Cyber Security Analyst/Engineer

Our client provides essential engineering services to maintain and renew critical infrastructure networks. Their multidisciplinary expertise is delivered through independently branded UK subsidiary businesses that support the day-to-day running of these networks. Each subsidiary operates with autonomy, enabling them to remain competitive and effective in their individual markets, while adhering to group-wide standards

As the group continues to grow and governance requirements increase, we are working with them to expand the central IT function to strengthen and add value to the existing team.

Responsibilities:

With day-to-day reporting to the GISO, you will have a combination of BAU security incident monitoring and response skills combined with security project experience and be able to engage with business users and a wide range of technical analysts in all relevant IT operational departments.  Excellent organisation and communication skills are required.

• Monitor and analyse network traffic, systems, and logs for signs of unusual or malicious activity.
• Conduct regular security assessments and audits to identify vulnerabilities, risks, and potential areas for improvement.
• Implement and maintain security tools and protocols, including firewalls, intrusion detection systems, and endpoint protection.
• Investigate security incidents, respond to potential breaches, and document all relevant findings and actions.
• Undertake security focussed projects to improve security across Network, Windows Desktop/Server Environments, wider Wintel environment inc virtualised server environments VMWare, intune, O365/Azure in conjunction with the relevant teams.
• Review vulnerabilities in the environment and suggest, plan and implement remediation.

Requirements:

• Technically minded security engineer
• Proficiency with security tools such as SIEM, PAM, web filtering, email filtering (Mimecast), IDS/IPS, antivirus, endpoint protection, MS Sentinel, vulnerability assessment tools ie Tenable.
• Experience in SentinelOne MDR
• Experience in working with a third party to a managed SOC provision
• An understanding of the importance of Identity Threat Management
• Strong analytical skills with a keen eye for detecting security threats and anomalies.
• Excellent problem-solving skills, with the ability to act quickly and effectively under pressure.
• Relevant certifications (e.g., CompTIA Security+, CISSP, CISM) are a plus.

Why Apply?

This is an opportunity for the right candidate to work in a complex environment with many moving parts, helping the Group to stay secure.  To own projects and develop skillsets. Whilist this role can be remote, travel will be required to sites which are mostly in the north of the UK.