Senior Cyber Security Analyst (12 month FTC)

Competitive salary and remuneration package including, 27 days holiday, pension contributions matched up to 9%Hybrid working opportunityPrivate HealthcareMarshall, an independent, family-owned British company, proudly helping our customers move forwards since 1909We now have an opportunity for a Senior Cyber Security Analyst (12 month contract) within Marshall.The focus of this technical role is on threat prevention, detection and response for Marshall, including the configuration and monitoring of a security information and event management (SIEM) system, operating next generation antivirus, intrusion detection/prevention systems (IDS/IPS), vulnerability management tools and Firewall, DLP, Web and Email Security Gateways.This is a senior role, where the holder will also be expected to evolve and expand the use of current security toolsets, help identify and implement additional tools, services, process changes, policy decisions and close compliance gaps, to enhance the Marshall protection and detection capabilities as risks evolve over time.Responsibilities include:Managing set checklistsProblem management through to handover or resolutionThreat identification and classificationIncident response leadReport writingStakeholder managementContinuous improvementJunior SOC staff mentoringTasks:Helping to maintain and monitor the effectiveness of security measures and controlsConduct and help coordinate, routine security event monitoring and investigations using available toolsUse, configure and develop the use of a security information and event management (SIEM) and EDR toolMonitor and configure network intrusion detection and prevention systemsAnalyse and create reports for security incidents, to determine root cause and lessons learntCreate and rehearse Incident Response plans, support audits and red team engagementsWork closely with other Cyber Security/IT team members and external support groupsRoutinely communicate with individuals both inside and outside the businessResponding to, own and close/escalate service ticketsTake ownership as required, of project activities assigned from internal or external projectsConfiguring, reviewing and reporting relevant risks using vulnerability testing tools/servicesInput into the risk management process and help prioritise key mitigation strategiesConfidently work with outside services in the event of incident response or routine investigations, including Red/Blue Team engagementsAid in the delivery of security awareness training to the businessMentor junior cyber security analyst/sOn occasion, be able to cover Cyber Security Manager operational responsibilitiesPlease apply if you have most of the following:Technical Competencies:Deep hands-on skills with Windows and ideally Linux operating systems, also networking and bespoke device typesVery good awareness of computer networking protocols in relation to cyber securityAdministration, configuration and use of a Security Information and Event Management (SIEM) system, including creating alerts, reports, dashboards, handling IOCs and Threat FeedsAdministration of Firewalls, Web Proxies, Web Application Firewalls, Email Security and Endpoint Detection-Response softwareTechnical understanding of common cyber security threats, faced by individuals or organisations, as well as mapping threats to frameworks such as MITRE ATT&CKExtensive and detailed knowledge of how software/hardware vulnerabilities can be exploitedAbility to prioritise risks in terms of potential likelihood, impact, consequences and mitigationsAny Cyber Security related qualificationsExperience:Experience of working in a Security Operations Centre or similar roleDetailed exposure to Applications, Networks, Servers and/or Endpoint devicesWorking with large amounts of data, for analysis, reporting or general IT servicesDocumenting, developing and expanding on existing operational cyber security processes and playbooksExposure to and experience of recovering from cyber security incidentsExperience working in or for a highly regulated industry, with data classifications and compliance frameworksPractical experience knowledge of vulnerability scanning and pen testing type toolsExperience doing gap analysis, threat modelling and managing/mapping TTPsExperience of collating and presenting information to others inside and outside IT or Security TeamsCompiling risk assessments, technical, security or otherwise, including lessons learntYou must Be available to attend site at short notice should there be a major cyber incident which requires onsite investigation, coordination or responseAre you eligible for a guaranteed interview? If you identify as disabled under the Disability Confident Scheme, a care leaver, have experience in care, or are a member/veteran of the armed forces, you may qualify. If you meet the essential criteria for the role, reach out to .A Resourcing team member will respond to you as soon as possible.#LI-Hybrid#LI-ER1#IND-AEROMarshall Group is an Equal Opportunity Employer#J-18808-Ljbffr…