
Senior IT Security Analyst London, England
Job description
Description du poste
- To manage end to end Vulnerability Management (Identifying security vulnerabilities, qualify identify solutions and help manage their remediation).
- Monitor technical identity and access management, including monitoring for abuse of permissions by authorized system users.
- Ensuring the quality of IT inventory across diverse Security systems (AV, VM, SIEM, Asset Registers/CMDB).
- Monitoring and ensuring secure operation of Firewalls, IPS and other security tools.
- Monitoring attacks, intrusions and unusual, unauthorized activity. Carrying out 'spot checks' to identify the security risks.
- Developing and updating relevant IT policies, processes and procedures integrating security best practices into them.
- Identifying, investigating and reporting potential security alerts in the logging system and other security threat intelligence platforms. Taking actions to stop them and prevent them in the future.
- Acting, prioritising and investigating on security incidents, diagnosing the root causes of incidents, seek resolutions and documenting findings.
- Developing new CSIRT/Incident response tool base to improve the quality of investigations.
- Monitoring and responding to emerging threat patterns & anomalies.
- Stay current on IT security trends, news and security standards.
- CISSP: Certified Information Systems Security Professional
- Ethical Hacking, CompTIA Security or similar
- Network, Security, or Platform certification(s) (S+, N+, MCSP, CNA).
SOC, CSIRT or CERT operational environment experience.- Detailed knowledge on incident handling and forensics for security related issues.
- Experience reviewing and analysing Security Events from various monitoring and logging sources.
- You will have good exposure in IT Infrastructure security. Exposure in Securing, auditing and maintaining Infrastructure components and configurations on VMware, Windows and Linux platforms would be beneficial.
- Past experience within medium to large sized investment banks, hedge funds and asset management companies would be beneficial.
- Exposure to Endpoint Protection / Anti-Virus / Anti-Malware / Anti-Ransomware / Encryption.
- You will be able to display some understanding and have working experience with Network Infrastructure components, IPS, SIEM, WAFs, Load Balancers, proxies, Firewall management systems.
- Dynamic, creative individual with the ability to show initiative.
- Committed to keeping up to date with relevant technologies, backed up by recent technical certifications.
- Able to work without direction to achieve results.
- Strong time keeping and time management.
- You will work well under pressure keeping a well composed image.
- Hands on approach and the ability to go the extra mile.
- Self-driven and a passionate for Information Security technologies with attention to detail and a desire to analyse situations, propose solutions rather than just follow instructions.
- Ability to prioritise and to meet tight deadlines.
- Scripting knowledge using Power Shell, Python, Active Directory management.
Bac