Find your next tech and IT Job or contract role.

Our job search is powered by Technojobs , part of the Free-Work group.

Your search returns 10 results.
Tip

Tip

Use commas to search for several terms at the same time.

Example : sql, php corresponds to sql OR php

Premium Job
Permanent

Job Vacancy
Information Security Analyst

Vitality
Published on

Bournemouth, England, United Kingdom

About The Role Team - Information Security - Risk and Governance Working Pattern - Hybrid - 2 days per week in the Vitality Bournemouth Office. Full time, 35 hours per week. We are happy to discuss flexible working! Top 3 skills needed for this role: A keen learner. Experience working in a Cyber Security role. Good verbal and written communication skills. What this role is all about: As an Information Security Analyst, you will form part of an expanding information security team. You will be responsible for ensuring that information assets are adequately protected and that appropriate controls and mitigating actions are in place to manage identified information security risks. You will protect Vitality and its member's data; work with stakeholders to ensure appropriate controls are in place. Key Actions Provide professional advice and consultancy to Vitality business areas on Information Security best practice. Assist in the development, maintenance and improvement of the Information Security Management System (ISMS), so that certification to ISO27001 is maintained. Undertake internal audits based on ISO27001 requirements. Identify and assess information security risks and define appropriate mitigating controls. Carry out risk assessments as required of business processes and systems and projects. Mature the Data Loss Prevention and Access Management capabilities within Vitality. Contribute to the continuous improvement of Vitality's Information Security posture. Engagement with project managers to ensure risks are identified and are being addressed through the SDLC. Define, implement and maintain information security policies, standards, procedures and processes. Undertake security due diligence on third party suppliers including site visits as required. Contribute to the development of information security training and awareness activities. Support audit efforts related to information security. Participate in the management of information security incidents. What do you need to thrive? A professional certification such as CISSP/CISA/CRISC or the wiliness to undertake self-study to achieve one. Experience working in an Information Security role. Excellent understanding of Information Security principles, data protection and regulatory compliance. Problem definition and solution identification. Demonstrated ability to identify and implement process improvements. Excellent verbal and written communication skills; ability to articulate technical knowledge to non-technical audience. Experience in performing risk assessments and business impact analysis. Experience of working with projects throughout the SDLC. Experience of developing and implementing information security policies and procedures. Knowledge and experience of ISO27001/2, PCI DSS and other industry frameworks. Ability to conduct internal audits and write associated audit reports. Appropriate level of technical knowledge. Experience of information security monitoring tools (e.g. Mail Marshal / Websense / McAfee / Splunk etc). Sound understanding of security standards, data protection and regulatory compliance (e.g. Financial Conduct Authority and Information Commissioners Office). So, what's in it for you? Bonus Schemes - A bonus that regularly rewards you for your performance A pension of up to 12%- We will match your contributions up to 6% of your salary Our award-winning Vitality health insurance - With its own set of rewards and benefits Life Assurance - Four times annual salary These are just some of the many perks that we offer! To view the extensive range of benefits we offer, please visit our careers page. Fantastic Benefits. Exciting rewards. Great career opportunities! If you are successful in your application and join us at Vitality, this is our promise to you, w e will: Help you to be the healthiest you've ever been. Create an environment that embraces you as you are and enables you to be your best self. Give you flexibility on how, where and when you work. Help you advance your career by playing you to your strengths. Give you a voice to help our business grow and make Vitality a great place to be. Give you the space to try, fail and learn. Provide a healthy balance of challenge and support. Recognise and reward you with a competitive salary and amazing benefits. Be there for you when you need us. Provide opportunities for you to be a force for good in society. We commit to all these things because we want you to feel that you belong, and are supported to be happy and healthy. About The Company We're really excited to announce that we have recently been awarded "Top 10 Best Places To Work" in The Sunday Times Awards 2024! Vitality is a multi-award-winning UK insurance brand, here to make the world a healthier, happier place. We've been a purpose and values-driven business from day 1- long before it became fashionable. Our core purpose is to make people healthier and enhance protect their lives. Vitality pioneered shared-value insurance. Diversity & Inclusion We're committed to diversity and inclusion because it's good for our employees, for our business, and for society. To learn more please visit our Careers page. Vitality's approach to sustainability Vitality is a business that drives positive change. We reward people for making and sustaining healthier choices. But healthy people also need a healthy environment. To learn more please visit our Careers page. If we are fortunate in receiving a high volume of quality applications we may need to close this vacancy early.

Permanent

Job Vacancy
Senior Information Security Analyst

Nexus Jobs Limited
Published on

£70k-85k
London, England, United Kingdom

Job Description Senior Information Security Analyst Our Client is a leading global company specialising in pharma products. They are looking to recruit a Senior Information Security Analyst with at least 5 to 7 years expertise in Technology Security. The Senior Information Security Analyst is responsible for maintaining information security policies, architecture, technical standards, technical controls, security solutions, guidelines, procedures, and other elements necessary to maintain security posture. Responsible for assessing information risk and facilitating remediation of identified vulnerabilities & risks across the organization. Accountable for coordinating the execution of security measures to protect our computer infrastructure, information systems and to ensure the organization maintains an acceptable risk posture. The Senior Information Security Analyst is highly engaged in risk management and mitigation, including evaluating vendor risk, examining vendor contracts for terms of service, understanding third-party risk, and data privacy issues. The analyst serves as an expert on cybersecurity protection, detection, response, and recovery. This individual is responsible for coordinating penetration testing and managing internal and external cybersecurity analysts to detect, mitigate, and analyze threats. Works closely with other teams to develop controls such as firewalls, business systems, data leakage protection systems, patching, encryption, vulnerability scanning, application code scanning, remediation as well as defining configuration for a variety of security tools. Prior experience in an international enterprise environment is essential. Responsibilities: • Collaborate with IT teams for input and operational requirements to design and implement the company's overall cybersecurity strategy. • Identify and address security gaps discovered through ongoing monitoring of all information security controls and implement enhancements to security controls. • Manage access to elevated privileges accounts and audit activities to meet business and regulatory requirements. • Evaluate and/or implement cybersecurity solutions and controls to maintain confidentiality, integrity, and availability. • Actively participate in proofs-of-concept for new security technologies by developing selection criteria to identify appropriate security solutions to support strategic, operational needs, and security requirements. • Participate in the development and testing of the security incident response plan, act as the incident response leader. • Develop security, risk, and compliance reports and alerts. • Participate in the yearly review of policies and procedures to support information security, risk, and security compliance activities. • Participates in developing, testing, and implementation of disaster recovery procedures for the cybersecurity technology in place. • Manages cybersecurity projects to ensure that the delivery is on-time, within budget, and adopted to meet the company's information protection requirements. • Performs or coordinates internal security assessments, penetration tests, vulnerability scans, and assess organization cybersecurity maturity Complying with frameworks and regulations such as COBIT, NIST (800-53, cybersecurity), ISO, ITIL, PCI, GLBA, GDPR, HIPAA, and other data privacy and security standards and regulations. • Provides internal customer support via assigned tickets for security-related issues, while ensuring assignments are resolved within assigned SLA's. • Evaluate and implement CIS critical security controls where necessary. • Will provide input into cybersecurity strategic roadmap and annual budget. • Adhere to applicable change management policy and procedure. Qualifications: • Bachelor's degree required; advanced degree highly desirable. Candidates must possess significant analytical skills, which evolved from early academic training in Cybersecurity, Information Systems, Computer Science, or similar discipline. • Provides a documented work history that includes a minimum of 5-years experience in Information Security. • Proficiency in security framework models such as NIST, etc., implementing and auditing security measures, security response, and incident management. • Possess a working knowledge of Cisco network switches, routers, firewalls and VPN, network security, administration of DLP, antivirusantimalware, IDS/IPS, SIEM, SMTP, Email security, AD, Group Policy, DNS, DHCP, and VLANs. • Experience with identity access management solutions, such as SAMLOATH • Experience with HIDS and NIDS • The ideal candidate possesses relevant information security or cybersecurity certifications. • Requires the ability to analyze and recommend changes to the security landscape where necessary to meet the information security objectives of the organization. • Participates in change management meetings and provides expert input to ensure security is maintained. • Knowledgeable in security best practices such as encryption, hashing, vulnerability scans, event log monitoring, intrusion detection and prevention, eDiscovery, and content filtering. • Ability to manage and continuously improve upon vulnerability management program. • Ability to propose solutions for closing identified vulnerabilities in the infrastructure. Desired Qualifications: • Certified Information System Security Professional (CISSP), NIST Cybersecurity Framework (NCSF), Certified Cloud Security Professional (CCSP) andor Certified Ethical Hacker (CEH) • Knowledge and experience with Microsoft Office and Visio. • Knowledge of WAN technologies including MPLS, SD WAN. • Knowledge of cloud providers security (AWS, GCP or Azure). • Prior experience managing Cisco ELA products including DNA, Firepower, ISE Management console, Umbrella, Cisco AMP for endpoints, Stealth watch, as well as Splunk, SolarWinds, Varonis and Darktrace. • Prior experience with Azure Rights management and Information protection highly desirable. • Project management skills are highly desirable. • Previous experience in a HIPAA/FDA regulated environment. Competencies: To perform the job successfully, an individual should demonstrate the following behaviors: • Motivation/Initiative: Motivated and curious, willing to ask questions, research issues, and take on challenging projects/assignments; creative, brings new ideas to the table, exhibits self-confidence. Position requires a strong achievement motivation and tenacity. • Administrative Skills: Possesses the ability to organize and follow-through on multiple tasks recognizes and attends to important details with accuracy and efficiency. Works to complete goals, tasks, and plans, anticipate potential problems and analyze alternative solutions. • Interpersonal Style: (Interpersonal Skills, Communication, Teamwork); develops/ maintains effective working relationships; listens attentively to others; communicates ideas clearly (written & verbal); relates to people in an open/ sincere manner; participates effectively in meetings; assists in finding solutions as well as identifying problems; communicates appropriately with supervisor, and co-workers. Able to influence other individuals and maintain calm and reliable demeanor in the face of challenges. • Self-Management: (Adaptability/Flexibility, Stress Tolerance, Autonomy); adapts readily to changes in routine; works effectively in stressful situations; needs limited guidance and direction; is comfortable working in a fast-paced environment; is reliable and dependable; is results-oriented; maintains productivity and composure under pressure; views problems as opportunities to create solutions. • Thinking Skills: Diagnoses problems efficiently; gathers sufficient input before making decisions or plans; makes timely decisions, quickly determines sources of the problem, identifies information needed to solve a problem and analyzes alternative solutions, communicates issues and decisions effectively to the team. • Customer Orientation: Sensitive & responsive to internal customer needs; demonstrates skills in customer services and satisfaction; maintains a positive attitude, willing to listen to customer problems and seeks solutions; stays in tune with changing needs of customers. • The analyst will adapt readily to change, work effectively in stressful situations, need limited guidance and direction, and is comfortable working in a fast-paced environment. • Diagnoses problems efficiently gather sufficient input before making changes, quickly determines sources of issues, identifies information needed to solve the problems, and analyzes and communicates issues with effective alternative solutions to the team. This a UK based role at the Central London offices of the Client, although for the foreseeable future you will be based at home and work remotely. The salary for this role will be in the range £70K - £85K. Please do send your CV to us in Word format along with your salary and availability.

Permanent

Job Vacancy
Senior Information Security Analyst

Nexus Jobs Limited
Published on

£70k-85k
London, England, United Kingdom

Job Description Senior Information Security Analyst Our Client is a leading global company specialising in pharma products. They are looking to recruit a Senior Information Security Analyst with at least 5 to 7 years expertise in Technology Security. The Senior Information Security Analyst is responsible for maintaining information security policies, architecture, technical standards, technical controls, security solutions, guidelines, procedures, and other elements necessary to maintain security posture. Responsible for assessing information risk and facilitating remediation of identified vulnerabilities & risks across the organization. Accountable for coordinating the execution of security measures to protect our computer infrastructure, information systems and to ensure the organization maintains an acceptable risk posture. The Senior Information Security Analyst is highly engaged in risk management and mitigation, including evaluating vendor risk, examining vendor contracts for terms of service, understanding third-party risk, and data privacy issues. The analyst serves as an expert on cybersecurity protection, detection, response, and recovery. This individual is responsible for coordinating penetration testing and managing internal and external cybersecurity analysts to detect, mitigate, and analyze threats. Works closely with other teams to develop controls such as firewalls, business systems, data leakage protection systems, patching, encryption, vulnerability scanning, application code scanning, remediation as well as defining configuration for a variety of security tools. Prior experience in an international enterprise environment is essential. Responsibilities: • Collaborate with IT teams for input and operational requirements to design and implement the company's overall cybersecurity strategy. • Identify and address security gaps discovered through ongoing monitoring of all information security controls and implement enhancements to security controls. • Manage access to elevated privileges accounts and audit activities to meet business and regulatory requirements. • Evaluate and/or implement cybersecurity solutions and controls to maintain confidentiality, integrity, and availability. • Actively participate in proofs-of-concept for new security technologies by developing selection criteria to identify appropriate security solutions to support strategic, operational needs, and security requirements. • Participate in the development and testing of the security incident response plan, act as the incident response leader. • Develop security, risk, and compliance reports and alerts. • Participate in the yearly review of policies and procedures to support information security, risk, and security compliance activities. • Participates in developing, testing, and implementation of disaster recovery procedures for the cybersecurity technology in place. • Manages cybersecurity projects to ensure that the delivery is on-time, within budget, and adopted to meet the company's information protection requirements. • Performs or coordinates internal security assessments, penetration tests, vulnerability scans, and assess organization cybersecurity maturity Complying with frameworks and regulations such as COBIT, NIST (800-53, cybersecurity), ISO, ITIL, PCI, GLBA, GDPR, HIPAA, and other data privacy and security standards and regulations. • Provides internal customer support via assigned tickets for security-related issues, while ensuring assignments are resolved within assigned SLA's. • Evaluate and implement CIS critical security controls where necessary. • Will provide input into cybersecurity strategic roadmap and annual budget. • Adhere to applicable change management policy and procedure. Qualifications: • Bachelor's degree required; advanced degree highly desirable. Candidates must possess significant analytical skills, which evolved from early academic training in Cybersecurity, Information Systems, Computer Science, or similar discipline. • Provides a documented work history that includes a minimum of 5-years experience in Information Security. • Proficiency in security framework models such as NIST, etc., implementing and auditing security measures, security response, and incident management. • Possess a working knowledge of Cisco network switches, routers, firewalls and VPN, network security, administration of DLP, antivirusantimalware, IDS/IPS, SIEM, SMTP, Email security, AD, Group Policy, DNS, DHCP, and VLANs. • Experience with identity access management solutions, such as SAMLOATH • Experience with HIDS and NIDS • The ideal candidate possesses relevant information security or cybersecurity certifications. • Requires the ability to analyze and recommend changes to the security landscape where necessary to meet the information security objectives of the organization. • Participates in change management meetings and provides expert input to ensure security is maintained. • Knowledgeable in security best practices such as encryption, hashing, vulnerability scans, event log monitoring, intrusion detection and prevention, eDiscovery, and content filtering. • Ability to manage and continuously improve upon vulnerability management program. • Ability to propose solutions for closing identified vulnerabilities in the infrastructure. Desired Qualifications: • Certified Information System Security Professional (CISSP), NIST Cybersecurity Framework (NCSF), Certified Cloud Security Professional (CCSP) andor Certified Ethical Hacker (CEH) • Knowledge and experience with Microsoft Office and Visio. • Knowledge of WAN technologies including MPLS, SD WAN. • Knowledge of cloud providers security (AWS, GCP or Azure). • Prior experience managing Cisco ELA products including DNA, Firepower, ISE Management console, Umbrella, Cisco AMP for endpoints, Stealth watch, as well as Splunk, SolarWinds, Varonis and Darktrace. • Prior experience with Azure Rights management and Information protection highly desirable. • Project management skills are highly desirable. • Previous experience in a HIPAA/FDA regulated environment. Competencies: To perform the job successfully, an individual should demonstrate the following behaviors: • Motivation/Initiative: Motivated and curious, willing to ask questions, research issues, and take on challenging projects/assignments; creative, brings new ideas to the table, exhibits self-confidence. Position requires a strong achievement motivation and tenacity. • Administrative Skills: Possesses the ability to organize and follow-through on multiple tasks recognizes and attends to important details with accuracy and efficiency. Works to complete goals, tasks, and plans, anticipate potential problems and analyze alternative solutions. • Interpersonal Style: (Interpersonal Skills, Communication, Teamwork); develops/ maintains effective working relationships; listens attentively to others; communicates ideas clearly (written & verbal); relates to people in an open/ sincere manner; participates effectively in meetings; assists in finding solutions as well as identifying problems; communicates appropriately with supervisor, and co-workers. Able to influence other individuals and maintain calm and reliable demeanor in the face of challenges. • Self-Management: (Adaptability/Flexibility, Stress Tolerance, Autonomy); adapts readily to changes in routine; works effectively in stressful situations; needs limited guidance and direction; is comfortable working in a fast-paced environment; is reliable and dependable; is results-oriented; maintains productivity and composure under pressure; views problems as opportunities to create solutions. • Thinking Skills: Diagnoses problems efficiently; gathers sufficient input before making decisions or plans; makes timely decisions, quickly determines sources of the problem, identifies information needed to solve a problem and analyzes alternative solutions, communicates issues and decisions effectively to the team. • Customer Orientation: Sensitive & responsive to internal customer needs; demonstrates skills in customer services and satisfaction; maintains a positive attitude, willing to listen to customer problems and seeks solutions; stays in tune with changing needs of customers. • The analyst will adapt readily to change, work effectively in stressful situations, need limited guidance and direction, and is comfortable working in a fast-paced environment. • Diagnoses problems efficiently gather sufficient input before making changes, quickly determines sources of issues, identifies information needed to solve the problems, and analyzes and communicates issues with effective alternative solutions to the team. This a UK based role at the Central London offices of the Client, although for the foreseeable future you will be based at home and work remotely. The salary for this role will be in the range £70K - £85K. Please do send your CV to us in Word format along with your salary and availability.

Permanent

Job Vacancy
Senior Information Security Analyst

Nexus Jobs Limited
Published on

£70k-85k
London, England, United Kingdom

Job Description Senior Information Security Analyst Our Client is a leading global company specialising in pharma products. They are looking to recruit a Senior Information Security Analyst with at least 5 to 7 years expertise in Technology Security. The Senior Information Security Analyst is responsible for maintaining information security policies, architecture, technical standards, technical controls, security solutions, guidelines, procedures, and other elements necessary to maintain security posture. Responsible for assessing information risk and facilitating remediation of identified vulnerabilities & risks across the organization. Accountable for coordinating the execution of security measures to protect our computer infrastructure, information systems and to ensure the organization maintains an acceptable risk posture. The Senior Information Security Analyst is highly engaged in risk management and mitigation, including evaluating vendor risk, examining vendor contracts for terms of service, understanding third-party risk, and data privacy issues. The analyst serves as an expert on cybersecurity protection, detection, response, and recovery. This individual is responsible for coordinating penetration testing and managing internal and external cybersecurity analysts to detect, mitigate, and analyze threats. Works closely with other teams to develop controls such as firewalls, business systems, data leakage protection systems, patching, encryption, vulnerability scanning, application code scanning, remediation as well as defining configuration for a variety of security tools. Prior experience in an international enterprise environment is essential. Responsibilities: • Collaborate with IT teams for input and operational requirements to design and implement the company's overall cybersecurity strategy. • Identify and address security gaps discovered through ongoing monitoring of all information security controls and implement enhancements to security controls. • Manage access to elevated privileges accounts and audit activities to meet business and regulatory requirements. • Evaluate and/or implement cybersecurity solutions and controls to maintain confidentiality, integrity, and availability. • Actively participate in proofs-of-concept for new security technologies by developing selection criteria to identify appropriate security solutions to support strategic, operational needs, and security requirements. • Participate in the development and testing of the security incident response plan, act as the incident response leader. • Develop security, risk, and compliance reports and alerts. • Participate in the yearly review of policies and procedures to support information security, risk, and security compliance activities. • Participates in developing, testing, and implementation of disaster recovery procedures for the cybersecurity technology in place. • Manages cybersecurity projects to ensure that the delivery is on-time, within budget, and adopted to meet the company's information protection requirements. • Performs or coordinates internal security assessments, penetration tests, vulnerability scans, and assess organization cybersecurity maturity Complying with frameworks and regulations such as COBIT, NIST (800-53, cybersecurity), ISO, ITIL, PCI, GLBA, GDPR, HIPAA, and other data privacy and security standards and regulations. • Provides internal customer support via assigned tickets for security-related issues, while ensuring assignments are resolved within assigned SLA's. • Evaluate and implement CIS critical security controls where necessary. • Will provide input into cybersecurity strategic roadmap and annual budget. • Adhere to applicable change management policy and procedure. Qualifications: • Bachelor's degree required; advanced degree highly desirable. Candidates must possess significant analytical skills, which evolved from early academic training in Cybersecurity, Information Systems, Computer Science, or similar discipline. • Provides a documented work history that includes a minimum of 5-years experience in Information Security. • Proficiency in security framework models such as NIST, etc., implementing and auditing security measures, security response, and incident management. • Possess a working knowledge of Cisco network switches, routers, firewalls and VPN, network security, administration of DLP, antivirus\antimalware, IDS/IPS, SIEM, SMTP, Email security, AD, Group Policy, DNS, DHCP, and VLANs. • Experience with identity access management solutions, such as SAML\OATH • Experience with HIDS and NIDS • The ideal candidate possesses relevant information security or cybersecurity certifications. • Requires the ability to analyze and recommend changes to the security landscape where necessary to meet the information security objectives of the organization. • Participates in change management meetings and provides expert input to ensure security is maintained. • Knowledgeable in security best practices such as encryption, hashing, vulnerability scans, event log monitoring, intrusion detection and prevention, eDiscovery, and content filtering. • Ability to manage and continuously improve upon vulnerability management program. • Ability to propose solutions for closing identified vulnerabilities in the infrastructure. Desired Qualifications: • Certified Information System Security Professional (CISSP), NIST Cybersecurity Framework (NCSF), Certified Cloud Security Professional (CCSP) and\or Certified Ethical Hacker (CEH) • Knowledge and experience with Microsoft Office and Visio. • Knowledge of WAN technologies including MPLS, SD WAN. • Knowledge of cloud providers security (AWS, GCP or Azure). • Prior experience managing Cisco ELA products including DNA, Firepower, ISE Management console, Umbrella, Cisco AMP for endpoints, Stealth watch, as well as Splunk, SolarWinds, Varonis and Darktrace. • Prior experience with Azure Rights management and Information protection highly desirable. • Project management skills are highly desirable. • Previous experience in a HIPAA/FDA regulated environment. Competencies: To perform the job successfully, an individual should demonstrate the following behaviors: • Motivation/Initiative: Motivated and curious, willing to ask questions, research issues, and take on challenging projects/assignments; creative, brings new ideas to the table, exhibits self-confidence. Position requires a strong achievement motivation and tenacity. • Administrative Skills: Possesses the ability to organize and follow-through on multiple tasks recognizes and attends to important details with accuracy and efficiency. Works to complete goals, tasks, and plans, anticipate potential problems and analyze alternative solutions. • Interpersonal Style: (Interpersonal Skills, Communication, Teamwork); develops/ maintains effective working relationships; listens attentively to others; communicates ideas clearly (written & verbal); relates to people in an open/ sincere manner; participates effectively in meetings; assists in finding solutions as well as identifying problems; communicates appropriately with supervisor, and co-workers. Able to influence other individuals and maintain calm and reliable demeanor in the face of challenges. • Self-Management: (Adaptability/Flexibility, Stress Tolerance, Autonomy); adapts readily to changes in routine; works effectively in stressful situations; needs limited guidance and direction; is comfortable working in a fast-paced environment; is reliable and dependable; is results-oriented; maintains productivity and composure under pressure; views problems as opportunities to create solutions. • Thinking Skills: Diagnoses problems efficiently; gathers sufficient input before making decisions or plans; makes timely decisions, quickly determines sources of the problem, identifies information needed to solve a problem and analyzes alternative solutions, communicates issues and decisions effectively to the team. • Customer Orientation: Sensitive & responsive to internal customer needs; demonstrates skills in customer services and satisfaction; maintains a positive attitude, willing to listen to customer problems and seeks solutions; stays in tune with changing needs of customers. • The analyst will adapt readily to change, work effectively in stressful situations, need limited guidance and direction, and is comfortable working in a fast-paced environment. • Diagnoses problems efficiently gather sufficient input before making changes, quickly determines sources of issues, identifies information needed to solve the problems, and analyzes and communicates issues with effective alternative solutions to the team. This a UK based role at the Central London offices of the Client, although for the foreseeable future you will be based at home and work remotely. The salary for this role will be in the range £70K - £85K. Please do send your CV to us in Word format along with your salary and availability.

Permanent

Job Vacancy
Senior Information Security Analyst

Nexus Jobs Limited
Published on

£70k-85k
London, England, United Kingdom

Job Description Senior Information Security Analyst Our Client is a leading global company specialising in pharma products. They are looking to recruit a Senior Information Security Analyst with at least 5 to 7 years expertise in Technology Security. The Senior Information Security Analyst is responsible for maintaining information security policies, architecture, technical standards, technical controls, security solutions, guidelines, procedures, and other elements necessary to maintain security posture. Responsible for assessing information risk and facilitating remediation of identified vulnerabilities & risks across the organization. Accountable for coordinating the execution of security measures to protect our computer infrastructure, information systems and to ensure the organization maintains an acceptable risk posture. The Senior Information Security Analyst is highly engaged in risk management and mitigation, including evaluating vendor risk, examining vendor contracts for terms of service, understanding third-party risk, and data privacy issues. The analyst serves as an expert on cybersecurity protection, detection, response, and recovery. This individual is responsible for coordinating penetration testing and managing internal and external cybersecurity analysts to detect, mitigate, and analyze threats. Works closely with other teams to develop controls such as firewalls, business systems, data leakage protection systems, patching, encryption, vulnerability scanning, application code scanning, remediation as well as defining configuration for a variety of security tools. Prior experience in an international enterprise environment is essential. Responsibilities: • Collaborate with IT teams for input and operational requirements to design and implement the company's overall cybersecurity strategy. • Identify and address security gaps discovered through ongoing monitoring of all information security controls and implement enhancements to security controls. • Manage access to elevated privileges accounts and audit activities to meet business and regulatory requirements. • Evaluate and/or implement cybersecurity solutions and controls to maintain confidentiality, integrity, and availability. • Actively participate in proofs-of-concept for new security technologies by developing selection criteria to identify appropriate security solutions to support strategic, operational needs, and security requirements. • Participate in the development and testing of the security incident response plan, act as the incident response leader. • Develop security, risk, and compliance reports and alerts. • Participate in the yearly review of policies and procedures to support information security, risk, and security compliance activities. • Participates in developing, testing, and implementation of disaster recovery procedures for the cybersecurity technology in place. • Manages cybersecurity projects to ensure that the delivery is on-time, within budget, and adopted to meet the company's information protection requirements. • Performs or coordinates internal security assessments, penetration tests, vulnerability scans, and assess organization cybersecurity maturity Complying with frameworks and regulations such as COBIT, NIST (800-53, cybersecurity), ISO, ITIL, PCI, GLBA, GDPR, HIPAA, and other data privacy and security standards and regulations. • Provides internal customer support via assigned tickets for security-related issues, while ensuring assignments are resolved within assigned SLA's. • Evaluate and implement CIS critical security controls where necessary. • Will provide input into cybersecurity strategic roadmap and annual budget. • Adhere to applicable change management policy and procedure. Qualifications: • Bachelor's degree required; advanced degree highly desirable. Candidates must possess significant analytical skills, which evolved from early academic training in Cybersecurity, Information Systems, Computer Science, or similar discipline. • Provides a documented work history that includes a minimum of 5-years experience in Information Security. • Proficiency in security framework models such as NIST, etc., implementing and auditing security measures, security response, and incident management. • Possess a working knowledge of Cisco network switches, routers, firewalls and VPN, network security, administration of DLP, antivirus\antimalware, IDS/IPS, SIEM, SMTP, Email security, AD, Group Policy, DNS, DHCP, and VLANs. • Experience with identity access management solutions, such as SAML\OATH • Experience with HIDS and NIDS • The ideal candidate possesses relevant information security or cybersecurity certifications. • Requires the ability to analyze and recommend changes to the security landscape where necessary to meet the information security objectives of the organization. • Participates in change management meetings and provides expert input to ensure security is maintained. • Knowledgeable in security best practices such as encryption, hashing, vulnerability scans, event log monitoring, intrusion detection and prevention, eDiscovery, and content filtering. • Ability to manage and continuously improve upon vulnerability management program. • Ability to propose solutions for closing identified vulnerabilities in the infrastructure. Desired Qualifications: • Certified Information System Security Professional (CISSP), NIST Cybersecurity Framework (NCSF), Certified Cloud Security Professional (CCSP) and\or Certified Ethical Hacker (CEH) • Knowledge and experience with Microsoft Office and Visio. • Knowledge of WAN technologies including MPLS, SD WAN. • Knowledge of cloud providers security (AWS, GCP or Azure). • Prior experience managing Cisco ELA products including DNA, Firepower, ISE Management console, Umbrella, Cisco AMP for endpoints, Stealth watch, as well as Splunk, SolarWinds, Varonis and Darktrace. • Prior experience with Azure Rights management and Information protection highly desirable. • Project management skills are highly desirable. • Previous experience in a HIPAA/FDA regulated environment. Competencies: To perform the job successfully, an individual should demonstrate the following behaviors: • Motivation/Initiative: Motivated and curious, willing to ask questions, research issues, and take on challenging projects/assignments; creative, brings new ideas to the table, exhibits self-confidence. Position requires a strong achievement motivation and tenacity. • Administrative Skills: Possesses the ability to organize and follow-through on multiple tasks recognizes and attends to important details with accuracy and efficiency. Works to complete goals, tasks, and plans, anticipate potential problems and analyze alternative solutions. • Interpersonal Style: (Interpersonal Skills, Communication, Teamwork); develops/ maintains effective working relationships; listens attentively to others; communicates ideas clearly (written & verbal); relates to people in an open/ sincere manner; participates effectively in meetings; assists in finding solutions as well as identifying problems; communicates appropriately with supervisor, and co-workers. Able to influence other individuals and maintain calm and reliable demeanor in the face of challenges. • Self-Management: (Adaptability/Flexibility, Stress Tolerance, Autonomy); adapts readily to changes in routine; works effectively in stressful situations; needs limited guidance and direction; is comfortable working in a fast-paced environment; is reliable and dependable; is results-oriented; maintains productivity and composure under pressure; views problems as opportunities to create solutions. • Thinking Skills: Diagnoses problems efficiently; gathers sufficient input before making decisions or plans; makes timely decisions, quickly determines sources of the problem, identifies information needed to solve a problem and analyzes alternative solutions, communicates issues and decisions effectively to the team. • Customer Orientation: Sensitive & responsive to internal customer needs; demonstrates skills in customer services and satisfaction; maintains a positive attitude, willing to listen to customer problems and seeks solutions; stays in tune with changing needs of customers. • The analyst will adapt readily to change, work effectively in stressful situations, need limited guidance and direction, and is comfortable working in a fast-paced environment. • Diagnoses problems efficiently gather sufficient input before making changes, quickly determines sources of issues, identifies information needed to solve the problems, and analyzes and communicates issues with effective alternative solutions to the team. This a UK based role at the Central London offices of the Client, although for the foreseeable future you will be based at home and work remotely. The salary for this role will be in the range £70K - £85K. Please do send your CV to us in Word format along with your salary and availability.

Permanent

Job Vacancy
Security Analyst

Nexus Jobs Limited
Published on

£65k-75k
London, England, United Kingdom

Job Description Security Analyst Our Client is recognised brand in London. They are looking to recruit a Security Analyst with at least 5 to 7 years proven track record as a Security Analyst. Main Accountabilities • Technical leadership for all the Clients security solutions, including all the 3rd party managed services • Maintain the overall security of Company network, systems, and data • Monitor security access and manage IDS/IPS configurations • Establishing and implementing security 'best-practice' standards as well as departmental policies and procedures • Responsible for Security scanning and the efficient remediation of vulnerabilities • Responsible for analysing all security incidents to determine root cause • Determine, recommend, and implement upgrade security measures and controls • Delivery security responses for customer and client compliance requirements • Developing and managing security plans with vendors • Audit activities of administrators and conduct Security awareness training Must have: • Bachelor's Degree in Computer Science/Information Technology or equivalent experience • Demonstrable skills and capability in Security leadership and 3rd party management experience • CISSP certification preferred. Compliance knowledge required in ISO27001, PCI and GDPR. Possibly a certified ethical hacker • Knowledge of Security technologies is essential, such as network appliances, firewall administration, AD, IAM, PAM, SIEM, UEBA, AV, IDS/IPS and MDM solutions • Understanding of common frameworks, such as ITIL or LEAN is preferred • Good exposure of user environment management, including desktops/laptops, profile management, access control methodologies • Must be very proactive in understanding and staying up to date with current security technologies and industry technology trends The Client is based in Paddington London. The salary for this role is in the range £65K - £75K plus benefits. Do send your CV to us in Word format along with your salary and availability.

Permanent

Job Vacancy
Test Analyst (DV Security Clearance)

CGI
Published on

Basingstoke, England, United Kingdom

Test Analyst (DV Security Clearance) Position Description Break our best to make it better and put yourself at the centre of a digital revolution. Our Testers are trusted to work closely with a wide range of clients on exciting projects with real world purpose and impact. The Space, Defence and Intelligence business unit in CGI is a true IT Systems Integrator. We work, build, and operate bespoke, technically complex, mission-critical systems which help our clients keep us all safe and secure. We bring innovation to our clients using proven and emerging technologies, agile delivery processes and our deep expertise across the breadth of space, defence, intelligence, aerospace and maritime, all underpinned by our end-to-end cyber capability. We work collaboratively with global technology companies, cutting edge SMEs and academia to deliver the optimal solution for each client. CGI was recognised in the Sunday Times Best Places to Work List 2024 and has been named one of the 'World's Best Employers' by Forbes magazine. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent, and inspiring everyone to pursue careers in our sector. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. We are happy to discuss remote or hybrid working. Due to the secure nature of the programme/role, you will need to hold the highest level of UK Security Clearance, or be eligible to go through National Security Vetting to obtain this clearance ie Single UK National. This role will be based on client site near Reading. Your future duties and responsibilities As a Test Analyst here at CGI, you will be working across several Agile development teams and be responsible for the design, development and running of tests using the best tools for the job. You will have a passion for testing as well as knowledge and understanding of Testing within modern software/applications development. In this role you will utilise strong collaboration and communication skills, as you will be along side Infrastructure, Development and Project Management teams. Key Tasks: • Running manual tests and using the project approved tools • Interpretation of test results and preliminary investigation of failures • Raising defects and monitoring them through to resolution • Attendance at Agile Team meetings and events Required qualifications to be successful in this role • Track record within a testing role • Experience of Continuous Integration Tools • Experience designing and producing automated or manual Tests • Experience of Test Management Tools e.g. ALM, Testrail etc • ISTQB Foundation Certification • Experience of SAFe and agile ways of working • Good Problem investigation • Analysis skills #LI-JW1 Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because... You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.

Permanent

Job Vacancy
Business Analyst (DV Security Clearance)

CGI
Published on

Gloucester, England, United Kingdom

Business Analyst (DV Security Clearance) Position Description Elevate your potential with CGI, a global technology service provider and premier business consultancy recognized by Forbes Magazine as a top 100 employer. Our mission is rooted in evolution, excelling in intricate challenges. Collaborating directly with our clients, we employ innovative technologies to revolutionize, empower, safeguard, and deliver critical mission systems. We are currently looking for an experienced BA to help our client to revolutionise their working practices through iterative digital transformation and strategic workforce planning. Working client-side, directly supporting Product Owners in this Scaled Agile environment, the candidate will combine their benefits analysis experience and business modelling insight to ensure that both the technology and the organisation evolve in sync, to optimise solutions and assure value. Influencing and shaping activity across the product development lifecycle, the role is a vital touch-point between external suppliers and client-organisation stakeholders. With polished communication and relationship management skills, you will be required to engage with multi-disciplinary software dev teams, service managers, IT specialists and the end-user community to generate evidence-based, coherent and achievable requirements, while maintaining a strong Customer Focus. CGI was recognised in the Sunday Times Best Places to Work List 2024 and has been named one of the 'World's Best Employers' by Forbes magazine. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. Due to the secure nature of the programme, all applicants must hold the highest level of UK Security Clearance (DV). Your future duties and responsibilities Supported by a well-established and client-focused CGI team, this opportunity offers real potential for a forward thinking and ambitious BA to become immersed in a range of digital transformation projects that are delivering tangible benefit to a key client. With genuine scope to play an integral role in shaping future direction, there will be opportunity to both hone existing expertise, and develop new skills and experience. Key Tasks: • Product Owner support. • Business process analysis and requirements recommendations. • Knowledge Base development. • Strategic Planning - aligning tech advancement with organisational aims. Required qualifications to be successful in this role • Strong working knowledge of SAFe and related Agile methodologies. • Document writing. • Business Process analysis. • Benefits Analysis. Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because... You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.

Permanent

Job Vacancy
SOC Analyst Level 2

Capita
Published on

£40k-45k
London, England, United Kingdom

Home based role. Help strengthen our team as our Level 2 SOC / Security Analyst - Compliance, Assurance & Continual Improvement . Home based role. A great opportunity to join our operational security team to support our initial and ongoing assessment of Operational Security controls against Cyber Security best practice, Organizational Policies, and recognized Security Frameworks, working with relevant stakeholders to identify areas for improvement, and support development, enhancement and implementation of robust security controls. In addition, this role will identify areas of improvement within the Operational Security function, proactively identifying opportunities to enhance and optimize internal processes, ensuring that they are both efficient and effective. This role is crucial in ensuring that even the most sophisticated cyber security controls are robustly implemented and enhanced. What You'll Be Doing: Verification and Compliance: •Verify that systems and processes meet specified security requirements.•Assess the correctness of cyber security risk assessments and risk management plans. Auditing and Assurance: •Conduct cyber security audits to find suboptimal testing, monitoring, and management of security controls.•Present clear audit findings to technical staff and management. Risk Management and Education: •Assess threats and vulnerabilities, focusing on risk management.•Identify points of potential weakness and effective areas for investigation.•Play a role in delivering training to embed security practices. Relationship Management: •Meet with teams to identify potential risks, issues or concerns.•Collaborate with various teams to ensure identified security improvements are progressed. Continuous Improvement: •Continuously evaluate People, Processes and Technological controls to identify area for improvement.•Develop efficient and effective solutions with stakeholders. What we're looking for: •Proven experience in SOC, cyber security, compliance, and continual improvement.•Strong Microsoft Sentinel skills•Exposure to various industries and regulatory environments is beneficial.•Ability to perform security audits, including technical assessments and compliance checks.•Collaborate with cross-functional teams (IT, legal, compliance) to achieve security goals•Excellent interpersonal skills with ability to explain technical problems to non-technical stakeholders at all levels.•Strong written and oral communication skills•Active SC Clearance, or ability to obtain SC clearance Experience of following Cyber Security Frameworks: • NIST Cybersecurity Framework (CSF): Understand the five core functions of Identify, Protect, Detect, Respond, and Recover. Familiar with the framework's guidelines for managing and reducing cyber risks, in particular NIST 800.53.• ISO/IEC 27001: Comprehend the international standard for information security management systems (ISMS). Knowledge about risk assessment, controls, and continuous improvement.• CIS Controls : Be aware of the Centre for Internet Security's critical security controls. These provide a prioritized approach to enhance cyber security posture.• COBIT (Control Objectives for Information and Related Technologies ): Understand the framework for governance and management of enterprise IT. Preferred Qualification: •SANS Certification•CISSP, CISA, or CRISC About Capita Technology and Software Solutions (TSS) and CISO Capita Technology and Software Solutions (TSS) is a newly formed global shared service, responsible for delivering innovation and digital transformation for Capita's businesses and clients. We work collaboratively with Capita's divisions to shape the right digital technology solutions to help clients work differently, engage differently, sell differently and to be resilient to whatever next comes their way. Within Policy, Governance and CISO our key capabilities are to define, implement and maintain pan-Capita Cyber, Information Securit

Freelance

Freelance job
SOC Analyst - DV Cleared

LA International Computer Consultants Ltd
Published on

£600-650
Basingstoke, England, United Kingdom

Required : SOC AnalystLocation : Full time on site in BasingstokeDuration : 6 Months +Mandatory Skills:* Experience in managing/leading teams* Knowledge and experience of Cyber Security and using a SIEM tool e.g LogRhythm.* Vulnerability management and assessment * knowledge and experience of Operating Systems. * Knowledge and experience of ITIL v3 onwards* Knowledge and experience of Networking principles such as DNS and DHCP* Proactively monitor various sources for the latest information on vulnerabilities and threats. OSINT* Identification of incidents and subsequent analysis and investigation to determine their severity and the response required. Ensuring that incidents are correctly reported and documented in accordance with government policy and procedures.* Be prepared to provide a Technical Escalation Point during security incidents, establishing the extent of an attack, the business impacts, and advising on how best to contain the incident along with advice on systems hardening and mitigation measures to prevent a re-occurrence.* As required support the customer with the creation of reports and dashboards, manage alarms and usage cases* Maintain a keen understanding of evolving threats and vulnerabilities to ensure the security of the client network.* As required update Protective Monitoring/SOC documentation, processes and procedures and ensure currency.* Provide daily team leadership, management, job training and mentorship to develop junior members of the SOC teamDue to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 18 weeks. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds.Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

10 results

Contracts

Freelance Permanent

Location

Remote type

Hybrid Remote On-site

Rate minimum.

£150 £1300 and more

Salary minimum

£20k £250k

Experience

< 2 years experience 2 to 5 years experience 5 to 10 years experience > 10 years experience

Date posted

Connecting Tech-Talent

Free-Work, THE platform for all IT professionals.

Free-workers
Resources
About
Recruiters area
2024 © Free-Work / AGSI SAS
Follow us