Senior Security Analyst

We are looking for an enthusiastic and detail-oriented Senior Security Analyst to join our growing information security and data protection team.

The Role:

The Senior Security Analyst is an experienced security professional responsible for performing advanced security and data protection tasks with a high degree of autonomy. Responsibilities include conducting comprehensive security assessments, overseeing vulnerability management, developing security policies, reviewing configurations, and providing expert guidance. The role involves minimal supervision and mentoring junior analysts.

This is a full-time position with mentoring responsibilities. Occasional after-hours work may be required for incident response or urgent security tasks.

Successful candidates will be enrolled in a fully funded Level 6 Cyber Security Risk Analyst apprenticeship with mentoring support. Upon completion, progression to a Level 7 MSc in Cyber Security is anticipated.

Responsibilities:

1. KPI Reporting & Metrics Analysis: Lead KPI tracking, analyze data for trends and risks, prepare reports, and advise management.
2. Lead Security Assessments: Perform risk and vulnerability assessments, manage findings, conduct audits, and collaborate on identifying weaknesses.
3. Policy & Standards Development: Develop and update security policies, review and improve existing policies, support privacy policies, and assist with data mapping and DPIAs.
4. Configuration Reviews: Review system, network, and application configurations to ensure standards are met.
5. Vulnerability Management: Oversee vulnerability identification and remediation, coordinate scanning and patching, and address critical vulnerabilities.
6. Incident Response: Support incident management, helping coordinate responses to security incidents.
7. Application Security: Collaborate with development teams on secure coding and assess the security of software products.
8. Collaboration & Communication: Provide guidance, participate in training, mentor junior staff, and communicate effectively with stakeholders.

Minimum Qualifications:

• Level 4 qualification in Cybersecurity, IT, or related field, or equivalent experience.
• 2-4 years of experience in information security.
• Optional certifications: CompTIA Security+, Cisco CCNA, CISMP, etc.
• Experience with security assessments, vulnerability management, risk mitigation, and incident response.
• Technical expertise in security tools and frameworks (e.g., NIST, ISO 27001).
• Ability to work independently and manage multiple tasks.
• Strong problem-solving and analytical skills.
• Excellent communication skills for technical and non-technical audiences.

Benefits:

• Competitive salary and perks including holiday entitlement, wellbeing days, pension, medical plan, flexible working, discounts, employee assistance, cycle scheme, awards, charity activities, referral bonuses, wellbeing programs, and family leave support.

We Value Diversity:

We are committed to diversity and equal opportunity, welcoming applicants regardless of age, race, gender, religion, sexual orientation, disability, or nationality. We promote inclusion and support community groups within our organization.