp;</p> <p>&nbsp;</p>