Collegamento...

W1siziisimnvbxbpbgvkx3rozw1lx2fzc2v0cy9vbgl2zxitamftzxmvanbnl29mzmljzs1izy1pbwfnzs5qcgcixv0
W1siziisimnvbxbpbgvkx3rozw1lx2fzc2v0cy9vbgl2zxitamftzxmvanbnl29mzmljzs1izy1pbwfnzs5qcgcixv0

Security Analyst

Luogo: London, England
Stipendio: Negotiable
Postato: giorni 20 fa
Tipologia di contratto: Contract
Industria: Cyber Security & Technology Risk
Nome del contatto: Gareth Batchelor
Contatto email: gareth.batchelor@ojassociates.com

Gareth Batchelor

Associate Consultant, UK

See more of Gareth Batchelor's jobs

Security Analyst

I'm currently recruiting for a Security Analyst on a 6 month initial contract paying £500 a day in Central London for a financial services client. The successful candidate will need to be skilled in Security Operations and Network Security with technical experience working with Darktrace and Bluecoat Proxy.

Main Duties:

  • Threat intelligence collection, analysis, and dissemination to SOC & IT Ops team members
  • Forensic and malware analysis
  • Harvest Indicators of Compromise (IOCs) and Tactics, Techniques, and Procedures (TTPs) to investigate if a threat has affected the Aspen environment
  • Investigation of compromised assets
  • Hunt through available logs to look for anomalous behaviours
  • Work with third parties in order to effectively respond to Incidents raised and develop use case library
  • Develop improved processes to reduce security incident detection time, as well as that time to contain an attack.
  • Maintenance of Incident Response plans and procedures and development of incident response playbooks to ensure the availability of consistent response actions that can be utilised by Information Security staff.
  • Maintain appropriate security technology stack (Check Point, FireEye, patching, vulnerability scanning) and ensure global coverage
  • Undertake third party security audits and assessments.
  • Maintain up-to-date knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors.
  • Perform risk assessments and testing of new systems and services to identify weaknesses in Security
  • Work with the Security & Networks Operations Manager to select, review and recommend security enhancements - for example, HIDS, Encryption, Full Packet Capture
  • Build up threat intelligence information capability by joining sharing communities and subscribing to feeds.
  • Developing metrics to demonstrate security coverage and highlight risks and issues
  • Organise penetration testing and vulnerability scanning. Track and close outstanding actions
  • Develop and maintain a secure, access-controlled repository
  • Assist in supporting existing Network operations technologies

Education/Experience:

  • 2-3 years of related information and cyber security experience within Financial Services
  • Experience of defining security requirements for projects
  • Flexible and co-operative team player.
  • Good understanding of technology developments.
  • Some experience of supporting Financial Services business.
  • Interest in and awareness of modern computer security technical challenges.
  • Scripting and programming
  • Experience with security incident response including identification, preservation and interpretation of computer evidence
  • IDS/IPS technologies
  • Experience in the following technologies: Cisco, Bluecoat, CheckPoint Gateway & Endpoint, FireEye, McAfee ePO, SIEM, Dell Secureworks, Dark Trace
  • SANS training beneficial
  • A Global Information Assurance Certification (GIAC) Certified Incident Handler (GCIH), GIAC Certified Intrusion Analyst (GCIA), or equivalent certification would be advantageous
  • Knowledge of Security Compliance Framework(s) such as ISO 27001 and NIST 800 Series
  • Proven experience in securing Windows, Linux and VM platforms
  • Proven Experience in writing technical and operational procedures

I lavori simili