International Logistics Group
East Grinstead, Sussex
IT Security & Infrastructure Manager Location: East Grinstead - Flexible Hours: 40 hours per week, working 9am 6pm Monday Friday Salary: £60,000 - £75,000 per annum, depending on experience About us We re an award-winning, market-leading 3PL specialising in high-quality order fulfilment and delivery services. ILG customers are premium brands, many in the beauty, fashion and wellbeing sectors. Our mission is to help them succeed. ILG is a people business - we invest in training and development, recognising and rewarding our people s achievements and creating opportunities for them to progress within our business. So, if you want to develop an exciting career, learn from a friendly team and realise your full potential in a fast-growing company, this is the role for you. The role You will be reporting to the IT Director and will be responsible for driving a culture of IT Security best practice within ILG as a subject matter expert, ensuring our systems, processes and controls meet agreed standards. You will also have responsibility to ensure ILG s core IT infrastructure and network is suitably managed, scaled and secured, to meet the requirements of the business. What we are looking for - Previous practical experience working as an IT Manager, IT Security Analyst, Infrastructure/Network engineer, Systems Analyst, or equivalent role. - Familiar with common cyber security attack methods (e.g. Denial of service, phishing, ransomware, and hacking), and knowledge of how to mitigate risk. - Bachelor s degree in computer science, cyber security, or similar field (desirable). - Relevant professional qualifications, e.g. SSCP, CISSP, CISM (desirable). - Knowledge of IT Compliance standard, ISO27001, Cyber Essentials or similar. - Microsoft Azure certified (Azure Administrator Associate / Azure Solutions Architect / Azure Security Engineer) or related qualifications (desirable). - Technical implementation and/or management experience with Azure infrastructure services, Azure Defender and Microsoft Entra ID. - Good practical knowledge of data classification, data confidentiality and applicable laws including GDPR. - IT and Network infrastructure design experience, e.g new site implementations and expansions. - Previous experience writing IT and/or InfoSec policies and procedures. - People management and leadership experience. - Proven ability to work in a high pressure, deadline driven environment. - Excellent communication skills. - Excellent analytical, organizational, and decision-making skills. - ITIL Foundation qualified (desirable). - Budget management skills (desirable). - IT Project management skills. - The role requires you to be able to travel to ILG sites as needed in support of business needs, therefore a driving licence and car is essential. Benefits - Flexible working location, this role can either be office based, hybrid or home based, there will be travel to ILG sites when required - Discretionary company bonus scheme - Pension, Life Assurance, Healthshield Cash Plan and Discount Perks - 22 days holiday (plus Bank Holidays), with the option to buy/sell holiday - Birthday leave - Dedicated rest areas with free tea and coffee plus monthly fruit baskets - Free electric car charging points, at certain sites - Dedicated platform for learning and development - Staff member of the month rewards - Monthly company social events and an annual awards ceremony - Employee assistance programme to promote mental health wellbeing - Cycle to work scheme Please be aware we will be considering applications as we receive them and arranging interviews accordingly. Depending on the volume of applications we receive, we may close this advert ahead of the advertised closing date. For more information about our company or employee benefits, please visit our website. So, if you d like to join us as an IT Security & Infrastructure Manager, please apply via the button shown. This vacancy is being advertised by Webrecruit. The services advertised by Webrecruit are those of an Employment Agency.
Apr 18, 2024
Full time
IT Security & Infrastructure Manager Location: East Grinstead - Flexible Hours: 40 hours per week, working 9am 6pm Monday Friday Salary: £60,000 - £75,000 per annum, depending on experience About us We re an award-winning, market-leading 3PL specialising in high-quality order fulfilment and delivery services. ILG customers are premium brands, many in the beauty, fashion and wellbeing sectors. Our mission is to help them succeed. ILG is a people business - we invest in training and development, recognising and rewarding our people s achievements and creating opportunities for them to progress within our business. So, if you want to develop an exciting career, learn from a friendly team and realise your full potential in a fast-growing company, this is the role for you. The role You will be reporting to the IT Director and will be responsible for driving a culture of IT Security best practice within ILG as a subject matter expert, ensuring our systems, processes and controls meet agreed standards. You will also have responsibility to ensure ILG s core IT infrastructure and network is suitably managed, scaled and secured, to meet the requirements of the business. What we are looking for - Previous practical experience working as an IT Manager, IT Security Analyst, Infrastructure/Network engineer, Systems Analyst, or equivalent role. - Familiar with common cyber security attack methods (e.g. Denial of service, phishing, ransomware, and hacking), and knowledge of how to mitigate risk. - Bachelor s degree in computer science, cyber security, or similar field (desirable). - Relevant professional qualifications, e.g. SSCP, CISSP, CISM (desirable). - Knowledge of IT Compliance standard, ISO27001, Cyber Essentials or similar. - Microsoft Azure certified (Azure Administrator Associate / Azure Solutions Architect / Azure Security Engineer) or related qualifications (desirable). - Technical implementation and/or management experience with Azure infrastructure services, Azure Defender and Microsoft Entra ID. - Good practical knowledge of data classification, data confidentiality and applicable laws including GDPR. - IT and Network infrastructure design experience, e.g new site implementations and expansions. - Previous experience writing IT and/or InfoSec policies and procedures. - People management and leadership experience. - Proven ability to work in a high pressure, deadline driven environment. - Excellent communication skills. - Excellent analytical, organizational, and decision-making skills. - ITIL Foundation qualified (desirable). - Budget management skills (desirable). - IT Project management skills. - The role requires you to be able to travel to ILG sites as needed in support of business needs, therefore a driving licence and car is essential. Benefits - Flexible working location, this role can either be office based, hybrid or home based, there will be travel to ILG sites when required - Discretionary company bonus scheme - Pension, Life Assurance, Healthshield Cash Plan and Discount Perks - 22 days holiday (plus Bank Holidays), with the option to buy/sell holiday - Birthday leave - Dedicated rest areas with free tea and coffee plus monthly fruit baskets - Free electric car charging points, at certain sites - Dedicated platform for learning and development - Staff member of the month rewards - Monthly company social events and an annual awards ceremony - Employee assistance programme to promote mental health wellbeing - Cycle to work scheme Please be aware we will be considering applications as we receive them and arranging interviews accordingly. Depending on the volume of applications we receive, we may close this advert ahead of the advertised closing date. For more information about our company or employee benefits, please visit our website. So, if you d like to join us as an IT Security & Infrastructure Manager, please apply via the button shown. This vacancy is being advertised by Webrecruit. The services advertised by Webrecruit are those of an Employment Agency.
Are you looking for a Security role within a dynamic, innovative financial technology organisation? If so, we are recruiting for a Cyber Operations Engineer to join our IT Department! Working alongside the Cyber Operations Lead you will help to design, develop, and mature the company's cybersecurity capability, including the selection, implementation, and management of security tools/technologies, focused on detection, prevention, and analysis of security threats. This role offers a great opportunity to help define and shape the security function within a collaborative IT department, ensuring the protection of customer assets. Responsibilities include: Work with technology and business teams to deliver security processes, technologies and controls, acting as the authority on security related queries. Define, design, implement, and maintain security solutions appropriate to the business' needs. Support the definition, execution and continuous improvement of key cybersecurity processes including vulnerability & patch management, security incident response, security monitoring, endpoint security, identity and access management, network security, and cryptography. Assist with developing and maintaining security policies, processes and incident response management plans and playbooks. Prepare and document standard operating procedures and protocols. Provide expertise on security requirements into core technology processes like asset management, change management, third-party management, technology development & acquisition, configuration management, etc. Contribute as a team member in projects and change initiatives aimed at increasing enterprise security capabilities e.g., identity and access management, log aggregation, etc. Required experience: Minimum of 3 years' experience in a Security/Cyber Engineer/Analyst, role focusing on designing and implementing security solutions and managing security infrastructure. Previous experience working within a financial services environment and a working understanding of relevant regulations. Experience and in-depth technical knowledge of deploying, maintaining, and configuring a wide range of security technologies within a large and complex environment (anti-malware/EDR, SIEM solutions, vulnerability scanners, patch management, CASB, DLP, penetration testing tools, etc.) Knowledge of TCP/IP and related network protocols: knowledge of standard network protocols like TCP, ARP, ICMP, DHCP, DNS, HTTP, SNMP, VPN etc., and accompanying protocol/packet analysis/manipulation tools. Understanding of key operating systems and network appliances and the ability to assess their security posture based on their configuration/deployment. Experience of working effectively with a variety of stakeholders from different technology and business teams. Strong verbal and written communication skills. Desirable experience: Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or Certified Information Security Manager (CISM). Strong knowledge of Operating System security and system hardening concepts such as CIS Benchmarks. Experience in working with information security frameworks and regulatory requirements including ISO27001, NIST, PCI DSS, GDPR, Cyber Essentials. Experience of general IT Audit processes and conducting risk assessments. You will be a proactive self - starter with strong communication skills and comfortable interacting with stakeholders at all levels. You will have the ability to tailor your approach and translate requirements to non-technical members of staff. We offer a competitive remuneration package, including company discretionary bonus, excellent pension contributions, an attractive staff share scheme, BUPA health insurance, buying and selling of annual leave and sponsorship of relevant professional qualifications. The role is based in our central London office, working a minimum of two days a week in the office and three days a week from home. About Us Transact is the leading independent investment wrap platform in the UK. Established in 2000, we have over £54.9 billion of funds under direction (as at Sept 2023) on behalf of over 7,600 advisers and 230,000 investor clients. Our service includes an online platform, owned and built by us, and dedicated regional adviser support to help bring clients' assets and investments together in a smarter, more tax efficient way. We offer access to a wide range of tax wrappers (including ISAs, pensions and life insurance investment bonds) and funds which advisers use to build client investment portfolios. Portfolio valuations, purchases and sales are all supported via Transact Online which is available 24/7. Transact's parent company, IntegraFin Holdings plc, is listed on the London Stock Exchange and is a constituent of the FTSE 250 index. Equal Opportunities We provide a diverse and inclusive workplace and ensure that all of our staff respect and understand individual differences. We are an equal opportunities employer and positively encourage applications from suitably qualified and eligible candidates regardless of age, disability, gender reassignment, marital or civil partner status, pregnancy or maternity, race, religion or belief, sex or sexual orientation.
Apr 18, 2024
Full time
Are you looking for a Security role within a dynamic, innovative financial technology organisation? If so, we are recruiting for a Cyber Operations Engineer to join our IT Department! Working alongside the Cyber Operations Lead you will help to design, develop, and mature the company's cybersecurity capability, including the selection, implementation, and management of security tools/technologies, focused on detection, prevention, and analysis of security threats. This role offers a great opportunity to help define and shape the security function within a collaborative IT department, ensuring the protection of customer assets. Responsibilities include: Work with technology and business teams to deliver security processes, technologies and controls, acting as the authority on security related queries. Define, design, implement, and maintain security solutions appropriate to the business' needs. Support the definition, execution and continuous improvement of key cybersecurity processes including vulnerability & patch management, security incident response, security monitoring, endpoint security, identity and access management, network security, and cryptography. Assist with developing and maintaining security policies, processes and incident response management plans and playbooks. Prepare and document standard operating procedures and protocols. Provide expertise on security requirements into core technology processes like asset management, change management, third-party management, technology development & acquisition, configuration management, etc. Contribute as a team member in projects and change initiatives aimed at increasing enterprise security capabilities e.g., identity and access management, log aggregation, etc. Required experience: Minimum of 3 years' experience in a Security/Cyber Engineer/Analyst, role focusing on designing and implementing security solutions and managing security infrastructure. Previous experience working within a financial services environment and a working understanding of relevant regulations. Experience and in-depth technical knowledge of deploying, maintaining, and configuring a wide range of security technologies within a large and complex environment (anti-malware/EDR, SIEM solutions, vulnerability scanners, patch management, CASB, DLP, penetration testing tools, etc.) Knowledge of TCP/IP and related network protocols: knowledge of standard network protocols like TCP, ARP, ICMP, DHCP, DNS, HTTP, SNMP, VPN etc., and accompanying protocol/packet analysis/manipulation tools. Understanding of key operating systems and network appliances and the ability to assess their security posture based on their configuration/deployment. Experience of working effectively with a variety of stakeholders from different technology and business teams. Strong verbal and written communication skills. Desirable experience: Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or Certified Information Security Manager (CISM). Strong knowledge of Operating System security and system hardening concepts such as CIS Benchmarks. Experience in working with information security frameworks and regulatory requirements including ISO27001, NIST, PCI DSS, GDPR, Cyber Essentials. Experience of general IT Audit processes and conducting risk assessments. You will be a proactive self - starter with strong communication skills and comfortable interacting with stakeholders at all levels. You will have the ability to tailor your approach and translate requirements to non-technical members of staff. We offer a competitive remuneration package, including company discretionary bonus, excellent pension contributions, an attractive staff share scheme, BUPA health insurance, buying and selling of annual leave and sponsorship of relevant professional qualifications. The role is based in our central London office, working a minimum of two days a week in the office and three days a week from home. About Us Transact is the leading independent investment wrap platform in the UK. Established in 2000, we have over £54.9 billion of funds under direction (as at Sept 2023) on behalf of over 7,600 advisers and 230,000 investor clients. Our service includes an online platform, owned and built by us, and dedicated regional adviser support to help bring clients' assets and investments together in a smarter, more tax efficient way. We offer access to a wide range of tax wrappers (including ISAs, pensions and life insurance investment bonds) and funds which advisers use to build client investment portfolios. Portfolio valuations, purchases and sales are all supported via Transact Online which is available 24/7. Transact's parent company, IntegraFin Holdings plc, is listed on the London Stock Exchange and is a constituent of the FTSE 250 index. Equal Opportunities We provide a diverse and inclusive workplace and ensure that all of our staff respect and understand individual differences. We are an equal opportunities employer and positively encourage applications from suitably qualified and eligible candidates regardless of age, disability, gender reassignment, marital or civil partner status, pregnancy or maternity, race, religion or belief, sex or sexual orientation.
Junior SOC Analyst - Hybrid - 3 days on site - Nottinghamshire Main Responsibilities: - Triage, analyse and investigate alerts, log data and network traffic using security tools to identify cyber-attacks / security incidents. This includes the investigation and root cause analysis of potential security incidents. - Proactively investigate potential security breaches by utilising threat intelligence and internal and external security systems and provide subject matter expertise for technical responses to confirmed cyber security incidents. - Create and maintain the clients target cyber security architecture. - Deliver subject matter expertise to key stakeholders to drive the implementation of security controls to meet the target architecture. - Accountable for vulnerability scanning, including the prioritisation of unpatched vulnerabilities and reporting against agreed KPIs and KRIs. - Support the annual penetration testing schedule by arranging penetration testing, including tracking, and communicating penetration testing results. - Perform supplementary testing of clients detection and response controls by procuring, installing, and running penetration testing tooling. - Participate in process improvement work to automate and improve critical cyber security processes such as monitoring, patching, and hardening. - Develop and maintain process documentation for security architecture, vulnerability management, cyber incident response, and playbooks. - Provide security representation across multiple geographies, business units and teams to achieve objectives, including engagement with the Information Security Enhancement Office. Skills, Knowledge and Experience - Has obtained one or more of the following qualifications: CEH, CRTSA, and OSCP. - Qualifications such as CISSP and CISM would be advantageous. - Problem solving skills, and the ability to come up with new solutions to existing challenges. - Strengths in key 'soft skill' areas such as relationship management, communication, and presentation of technical security information to a variety of audiences. - Technical skills to investigate potential breaches through existing tools, packet capture and log file analysis. - A logical mindset, the ability to identify proportionate, appropriate mitigations to identified security incidents, and to prioritise incidents based on risk. - Capable of working independently/without ongoing supervision on projects and day to day tasks. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
Apr 13, 2024
Full time
Junior SOC Analyst - Hybrid - 3 days on site - Nottinghamshire Main Responsibilities: - Triage, analyse and investigate alerts, log data and network traffic using security tools to identify cyber-attacks / security incidents. This includes the investigation and root cause analysis of potential security incidents. - Proactively investigate potential security breaches by utilising threat intelligence and internal and external security systems and provide subject matter expertise for technical responses to confirmed cyber security incidents. - Create and maintain the clients target cyber security architecture. - Deliver subject matter expertise to key stakeholders to drive the implementation of security controls to meet the target architecture. - Accountable for vulnerability scanning, including the prioritisation of unpatched vulnerabilities and reporting against agreed KPIs and KRIs. - Support the annual penetration testing schedule by arranging penetration testing, including tracking, and communicating penetration testing results. - Perform supplementary testing of clients detection and response controls by procuring, installing, and running penetration testing tooling. - Participate in process improvement work to automate and improve critical cyber security processes such as monitoring, patching, and hardening. - Develop and maintain process documentation for security architecture, vulnerability management, cyber incident response, and playbooks. - Provide security representation across multiple geographies, business units and teams to achieve objectives, including engagement with the Information Security Enhancement Office. Skills, Knowledge and Experience - Has obtained one or more of the following qualifications: CEH, CRTSA, and OSCP. - Qualifications such as CISSP and CISM would be advantageous. - Problem solving skills, and the ability to come up with new solutions to existing challenges. - Strengths in key 'soft skill' areas such as relationship management, communication, and presentation of technical security information to a variety of audiences. - Technical skills to investigate potential breaches through existing tools, packet capture and log file analysis. - A logical mindset, the ability to identify proportionate, appropriate mitigations to identified security incidents, and to prioritise incidents based on risk. - Capable of working independently/without ongoing supervision on projects and day to day tasks. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
Junior SOC Analyst - Hybrid - 3 days on site - Nottinghamshire Main Responsibilities: - Triage, analyse and investigate alerts, log data and network traffic using security tools to identify cyber-attacks/security incidents. This includes the investigation and root cause analysis of potential security incidents. - Proactively investigate potential security breaches by utilising threat intelligence and internal and external security systems and provide subject matter expertise for technical responses to confirmed cyber security incidents. - Create and maintain the clients target cyber security architecture. - Deliver subject matter expertise to key stakeholders to drive the implementation of security controls to meet the target architecture. - Accountable for vulnerability scanning, including the prioritisation of unpatched vulnerabilities and reporting against agreed KPIs and KRIs. - Support the annual penetration testing schedule by arranging penetration testing, including tracking, and communicating penetration testing results. - Perform supplementary testing of clients detection and response controls by procuring, installing, and running penetration testing tooling. - Participate in process improvement work to automate and improve critical cyber security processes such as monitoring, patching, and hardening. - Develop and maintain process documentation for security architecture, vulnerability management, cyber incident response, and playbooks. - Provide security representation across multiple geographies, business units and teams to achieve objectives, including engagement with the Information Security Enhancement Office. Skills, Knowledge and Experience - Has obtained one or more of the following qualifications: CEH, CRTSA, and OSCP. - Qualifications such as CISSP and CISM would be advantageous. - Problem solving skills, and the ability to come up with new solutions to existing challenges. - Strengths in key 'soft skill' areas such as relationship management, communication, and presentation of technical security information to a variety of audiences. - Technical skills to investigate potential breaches through existing tools, packet capture and log file analysis. - A logical mindset, the ability to identify proportionate, appropriate mitigations to identified security incidents, and to prioritise incidents based on risk. - Capable of working independently/without ongoing supervision on projects and day to day tasks. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
Apr 12, 2024
Full time
Junior SOC Analyst - Hybrid - 3 days on site - Nottinghamshire Main Responsibilities: - Triage, analyse and investigate alerts, log data and network traffic using security tools to identify cyber-attacks/security incidents. This includes the investigation and root cause analysis of potential security incidents. - Proactively investigate potential security breaches by utilising threat intelligence and internal and external security systems and provide subject matter expertise for technical responses to confirmed cyber security incidents. - Create and maintain the clients target cyber security architecture. - Deliver subject matter expertise to key stakeholders to drive the implementation of security controls to meet the target architecture. - Accountable for vulnerability scanning, including the prioritisation of unpatched vulnerabilities and reporting against agreed KPIs and KRIs. - Support the annual penetration testing schedule by arranging penetration testing, including tracking, and communicating penetration testing results. - Perform supplementary testing of clients detection and response controls by procuring, installing, and running penetration testing tooling. - Participate in process improvement work to automate and improve critical cyber security processes such as monitoring, patching, and hardening. - Develop and maintain process documentation for security architecture, vulnerability management, cyber incident response, and playbooks. - Provide security representation across multiple geographies, business units and teams to achieve objectives, including engagement with the Information Security Enhancement Office. Skills, Knowledge and Experience - Has obtained one or more of the following qualifications: CEH, CRTSA, and OSCP. - Qualifications such as CISSP and CISM would be advantageous. - Problem solving skills, and the ability to come up with new solutions to existing challenges. - Strengths in key 'soft skill' areas such as relationship management, communication, and presentation of technical security information to a variety of audiences. - Technical skills to investigate potential breaches through existing tools, packet capture and log file analysis. - A logical mindset, the ability to identify proportionate, appropriate mitigations to identified security incidents, and to prioritise incidents based on risk. - Capable of working independently/without ongoing supervision on projects and day to day tasks. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
Junior SOC Analyst - Hybrid - 3 days on site - Nottinghamshire Main Responsibilities: - Triage, analyse and investigate alerts, log data and network traffic using security tools to identify cyber-attacks / security incidents. This includes the investigation and root cause analysis of potential security incidents. - Proactively investigate potential security breaches by utilising threat intelligence and internal and external security systems and provide subject matter expertise for technical responses to confirmed cyber security incidents. - Create and maintain the clients target cyber security architecture. - Deliver subject matter expertise to key stakeholders to drive the implementation of security controls to meet the target architecture. - Accountable for vulnerability scanning, including the prioritisation of unpatched vulnerabilities and reporting against agreed KPIs and KRIs. - Support the annual penetration testing schedule by arranging penetration testing, including tracking, and communicating penetration testing results. - Perform supplementary testing of clients detection and response controls by procuring, installing, and running penetration testing tooling. - Participate in process improvement work to automate and improve critical cyber security processes such as monitoring, patching, and hardening. - Develop and maintain process documentation for security architecture, vulnerability management, cyber incident response, and playbooks. - Provide security representation across multiple geographies, business units and teams to achieve objectives, including engagement with the Information Security Enhancement Office. Skills, Knowledge and Experience - Has obtained one or more of the following qualifications: CEH, CRTSA, and OSCP. - Qualifications such as CISSP and CISM would be advantageous. - Problem solving skills, and the ability to come up with new solutions to existing challenges. - Strengths in key soft skill areas such as relationship management, communication, and presentation of technical security information to a variety of audiences. - Technical skills to investigate potential breaches through existing tools, packet capture and log file analysis. - A logical mindset, the ability to identify proportionate, appropriate mitigations to identified security incidents, and to prioritise incidents based on risk. - Capable of working independently/without ongoing supervision on projects and day to day tasks. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website (url removed)
Apr 12, 2024
Full time
Junior SOC Analyst - Hybrid - 3 days on site - Nottinghamshire Main Responsibilities: - Triage, analyse and investigate alerts, log data and network traffic using security tools to identify cyber-attacks / security incidents. This includes the investigation and root cause analysis of potential security incidents. - Proactively investigate potential security breaches by utilising threat intelligence and internal and external security systems and provide subject matter expertise for technical responses to confirmed cyber security incidents. - Create and maintain the clients target cyber security architecture. - Deliver subject matter expertise to key stakeholders to drive the implementation of security controls to meet the target architecture. - Accountable for vulnerability scanning, including the prioritisation of unpatched vulnerabilities and reporting against agreed KPIs and KRIs. - Support the annual penetration testing schedule by arranging penetration testing, including tracking, and communicating penetration testing results. - Perform supplementary testing of clients detection and response controls by procuring, installing, and running penetration testing tooling. - Participate in process improvement work to automate and improve critical cyber security processes such as monitoring, patching, and hardening. - Develop and maintain process documentation for security architecture, vulnerability management, cyber incident response, and playbooks. - Provide security representation across multiple geographies, business units and teams to achieve objectives, including engagement with the Information Security Enhancement Office. Skills, Knowledge and Experience - Has obtained one or more of the following qualifications: CEH, CRTSA, and OSCP. - Qualifications such as CISSP and CISM would be advantageous. - Problem solving skills, and the ability to come up with new solutions to existing challenges. - Strengths in key soft skill areas such as relationship management, communication, and presentation of technical security information to a variety of audiences. - Technical skills to investigate potential breaches through existing tools, packet capture and log file analysis. - A logical mindset, the ability to identify proportionate, appropriate mitigations to identified security incidents, and to prioritise incidents based on risk. - Capable of working independently/without ongoing supervision on projects and day to day tasks. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website (url removed)
Information Systems Security Analyst Huddersfield OR Newbury 37.5 hours per week- Hybrid role Saint-Gobain - Winners of 'TOP EMPLOYER UK AND GLOBAL' five years running! (2) Saint-Gobain is a global leader in the construction industry with a presence in over 67 countries worldwide. Our businesses designs, manufactures and distributes building materials and solutions globally. Due to demand in workload we are now looking for a Information Security Analyst to join our digital function. You can be based from either our Huddersfield or Newbury office. The purpose of the role is to ensure that new business applications are implemented and integrated securely with existing Saint-Gobain systems. You will carry out security assessments against new and existing applications, highlighting areas of non-compliance and working with the relevant teams to ensure that they are addressed applying industry best practice to application implementation. You will also establish a comprehensive understanding of the group security rules and associated service offerings. Build working relationships with Group Security and business security teams and remain up to date with changes to company policy. No one day is the same, this is a varied role doing duties such as complete annual application reviews to ensure continued compliance, liaise with third party software providers to complete SG Security Documentation and challenge responses to verify validity of submissions, schedule periodic Penetration tests and code reviews where relevant, highlight and challenge internally where industry best practices are not implemented and so much more. What you need to be successful In order to be successful in this role you will have proven experience of security applications, you will work very closely with the Data team so experience of working on data security projects (big data, data lakes etc) will be great. You will also have experience of working with e-Commerce platforms, documentation and/or process writing, an understanding of application architecture and experience of systems integration and transfer of data between systems. You will have the ability to adopt new technical skills, maintain own knowledge on new technologies, in addition to a good level of awareness across a broad range of IT systems and solutions. If you have any certifications/qualifications in security i.e. Cyber security, CISM OR CISSP that would be an advantage but not a must! What you will get in return Competitive Salary Exposure to working on different technologies A defined contribution pension scheme 25 days' holiday + bank holidays Flexible Holiday buy-sell scheme (allowing up to 3 days' holiday to be bought or sold). As an employee you are automatically covered by the Saint-Gobain Life Assurance Scheme. Staff discounts on high street and leisure activities and various other benefits. About Us Diversity : We are an inclusive employer and keen to hire talented people regardless of their background, abilities, ethnicity, religion, sexual orientation, gender, national origin, what football team you support, taste in music, fashion sense or anything else that makes you, you! We believe that working in a diverse business can be more enjoyable, teams can be more innovative, and make better decisions. We already employ many fantastic people from diverse backgrounds, but we still want to do more. So, we are on a mission to make Saint-Gobain inclusive and accessible to all, with role models for you to look up to and learn from, no matter who you are! At Saint-Gobain, our purpose is to 'Make the world a better home'. We are both manufacturers and distributors. Together with and for our customers, we design materials and solutions that have a positive impact on everyone's life and provide well-being, quality of life and performance, while caring for the planet. Our materials can be found everywhere in our living places and daily life: in buildings, transportation, infrastructure and in many industrial applications.
Sep 15, 2021
Full time
Information Systems Security Analyst Huddersfield OR Newbury 37.5 hours per week- Hybrid role Saint-Gobain - Winners of 'TOP EMPLOYER UK AND GLOBAL' five years running! (2) Saint-Gobain is a global leader in the construction industry with a presence in over 67 countries worldwide. Our businesses designs, manufactures and distributes building materials and solutions globally. Due to demand in workload we are now looking for a Information Security Analyst to join our digital function. You can be based from either our Huddersfield or Newbury office. The purpose of the role is to ensure that new business applications are implemented and integrated securely with existing Saint-Gobain systems. You will carry out security assessments against new and existing applications, highlighting areas of non-compliance and working with the relevant teams to ensure that they are addressed applying industry best practice to application implementation. You will also establish a comprehensive understanding of the group security rules and associated service offerings. Build working relationships with Group Security and business security teams and remain up to date with changes to company policy. No one day is the same, this is a varied role doing duties such as complete annual application reviews to ensure continued compliance, liaise with third party software providers to complete SG Security Documentation and challenge responses to verify validity of submissions, schedule periodic Penetration tests and code reviews where relevant, highlight and challenge internally where industry best practices are not implemented and so much more. What you need to be successful In order to be successful in this role you will have proven experience of security applications, you will work very closely with the Data team so experience of working on data security projects (big data, data lakes etc) will be great. You will also have experience of working with e-Commerce platforms, documentation and/or process writing, an understanding of application architecture and experience of systems integration and transfer of data between systems. You will have the ability to adopt new technical skills, maintain own knowledge on new technologies, in addition to a good level of awareness across a broad range of IT systems and solutions. If you have any certifications/qualifications in security i.e. Cyber security, CISM OR CISSP that would be an advantage but not a must! What you will get in return Competitive Salary Exposure to working on different technologies A defined contribution pension scheme 25 days' holiday + bank holidays Flexible Holiday buy-sell scheme (allowing up to 3 days' holiday to be bought or sold). As an employee you are automatically covered by the Saint-Gobain Life Assurance Scheme. Staff discounts on high street and leisure activities and various other benefits. About Us Diversity : We are an inclusive employer and keen to hire talented people regardless of their background, abilities, ethnicity, religion, sexual orientation, gender, national origin, what football team you support, taste in music, fashion sense or anything else that makes you, you! We believe that working in a diverse business can be more enjoyable, teams can be more innovative, and make better decisions. We already employ many fantastic people from diverse backgrounds, but we still want to do more. So, we are on a mission to make Saint-Gobain inclusive and accessible to all, with role models for you to look up to and learn from, no matter who you are! At Saint-Gobain, our purpose is to 'Make the world a better home'. We are both manufacturers and distributors. Together with and for our customers, we design materials and solutions that have a positive impact on everyone's life and provide well-being, quality of life and performance, while caring for the planet. Our materials can be found everywhere in our living places and daily life: in buildings, transportation, infrastructure and in many industrial applications.
Ordnance Survey has an opportunity available for a Security Analyst to join the team based in Southampton. You will join us on a full time, permanent basis and in return, you will receive a competitive salary of circa £40,000 per annum plus excellent benefits – this is a fantastic opportunity to develop a rewarding career.
About us:
Ordnance Survey (OS) is the national mapping agency for Great Britain, and a world-leading geospatial data and technology organisation. As a reliable partner to government, business and citizens across Britain and the world, OS helps its customers in virtually all sectors improve quality of life. OS expertise and data supports efficient public services and infrastructure, new technologies in transport and communications, national security and emergency services and exploring the great outdoors. By being at the forefront of geospatial capability for more than 225 years, we’ve built a reputation as the world’s most inspiring and trusted geospatial partner.
We offer fantastic benefits to our Security Analyst:
- Salary – circa £80,000
- Competitive pension
- 37 hour working week with flexible working hours
- 25 days annual leave - (30 days after five years) bank holidays and an extra 3 over Christmas
- Training & Development
- Paid volunteer day
- Bike to Work scheme (with secure bike storage and excellent changing facilities)
- Free onsite parking
- Subsidised on-site staff restaurant
- On-site nursery
- Very generous staff benefits including over 500 discounts from national stores
- Wide variety of sports and social clubs
- Support for your health and wellbeing from eye care vouchers to health checks
- Flexible working hours
About the role:
You’ll be part of an organisation with a clear strategy to become a digital business and with an ambitious transformation agenda to enable us to give our customers the services, products and experiences that they have come to expect. You will play a critical role in ensuring we can realise these goals.
Your role will include working with our IT department and members of the Information Security Team to identify, select and implement technical controls, tooling, policies and procedures, as well as working with operational and service management teams to assess the severity of security patches, hot-fixes and service packs.
You will be at the front-line of monitoring and responding to security-related events across the organisation, responding to and investigating alerts. Additionally, you will conduct cyber-security risk assessment activities, analysing the results and producing recommendations to address and mitigate risks. And you will support our Security Architect in the development of strategies, plans, policies and standards to enforce security requirements.
Skills and experience required to be our Security Analyst:
- Excellent knowledge and experience of IT and network security
- Excellent knowledge, understanding and experience of information risk concepts and principles
- Very good knowledge and experience of cloud platforms, such as Azure, AWS and Oracle, as well as Windows and Linux platforms
- Good knowledge of vulnerability Management tools, Security Incident Event Management processes and Security Operations Centre
- Knowledge of the Data Protection Act and General Data Protection Regulation (GDPR)
- Good familiarity with industry compliance and security standards such as Cyber Essentials, ISO 27001, cloud security, 10 Steps to Cyber Security
- Relevant qualifications, either Systems Security Certified Practitioner (SSCP), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) or BCS Information Security Management Principles
- A minimum of two years in a security role or five years’ experience working in a 2nd or 3rd level technical role.
Why not click ‘apply’ today? Don’t miss out on this opportunity to join our team as our Security Analyst.
Closing date: 8th November 2018
Oct 29, 2018
Ordnance Survey has an opportunity available for a Security Analyst to join the team based in Southampton. You will join us on a full time, permanent basis and in return, you will receive a competitive salary of circa £40,000 per annum plus excellent benefits – this is a fantastic opportunity to develop a rewarding career.
About us:
Ordnance Survey (OS) is the national mapping agency for Great Britain, and a world-leading geospatial data and technology organisation. As a reliable partner to government, business and citizens across Britain and the world, OS helps its customers in virtually all sectors improve quality of life. OS expertise and data supports efficient public services and infrastructure, new technologies in transport and communications, national security and emergency services and exploring the great outdoors. By being at the forefront of geospatial capability for more than 225 years, we’ve built a reputation as the world’s most inspiring and trusted geospatial partner.
We offer fantastic benefits to our Security Analyst:
- Salary – circa £80,000
- Competitive pension
- 37 hour working week with flexible working hours
- 25 days annual leave - (30 days after five years) bank holidays and an extra 3 over Christmas
- Training & Development
- Paid volunteer day
- Bike to Work scheme (with secure bike storage and excellent changing facilities)
- Free onsite parking
- Subsidised on-site staff restaurant
- On-site nursery
- Very generous staff benefits including over 500 discounts from national stores
- Wide variety of sports and social clubs
- Support for your health and wellbeing from eye care vouchers to health checks
- Flexible working hours
About the role:
You’ll be part of an organisation with a clear strategy to become a digital business and with an ambitious transformation agenda to enable us to give our customers the services, products and experiences that they have come to expect. You will play a critical role in ensuring we can realise these goals.
Your role will include working with our IT department and members of the Information Security Team to identify, select and implement technical controls, tooling, policies and procedures, as well as working with operational and service management teams to assess the severity of security patches, hot-fixes and service packs.
You will be at the front-line of monitoring and responding to security-related events across the organisation, responding to and investigating alerts. Additionally, you will conduct cyber-security risk assessment activities, analysing the results and producing recommendations to address and mitigate risks. And you will support our Security Architect in the development of strategies, plans, policies and standards to enforce security requirements.
Skills and experience required to be our Security Analyst:
- Excellent knowledge and experience of IT and network security
- Excellent knowledge, understanding and experience of information risk concepts and principles
- Very good knowledge and experience of cloud platforms, such as Azure, AWS and Oracle, as well as Windows and Linux platforms
- Good knowledge of vulnerability Management tools, Security Incident Event Management processes and Security Operations Centre
- Knowledge of the Data Protection Act and General Data Protection Regulation (GDPR)
- Good familiarity with industry compliance and security standards such as Cyber Essentials, ISO 27001, cloud security, 10 Steps to Cyber Security
- Relevant qualifications, either Systems Security Certified Practitioner (SSCP), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) or BCS Information Security Management Principles
- A minimum of two years in a security role or five years’ experience working in a 2nd or 3rd level technical role.
Why not click ‘apply’ today? Don’t miss out on this opportunity to join our team as our Security Analyst.
Closing date: 8th November 2018
Ordnance Survey has an opportunity available for a Security Analyst to join the team based in Southampton. You will join us on a full time, permanent basis and in return, you will receive a competitive salary of circa £40,000 per annum plus excellent benefits – this is a fantastic opportunity to develop a rewarding career.
About us:
Ordnance Survey (OS) is the national mapping agency for Great Britain, and a world-leading geospatial data and technology organisation. As a reliable partner to government, business and citizens across Britain and the world, OS helps its customers in virtually all sectors improve quality of life. OS expertise and data supports efficient public services and infrastructure, new technologies in transport and communications, national security and emergency services and exploring the great outdoors. By being at the forefront of geospatial capability for more than 225 years, we’ve built a reputation as the world’s most inspiring and trusted geospatial partner.
We offer fantastic benefits to our Security Analyst:
- Salary – circa £80,000
- Competitive pension
- 37 hour working week with flexible working hours
- 25 days annual leave - (30 days after five years) bank holidays and an extra 3 over Christmas
- Training & Development
- Paid volunteer day
- Bike to Work scheme (with secure bike storage and excellent changing facilities)
- Free onsite parking
- Subsidised on-site staff restaurant
- On-site nursery
- Very generous staff benefits including over 500 discounts from national stores
- Wide variety of sports and social clubs
- Support for your health and wellbeing from eye care vouchers to health checks
- Flexible working hours
About the role:
You’ll be part of an organisation with a clear strategy to become a digital business and with an ambitious transformation agenda to enable us to give our customers the services, products and experiences that they have come to expect. You will play a critical role in ensuring we can realise these goals.
Your role will include working with our IT department and members of the Information Security Team to identify, select and implement technical controls, tooling, policies and procedures, as well as working with operational and service management teams to assess the severity of security patches, hot-fixes and service packs.
You will be at the front-line of monitoring and responding to security-related events across the organisation, responding to and investigating alerts. Additionally, you will conduct cyber-security risk assessment activities, analysing the results and producing recommendations to address and mitigate risks. And you will support our Security Architect in the development of strategies, plans, policies and standards to enforce security requirements.
Skills and experience required to be our Security Analyst:
- Excellent knowledge and experience of IT and network security
- Excellent knowledge, understanding and experience of information risk concepts and principles
- Very good knowledge and experience of cloud platforms, such as Azure, AWS and Oracle, as well as Windows and Linux platforms
- Good knowledge of vulnerability Management tools, Security Incident Event Management processes and Security Operations Centre
- Knowledge of the Data Protection Act and General Data Protection Regulation (GDPR)
- Good familiarity with industry compliance and security standards such as Cyber Essentials, ISO 27001, cloud security, 10 Steps to Cyber Security
- Relevant qualifications, either Systems Security Certified Practitioner (SSCP), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) or BCS Information Security Management Principles
- A minimum of two years in a security role or five years’ experience working in a 2nd or 3rd level technical role.
Why not click ‘apply’ today? Don’t miss out on this opportunity to join our team as our Security Analyst.
Closing date: 8th November 2018
Oct 29, 2018
Ordnance Survey has an opportunity available for a Security Analyst to join the team based in Southampton. You will join us on a full time, permanent basis and in return, you will receive a competitive salary of circa £40,000 per annum plus excellent benefits – this is a fantastic opportunity to develop a rewarding career.
About us:
Ordnance Survey (OS) is the national mapping agency for Great Britain, and a world-leading geospatial data and technology organisation. As a reliable partner to government, business and citizens across Britain and the world, OS helps its customers in virtually all sectors improve quality of life. OS expertise and data supports efficient public services and infrastructure, new technologies in transport and communications, national security and emergency services and exploring the great outdoors. By being at the forefront of geospatial capability for more than 225 years, we’ve built a reputation as the world’s most inspiring and trusted geospatial partner.
We offer fantastic benefits to our Security Analyst:
- Salary – circa £80,000
- Competitive pension
- 37 hour working week with flexible working hours
- 25 days annual leave - (30 days after five years) bank holidays and an extra 3 over Christmas
- Training & Development
- Paid volunteer day
- Bike to Work scheme (with secure bike storage and excellent changing facilities)
- Free onsite parking
- Subsidised on-site staff restaurant
- On-site nursery
- Very generous staff benefits including over 500 discounts from national stores
- Wide variety of sports and social clubs
- Support for your health and wellbeing from eye care vouchers to health checks
- Flexible working hours
About the role:
You’ll be part of an organisation with a clear strategy to become a digital business and with an ambitious transformation agenda to enable us to give our customers the services, products and experiences that they have come to expect. You will play a critical role in ensuring we can realise these goals.
Your role will include working with our IT department and members of the Information Security Team to identify, select and implement technical controls, tooling, policies and procedures, as well as working with operational and service management teams to assess the severity of security patches, hot-fixes and service packs.
You will be at the front-line of monitoring and responding to security-related events across the organisation, responding to and investigating alerts. Additionally, you will conduct cyber-security risk assessment activities, analysing the results and producing recommendations to address and mitigate risks. And you will support our Security Architect in the development of strategies, plans, policies and standards to enforce security requirements.
Skills and experience required to be our Security Analyst:
- Excellent knowledge and experience of IT and network security
- Excellent knowledge, understanding and experience of information risk concepts and principles
- Very good knowledge and experience of cloud platforms, such as Azure, AWS and Oracle, as well as Windows and Linux platforms
- Good knowledge of vulnerability Management tools, Security Incident Event Management processes and Security Operations Centre
- Knowledge of the Data Protection Act and General Data Protection Regulation (GDPR)
- Good familiarity with industry compliance and security standards such as Cyber Essentials, ISO 27001, cloud security, 10 Steps to Cyber Security
- Relevant qualifications, either Systems Security Certified Practitioner (SSCP), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) or BCS Information Security Management Principles
- A minimum of two years in a security role or five years’ experience working in a 2nd or 3rd level technical role.
Why not click ‘apply’ today? Don’t miss out on this opportunity to join our team as our Security Analyst.
Closing date: 8th November 2018