Security Analyst

Holland & Barrett International
12 Oct 2018
09 Nov 2018
Contract Type
Full Time
We are currently recruiting for aSecurityAnalyst to join the IT team!

The post holder will uncover a wide range of technicalsecurityvulnerabilitiesand advise the Cyber/InformationSecurityManager onassociatedrisks and potentialremediation. The Analyst willactivelymonitor theoperationsof IT in order to ensureappropriatesecuritystandards are maintained.

The Role

  • SupportCyberSecurityTeam indevelopingand maintaining an assessment to provide assurance on theadequacyandeffectivenessof the ITcontrolenvironmentto meet company InformationSecuritystandards
  • ManageVulnerabilityscans (both Application and Infrastructure) and external PenTestengagements. Drivingremediationefforts to reduce informationsecurityrisks
  • Manage H&B externalsecurityvendors and outsourced service providers; ensuredeliveryand performance meet agreed SLA and KPI
  • The analyst performs research of new threats, assessment andanalysison Intrusion Detection and Prevention tools, Firewalls, Antivirus systems, proxy devices which requiresdemonstrablesecurityincident response experience
  • Create and maintainsecurityoperationalreports for Key Performance Indicators and weekly and Monthly Metrics
  • Execute daily adhoc tasks orleadsmallsecurityprojects as needed

  • The Person
  • Customer Focus
  • Communication&Confidence
  • Planning & Reviewing
  • Attention to Detail
  • Able toprioritiseandeffectivelymanage conflictingpriorities
  • Technical Skills

  • Working in thesecurityandoperationsfields;securityoperationsexperience is an advantage
  • Excellentunderstandingofapplicationssecurityand relevant standards (OWASP); DevOps background is preferred
  • Knowledge of cutting edge threats andtechnologieseffecting Web Applicationvulnerabilities, Endpoints, Infrastructure and recent threats
  • Good knowledge of networkingtechnologies(OSI, TCP/IP, Routing and Switching, Firewalls, IDS/IPS, DDoS, DNS, Load Balancer)
  • Good knowledge of variousoperatingsystems (Windows/UNIX)
  • Demonstrableexperience of performing both internal and externalvulnerabilityassessments
  • Forensicanalysisskill an advantage
  • Computer Science Degree or similar preferred
  • Certificationsfrom EC-Council, GIAC, (ISC)² are preferred (CISSP, CEH, GCIA, CCNA-(Security)or above)
  • Excellentcommunicationskills, able toconfidentlyconverse with technical andnon-technicalstakeholders

  • This job was originally posted as

    Similar jobs

    Similar jobs