IT Security Analyst

Please note this role does require the postholder to be based from our office in Derbyshire circa 3 days per week. Reporting to the IT Security Manager the postholder will monitor, analyse, and respond to security threats, ensuring the integrity and protection of the organisation's systems, data and operations.

• Monitor security events, analyse alerts, and determine response urgency.
• Mentor colleague within the security IT team and support their technical development.
• Contain, investigate, and mitigate security incidents.
• Oversee the security review process from start to finish.
• Detect and respond to phishing and social engineering attacks.
• Review quarantined corporate emails and analyse anomalies.
• Test, evaluate, and implement appropriate security solutions based on need.
• Support policy development, compliance enforcement, and security training.
• Define security requirements and deploy protective controls.
• Manage penetration testing and vulnerability assessments.
• Automate security processes and optimise protective measures.
• Manage security-related tickets and user communications.
• Assist with internal and external security audits to ensure compliance. 
• Provide technical security guidance to colleagues and IT teams.
• Track emerging threats and recommend security improvements.

• Analytical and problem-solving skills to identify and assess risks, threats, patterns, and trends.
• Demonstrable understanding of Windows, Microsoft 365 and Linux technologies.
• Attention to detail and an ability to work under pressure, particularly when dealing with active threats.
• The ability to multi-task and prioritise yours and colleagues workload within the IT security team.
• Strong written and verbal communication skills.
• Naturally be a dependable, reliable and professional character.
• Willingness to learn new skills and progress your career.

Technical Stack Experience

• Defender for Endpoint
• Defender for Office
• Defender for Identity
• Defender for IoT
• Intune
• Exchange (mainly cloud)
• Mimecast
• KnowBe4
• Active Directory/Entra Active Directory
• Group Policy

Highly desired:

• Keen interest in cyber security and understanding of key concepts and protocols.
• Understanding and exposure of the Cyber Essentials, ISO27001, and NIST frameworks.
• Previous experience within a SOC environment.
• Experience with Microsoft Defender XDR.
• In-depth hands on experience with Microsoft Sentinel SIEM.
• Certifications such as CompTIA Security+, ITIL and SSCP or equivalent.

• 25 days holiday plus bank holidays 
• Contributory Pension Scheme 
• Free on-site Parking 
• Holiday Buy Scheme 
• Volunteer Scheme 
• Share Save Scheme 
• Life Assurance 
• Enhanced Maternity, Adoption & Paternity Scheme 
• Health & Wellbeing Initiatives 
• Discount Scheme