Intermediate Security Analyst Senior Consultant
Intermediate Security Analyst Senior Consultant
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
The Security Analyst shall support the Senior Cyber Security Specialist in the development and deployment of Clients Cyber Security Standards Policies and Procedures on behalf of the Client Directorate.
The role holder is responsible for monitoring analysing and responding to security threats while ensuring compliance with security policies and industry standards. The Intermediate Security Analyst shall have experience in security operations incident response and vulnerability management.
Principal Accountabilities
- Ensure compliance with client Cyber security policies industry regulations (e.g. ISO 27001 NIST GDPR) and industry best practices.
- Support internal security awareness programs by working closely with the Project Information Systems team to train the trainer to educate the client team members on cybersecurity best practices.
- Work closely with the Client and others to implement security improvements and mitigate risks.
- Attend weekly technical meetings and arrange monthly update meetings to report on progress to the DataInformation Standards & Governance Lead.
- Maintain the security documentation prepare reports on security incidents and contribute to security audits. The documentation will be reviewed on monthly basis and formally updated and republished quarterly
- Support the Senior Cyber Security Specialist in developing the Security Information Requirements for the design construction and operation of the project.
- Monitor security alerts logs and events from SIEM (Security Information and Event Management) tools to detect potential threats and vulnerabilities with the support of the client.
- In collaboration with client to manage and optimise security tools such as firewalls endpoint protection and threat intelligence platforms.
- In association with client to investigate and respond to security incidents conduct root cause analysis and recommend mitigation strategies.
- Assist in identifying analysing and remediating vulnerabilities across networks systems and applications.
- Conducting the Cyber security evaluation for the 3rd Party Tool requests and support the Systems Architecture and Integrations team.
Qualifications :
Experience Skills and Qualifications
Experience
- Experience in cybersecurity IT security or related roles.
- Experience with cybersecurity policy architecture and strategy
- Detailed knowledge of security operations (cybersecurity management vulnerability scanning analysis and mitigation management penetration testing security incident management)
- Tangible experience with Security monitoring (threat detection and response Level 3 Security analysis and handling etc.
- Experience with Data Security (data leakage protection data classification data handling etc.)
Skills
- Familiarity with SIEM tools (Splunk QRadar etc.).
- Knowledge of firewalls antivirus software and endpoint security solutions.
- Understanding of common attack vectors (phishing malware ransomware etc.).
- Experience with vulnerability assessment tools (Nessus Qualys etc.).
- Basic knowledge of scripting (Python PowerShell) is a plus.
- Strong analytical problemsolving and communication skills.
- Ability to work in a team and independently
- Ability to coordinate and communicate important information across the team
- Welldeveloped interpersonal and communication skills
- Ability to work in a collaborative manner that is positive open transparent and is a clear and effective communicator.
Formal Education Qualifications
Minimum Level 8 degree (or equivalent) in relevant subject area e.g. engineering computer science or equivalent experience.
Practicing / Training / Compliance Certification
Professional Memberships
At least one of the Certifications below:
- CompTIA Security
- ISO/IEC 27001 Lead Implementer or Lead Auditor
- ECCouncil Certified Ethical Hacker (CEH)
- Certified Information Systems Security Professional (CISSP)
- Certified Information Security Manager (CISM)
- Certified Information Systems Auditor (CISA)
- GIAC Security Essentials (GSEC)
- CompTIA CySA (Cybersecurity Analyst)
Additional Information :
Our colleagues share our vision and mission. We offer a workplace where every person has the opportunity and voice to influence and change.
We want our people to succeed both at work and in their private lives. To support this we promote a healthy productive and flexible work environment that respects worklife balance.
Turner & Townsend stands for a level playing field. We celebrate diversity and are committed to creating an inclusive environment for all employees as well as actively encouraging applications from all parts of society.
Please find out more about us at
Join our social media conversations for more information about Turner & Townsend and our exciting future projects:
#LIAV1
It is strictly against Turner & Townsend policy for candidates to pay any fee in relation to our recruitment process. No recruitment agency working with Turner & Townsend will ask candidates to pay a fee at any time.
Any unsolicited resumes/CVs submitted through our website or to Turner & Townsend personal email accounts are considered property ofTurner & Townsend and arenot subject to payment of agency fees. In order to be an authorised Recruitment Agency/Search Firm for Turner & Townsend there must be a formal written agreement in place and the agency must be invited by the Recruitment Teamto submit candidates for review.
Join our social media conversations for more information about Turner & Townsend and our exciting future projects:
It is strictly against Turner & Townsend policy for candidates to pay any fee in relation to our recruitment process. No recruitment agency working with Turner & Townsend will ask candidates to pay a fee at any time.
Any unsolicited resumes/CVs submitted through our website or to Turner & Townsend personal email accounts are considered property of Turner & Townsend and are not subject to payment of agency fees. In order to be an authorised Recruitment Agency/Search Firm for Turner & Townsend there must be a formal written agreement in place and the agency must be invited by the Recruitment Team to submit candidates for review.
Remote Work :
No
Employment Type :
Fulltime
Employment Type
Full-time
