Cyber Security Analyst | Incident Response

> Sheffield or Hatfield

> £30,000 - £40,000 + Up to 20% Bonus

> 10% Pension + 10x Life Assurance + Excellent Benefits

> Hybrid Working (3 Days On-site, 2 Remote)

** The business will support the application for security clearance. Due to the nature of work, the individual has to be a UK national or have lived and worked in the UK for the past 5 consecutive years. **

The Role in a Nutshell

This is a security incident response role, the role holder will have experience within a security environment, hold an externally recognised security certification and have operational experience with security infrastructure products such as Tenable Security Centre, Qualys, Splunk and Security Product Suites

About the Business

Security is one of the fastest-growing parts of this global organisation. They protect their networks from more than 6,500 cyber-attacks each day, investing over £40m in research each year and employing more than 3,000 people in the security business alone - which makes them the largest private security employer in the UK. With incredible opportunities to learn, develop and grow your skills, they will invest in you, nurture potential and shape your future - whatever your background or experience.

Skills & Experience Required

Experience working for a Managed Security Services (MSS) provider in a Security Operations Centre, computer emergency incident response team or computer security incident response centre

Operational experience with security infrastructure products such as Tenable Security Centre, Qualys, Splunk and Security Product Suites

Hold an externally recognised certification with up-to-date memberships e.g. CompTIA Security+, CEH, BCS Membership

Experience supporting ISO, PCI or HMG frameworks

Security Governance

Security Assurance

Management of Vulnerability, Standards, Policy & Controls

Legal & Regulatory Environment and Compliance

Cyber Resilience

Internal & Statutory Auditing

Information Security Strategy

Risk Assessment

Governance Risk and Compliance Tooling

Information Risk Management

You'll have the following Responsibilities

Support penetration test governance by contributing to planning, test scoping, engagements with project teams and external testing firms to ensure the company's security capabilities withhold amidst a rapidly evolving cyber threat landscape

Utilise various information system documentation, inspection tools to audit systems, analyse potential vulnerabilities and identify mitigation approaches

Leverage best-in-practice cybersecurity frameworks, defense information systems agencies, technical implementation guides (STIGs), centre for internet security (CIS) benchmarks and other Information Security benchmarks and best practices

Support in the implementation of ways to improve working processes within the area of security testing

Collate and review programme documentation such as risk assessments, security plans and contingency plans

Support the execution of threat intel informed, scenario-based, red and purple team operations, both short and long in duration

Support threat, vulnerability and risk analysis, determine mitigating and remediation capabilities, provide guidance, assess inherent and residual risks and articulate results

Support the implementation, development and maintenance of security testing strategies, roadmaps, policies, processes, technology and controls

Support activities including red teaming, penetration testing, code scanning, and vulnerability management policies and procedures

Support robust penetration test scopes that ensure penetration tests meet all certification and compliance requirements

Benefits

Up to 20% Bonus

10% Pension

10x Life assurance cover

Free annual shares

25 days' annual leave, plus bank holidays, and additional days for length of service

You'll enjoy access to 100s of instant discounts for restaurants, shops, and the cinema. These include money off your weekly shop and discounts on gift/shopping vouchers.

World-class training and development

keywords: 32222, sc clearance, incident response, siem, cism, iso27000, splunk, comptia, cyber security