Cyber-Security Analyst/ Technical Business Analyst, Penetration Tester, Jobs via eFinancialCareers

Cyber-Security Analyst/ Technical Business Analyst

Penetration Tester London
Jobs via eFinancialCareers

2 years before

Expire date 31.12.2023

Category Protect and Defend

Specialty area Senior Security Consultant

Job Description

About the job
This role is hybrid working. The contract is until the 31/12/2023.

Must have skills:

Data analysis/manipulation skills in Excel
Vulnerability management - CVE, CVSS core, Risk Rating etc
Stakeholder management
Windows, Linux, Unix system experience
ITSM, Incident management experience
Scanning experience

Beneficial skills:

Tenable experience
Experience working in a large complex organisation
Remediation experience

If you have the necessary skill set/experience, please apply!

This role is advertised by Hays Talent Solutions.

Quick response

Required Knowledge

K0002 Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).
K0004 Knowledge of cybersecurity and privacy principles.
K0005 Knowledge of cyber threats an`d vulnerabilities.
K0013 Knowledge of cyber defense and vulnerability assessment tools and their capabilities.
K0040 Knowledge of vulnerability information dissemination sources (e.g., alerts, advisories, errata, and bulletins).
K0042 Knowledge of incident response and handling methodologies.
K0070 Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code).
K0192 Knowledge of Windows/Unix ports and services.
K0290 Knowledge of systems security testing and evaluation methods.
K0297 Knowledge of countermeasure design for identified security risks.
K0339 Knowledge of how to use network analysis tools to identify vulnerabilities.

Required Skills

S0036 Skill in evaluating the adequacy of security designs.
S0054 Skill in using incident handling methodologies.
S0063 Skill in collecting data from a variety of cyber defense resources.
S0078 Skill in recognizing and categorizing types of vulnerabilities and associated attacks.
S0167 Skill in recognizing vulnerabilities in security systems. (e.g., vulnerability and compliance scanning).

Required Abilities

A0015 Ability to conduct vulnerability scans and recognize vulnerabilities in security systems.
A0159 Ability to interpret the information collected by network tools (e.g. Nslookup, Ping, and Traceroute).