IT Security Analyst - Wolverhampton

Additional Resources Ltd
£37,000 per annum
10 Aug 2017
23 Aug 2017
Contract Type
Full Time
IT Security Analyst - Wolverhampton


to £37,000pa + up to 20% BONUS & excellent benefits

35 hours per week

A vacancy has arisen in the IT Team for a Security Analyst. Your role will include leveraging your knowledge of industry best practices, good judgment and problem solving skills to execute IT security operations. You will report directly to the Head of IT Security and be expected to support him in his role.

You will work as part of a team to provide support and advice on all matters relating to IT Security, this will include collaborating on items such as providing assistance in preventing security incidents; participating in investigation and remediation of security incidents; performing deep-dive incident analysis and determining if critical systems or data sets have been impacted; recording lessons learnt and improving existing processes and procedures.

You will be responsible for reviewing aggregated server logs, firewall logs, intrusion prevention logs and network traffic for unusual or suspicious activity. You will provide Information Security Reporting and Metrics and provide input into improving information security reporting and metrics. You will also identify and recommend improvements on internal investigation capabilities via tool building.

Key Skills:

- Expert knowledge of IT systems, including theoretical and practical TCP/IP networking knowledge

- Knowledge of or experience in current vulnerability management tools (e.g. Qualys, Nmap, Nessus, Nexpose)

- Ability to trouble-shoot complex, technical, multi-site and multi-disciplinary problems

- Functional knowledge of UNIX, Linux, Apple and Windows technologies

- Functional experience performing monitoring, analysis and recovery procedures

- Experience managing infrastructure and change within PCI compliant environments

- Knowledge of targeted cyber attack (APT), how to analysis these and respond to and mitigate against the attacks

- An understanding of Information security standards such as ISO 27001/2, Cyber Essentials

- Functional knowledge of operating protocol analysers and analysing output e.g. Wireshark

- Functional experience performing deep-dive incident analysis by correlating data from various sources

- Functional knowledge of TCP/IP protocol suite, LAN/WAN technologies, switching, routing, VoIP and Telephony technologies, firewalls and VPN, intrusion prevention systems (IPS), vulnerability assessment and patch management tools

- Flexible approach and attitude, and a willingness to learn.

In addition, you will have excellent oral, written communication and presentation skills sufficient to liaise and interact with employees at all levels within the organisation and third party companies, dealing with confidential issues in a professional manner with tact and discretion. You should be educated to A` level standard in a relevant discipline. A degree in Computer Science, Information Systems, Engineering or equivalent, or current IT Security qualification (e.g. CISSP) would be beneficial.

The position attracts a competitive salary and benefits including 25 days holiday, non contributory cover for Life Assurance of up to 3 times basic salary and a performance related bonus up to 20% of base salary, based upon achieving company budgets and targets.

Skill Summary: Information, Security, Cyber, Analyst, Analysis, Server, Firewall, Logs, Intrusion, Prevention, Network Traffic, Reporting, IS, Info Sec, Breaches, Incidents, Policies, Improvement, Vulnerability, Monitoring, Management, Splunk, QRadar, Intel MacAfee, ArcSight, RSA NetWitness, Qualys, Nmap, Nessus, Nexpose, TCP./IP, LAN, WAN, Switches, Routers, VOIP, Firewalls, VPN, IPS, Patch Management, Unix, Linux, Windows, Protocol Analyzers, Wireshark, Recovery, Monitoring, Prevention, Analysing, APT, Targheted Cyber-Attacks, ISO 27001/2 Cyber Essentials, PCI DSS, CISSP, CISA, SSCP, SANS, Audits, Risk Management, RCSA, ITIL v3

Additional Resources Ltd is an Employment Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003.