Cyber Security Analyst

Cyber Security Analyst - Outside IR35 - 12 Months

One of Loriens leading Public Sector Clients are looking for an experienced Cyber Security Analyst to join their team on an initial 12 month contract.

The successful candidate will work as part of the cyber security team providing technical input to security operations. Activities will cover security detection engineering, access control reviews, incident response, training and awareness, threat hunting and vulnerability and configuration management.

Key Responsibilities

• Cyber Security Incident Response - process alerts and incidents through tools and direct user reports, knowing when to escalate, ensuring lessons are learned to minimise re-occurrence where appropriate.
• Cyber Security Detection - configure appropriate alerts and remediation processes including automation where possible to ensure significant volumes of security event data can be manged within the small team
• Cyber Security Training and Awareness - Proactively engage colleagues to develop understanding of good cyber security, not limited to overseeing phishing simulations and drafting news articles.
• Cyber Security Threat Intelligence and Hunting - determine valuable intelligence feeds, process reports, assess within organisation context, and use intelligence to proactively seek out configuration and process weaknesses, escalating where necessary.
• Vulnerability and Configuration management - Configure Cyber Security scanning tools to ensure trusted data pertaining to current digital system configuration and vulnerabilities is available, prioritise findings and raise with engineers and or risk mangers where necessary, ensure business priorities are considered and where greatest reduction of risk for invested time will be achieved.
• Access Control Reviews - proactive review access controls to report excessive permissions to digital systems
• Carry out investigation and troubleshoot in conjunction with engineers, developers, and business colleagues
• Proactively highlight potential security improvements
• Provide excellent service in response to all business requirements
• Document procedures and share experience with colleagues.
• Provide recommendations for SecOps processes and automation

Technical scope

• Security products (email filtering, AV, firewalls, WAFs, MS Defender, Sentinel)
• Enterprise Systems (email, PKI, AD, Azure, M365, Intune)
• Azure cloud

Skills Required

• Analytical and troubleshooting skills are essential, including problem solving from first principles
• Significant operational cyber security experience on digital systems on an enterprise scale
• Demonstrable recent record of directly carrying out cyber security activities above
• Ability to self-start, accept ownership and see through change start to finish
• Communicate effectively on technical subject with users

Desirable Qualifications

• Microsoft - on-premise and cloud related engineering level certifications
• Security - vendor or industry (such as SANS) qualifications
• ITIL certification

Carbon60, Lorien & SRG - The Impellam Group STEM Portfolio are acting as an Employment Business in relation to this vacancy.