Cyber Security Analyst

Greetings

We are Hiring Cyber Security Analyst in London/Norwich

London/Norwich

Hybrid Model

This demand has 4 requirements open

Purpose of Role

Our CISO function comprises of Cyber Defence Centre, Business Resilience, Privacy & Information Management, Strategy & Operating Office and Security Design, Innovation & Enablement.

The Security Engineer is a member of the Security Engineering team within the Cyber Defence Centre, and reports to the Security Engineering Manager. The purpose of this role is to provide security related technical and functional support for DLG security tooling and services, overseeing the delivery of security services to a high standard, and maintaining the health and effectiveness of controls to ensure we are adequately protected against existing and horizon threats identified by our Threat Intelligence and Operational Security teams.

Key Accountabilities/Responsibilities

• Maintaining the overall security integrity of DLG’s environment.

• Improving secure, continuous integration pipelines whilst working closely with our developers to advise on standard methodology.

• Supporting with the delivery of projects and change programmes ensuring that they align to the security architecture framework and that solutions meet relevant information security fundamentals.

• Maintaining a technical assurance approach that provides confidence to colleagues whilst ensuring that the value of proposed changes will be achieved.

• Taking responsibility and acting as a technical SME for securing DLG’s environments in line with compliance commitments.

• Ensuring security technical platforms are configured to optimise the overall security offered to DLG.

• Improving SIEM coverage of DLG’s overall environment.

• Making sure that all changes to the production environment have been reviewed and approved.

• Communicating and building relationships at various levels with an ability to discuss deep technical concepts with counterparts from our suppliers but also communicating at a higher level with project managers and programme leads to convey the processes and timings of programme and project delivery.

• Developing technical security standards and ensuring all changes are in line with the network security architecture, ISMR’s and adhere to PCI/DSS standards and any other regulatory requirements.