Cyber Security Analyst
  • United Kingdom Nottingham
  • ClickJobs.io
1 year before
31.01.2024
Protect and Defend
Incident Response
Job Description

Cyber Security Analyst Nottingham office. Expected to be on site 1 set day a week, remote working (WFH) available for the other days with ad-hoc exceptions. Salary: Up to £47,000 DOE. Permanent. 15% bonus. 12% pension. 27 days AL + Bank Holiday. Lithium3 Technology Recruitment are exclusively engaged with a unique Nottingham based client to recruit them a Cyber Security Analyst. As a member of the Cyber Security team, you will ensure that the confidentiality, availability and integrity of the client’s information and systems is protected. Reporting to the Cyber Security Manager, this is a new appointment arising from an ongoing cyber security improvement programme. The successful candidate will play a pivotal role in shaping the future of cyber operations. The role will involve hands on, practical application of cyber operations. The Cyber Analyst will configure, monitor, respond and escalate security events and incidents as per response plans. This role will work closely with colleagues in IT, both internal and third party, as well as those in Data Protection; however, they will also need to engage effectively across the business to ensure a consistent approach to cyber security. We are flexible and would be keen to hear from candidates who have a range of qualifications and backgrounds from a graduate with Cyber training to an established Cyber Security Analyst looking for an exciting sideways move. Our client offers a supportive and collaborative environment, where the successful candidate will be given the opportunity to develop their specialist skillset. They will offer and fund formal training. Responsibilities Coordinate triage activity across a number of platforms (inc. AV, user reporting, Microsoft tooling) to ensure appropriate and effective response to security events. Design, build, implement, and refine Cyber operating procedures. Support Incident Management during active incidents or rehearsals. Develop and maintain accurate incident (inc. event and observation) logs to ensure there exists an adequate audit trail on response activity. Work closely with Data Protection colleagues to align breach and incident management into Cyber Incident Response Plans. Lead on threat hunting and security analytics. Shape the development of policy, process and training / awareness programmes, with SME knowledge of known cyber threats. Support the analysis and implementation of new technologies and processes to reduce cyber risk. Provide support and guidance in the configuration of security systems and applications. Contribute and present to various stakeholders about emerging threats to upskill and raise awareness across business units. What skills, qualifications and qualities do I need to be successful? This role will suit you if you are/have: Demonstrable experience of working in technical security role(s). Analytical mindset and ability to approach complex problems in a methodical manner. Attention to detail in order to spot trends in data. Strong understanding of cyber threats and associated methodologies and frameworks such as the Mitre ATT&CK framework. Good understanding of networking fundamentals, and security concepts. Excellent communication skills. The ability to work with technical, and senior members of staff, with professionalism, in a concise manner. Exposure using and/or configuring firewalls, endpoint protection, SIEMs, Microsoft 365 Security & Compliance features. Experience within Scripting languages such as PowerShell, desirable but not required. Demonstrable enthusiasm for security. Ability to prioritise and manage own work without supervision. Qualifications Applicants are encouraged to demonstrate experience in place of, or to supplement the points below. Therefore, they are desirable, but not essential. Any technical related certifications such as Security +, Network+ that demonstrate good foundational knowledge of core technical concepts. Demonstrable contribution to security focussed communities, or participation in security focussed events, such as CTFs, forums. A-Levels, Diploma, or Degree in a technology related field. CISMP, OSCP, GIAC, or other related industry certifications. Lithium3 Technology Recruitment Limited is an equal opportunities employer that acts as an employment agency for permanent recruitment and an employment business for the supply of specialist contractors. By applying for this role your details will be submitted to Lithium3. Our Candidate Privacy Information Statement is on our website www.lithium3.uk

Quick response
Required Knowledge
  • K0001   Knowledge of computer networking concepts and protocols, and network security methodologies.
  • K0041   Knowledge of incident categories, incident responses, and timelines for responses.
  • K0042   Knowledge of incident response and handling methodologies.
  • K0058   Knowledge of network traffic analysis methods.
  • K0177   Knowledge of cyber attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks).
  • K0221   Knowledge of OSI model and underlying network protocols (e.g., TCP/IP).
  • K0230   Knowledge of cloud service models and how those models can limit incident response.
  • K0332   Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.
  • K0565   Knowledge of the common networking and routing protocols (e.g. TCP/IP), services (e.g., web, mail, DNS), and how they interact to provide network communications.
Required Skills
  • S0077   Skill in securing network communications.
  • S0173   Skill in using security event correlation tools.
Required Abilities
  • A0128  Ability to apply techniques for detecting host and network-based intrusions using intrusion detection technologies.