Cyber Security Analyst

About Rhymetec

Rhymetec was founded in New York City in 2015, growing steadily in the areas of compliance, cybersecurity, and data privacy. Our mission is to ensure our clients are compliant faster, so they can focus on their core business and less on the complexities of building effective and compliant infosec programs.

Cyber Security Analyst

Remote (United Kingdom)

Full-time, Permanent

We are seeking a Cyber Security Analyst (CSA) to join our growing team in the UK! The CSA will support the development and implementation of solutions that help Rhymetec's clients achieve, manage, and measure security metrics and compliance requirements. The role will work closely with their Security Program Manager to help design and deliver security and compliance objectives and have the ability to drive foundational changes in internal cloud platforms to enhance security posture. The ideal candidate will have a team-first mentality, fit within Rhymetec's core values and culture, and be responsive to both customers and team members. They should be detail-oriented and capable of working autonomously to complete tasks on time and with high quality.

1. Prepare agendas and supporting materials for client meetings.
2. Conduct regular meetings with clients.
3. Configure performance monitoring alarms in AWS, Azure, GCP, Datadog, and other cloud infrastructures.
4. Configure security alarms and intrusion detection systems in AWS, GCP, Azure.
5. Set up supporting security applications.
6. Set up mobile device management applications such as Jamf, Jumpcloud, Microsoft Endpoint Manager, Hexnode, etc.
7. Configure and maintain compliance monitoring platforms.
8. Conduct internal audits, risk assessments, and generate reports.
9. Conduct incident response tabletop exercises with clients.
10. Conduct business continuity and disaster recovery tabletop exercises with clients.
11. Support clients in mapping frameworks/controls such as SOC 2 Type 2, ISO 27001, GDPR, and DORA into actionable items.
12. Conduct employee access reviews, SaaS vendor security assessments, and gap assessments.
13. Triage bug/vulnerability reports from security researchers.
14. Complete security questionnaires on behalf of clients.
15. Draft supporting documents for clients’ information security management systems and policies.
16. Gather and maintain evidence of compliance for various frameworks.
17. Lead engagements with auditors on behalf of clients.
18. Communicate tasks to clients’ employees and educate them on security best practices.

1. Knowledge of compliance and regulatory frameworks (PCI, ISO/IEC, SOC 2, DORA, GDPR).
2. Strong logical security skills, with experience in cloud security.
3. Understanding of cloud environments (AWS, GCP, Azure) and integrating security controls through DevOps and IaaS techniques.
4. Experience in customer service and developing professional relationships with clients.

1. Bachelor's degree or equivalent experience in technology or cybersecurity.
2. At least 2 years of work experience in technology or cybersecurity.
3. Ability to adapt to changing work demands.
4. Willingness to travel up to 2 weeks per year.

• Company-funded private medical insurance.
• Dental and vision benefits.
• Generous annual leave.
• Workplace pension.
• Company-paid life insurance.
• Wellbeing support, including an annual subscription to TalkSpace.

Rhymetec is committed to diversity and is an equal opportunity employer. All qualified applicants will be considered regardless of race, religion, gender, sexual orientation, or other protected characteristics.