Cyber Security Analyst

<p> Cyber Security Analyst required by a financial services organisation - responsible for influencing and shaping the overarching security strategy, and to recommend and adopt technologies to better safeguard the organisation. </p><p><em> This role would be ideal opportunity for an Infrastructure specialist with cyber security knowledge looking for a role to specialise further in Cyber security. </em></p><p> The role offers the opportunity for hybrid working with only 1 day a week required in office in a really welcoming and positive working environment. Our client offers a competitive salary and package which includes:-</p><ul><li> c£40K salary depending on experience </li><li> Hybrid Working – mainly remote with 1 day per week required in office </li><li>35 Hour Week </li><li> Private Healthcare </li><li> Generous pension </li><li> Free Onsite Parking </li><li>25 days holidays (rising with service) + 8 bank holidays plus other benefits. </li></ul><p><b> Key Skills & Experience: </b></p><ul><li> Prior experience of a cyber security role. Experience of a regulated or audited industry would be beneficial. </li><li> Experience in managing Windows 11, Microsoft Office & Active Directory. </li><li> Excellent working knowledge of Microsoft Group Policy and InTune configuration </li><li> Excellent understanding of firewall (NGFW) and network technologies and configuration. </li><li> Proficiently troubleshoot and resolve IT related issues </li><li> A sound general range of IT skills, which need to be kept up to date in line with IT developments in the business. </li><li> An excellent understanding of NIST, CIS, ISO27001 framework and controls </li><li> Experience developing cyber resilience and disaster recovery </li><li> Confidence to communicate effectively with all layers of the business, including the delivery of reports to management and training and best-practice guidance to all staff </li><li> Drive efficiency through automation utilising PowerShell, with integration to Microsoft services such as Active Directory and Graph API </li></ul><p><b> Responsibilities: </b></p><ul><li> End to end management of phishing, through design, scheduling, reporting and training. </li><li> Conduct staff training covering emerging threats, end-user best practices, phishing, password management and more. </li><li> Vulnerability management life cycle including detection and remediation </li><li> Maintain third party 24/7 SOC relationship and workflow approvals </li><li> Engage in proactive threat assessment with support of the SOC </li><li> Oversee access reviews across all systems with continued development </li><li> Infrastructure best practice audit, development and maintenance including work on firewalls, networking, Microsoft Office 365, MDM and antivirus to reduce exposure </li><li> Data Loss Prevention development and maintenance </li><li> Maintaining server and end-user compute security in addition to MDM compliance </li><li> Collaborate within the IT Team to develop security policies, hardening guidelines and department procedure guides </li><li> Continue development in ISO27001 / CIS / NIST type frameworks ensuring industry best practices </li><li> This is an excellent opportunity to join a professional working environment with exciting career development opportunities. The role is offered as a permanent role and will provide the incumbent the chance to develop their skills and experience. In return you will enjoy an attractive salary c£40K, a hybrid working environment and a range of benefits including a 35-hour week, healthcare, pension, and free onsite parking. </li><li> There is a requirement to contribute to the Saturday 8:45 - 12:15 Rota (approximately 1 week in 5) on-site. </li></ul><p> Our client welcomes applications from a diverse background and encourages equality and inclusion in their workforce. </p><p> Forward your CV to Elaine Hallworth and we will be back in touch to discuss the role and client further. </p>