Information Security Analyst

My client is looking for 2x Information Security Analysts to join their team - 1 at mid-level, 1 at a more senior level. Key Responsibilities Security Investigations: Lead and manage security investigations to completion. MSSP/SIEM Management: Oversee Managed Security Service Providers (MSSP) and Security Information and Event Management (SIEM) systems, including use case and rule base development, and alert investigations. Protective Monitoring: Serve as a key stakeholder in enhancing our protective monitoring posture and refining documented security procedures. Audit Support: Assist with client audits, ISO27001 audits, and third-party audits to support Information Security Assurance. Client Assurance & Compliance: Support information security client assurance and compliance activities. Incident Response Exercises: Participate in security incident desktop exercises to test and improve our information security response approach. Threat and Vulnerability Management: Collaborate with the Threat and Vulnerability team on honeypot and lure techniques, and manage related alerts. Security Initiatives: Lead security initiatives and manage related projects. Training: Train staff and apprentices on Protective Monitoring. Operational Support: Address InfoSec business-as-usual requests and incident queues as required. Alert Investigation: Investigate security system alerts across various platforms, including Cloud, Brand Surveillance, and MSSP alerts. Networking: Build strong working relationships within IT and across the firm. Security Awareness: Contribute to internal security awareness campaigns and represent the firm at IT fairs. Technical Leadership: Provide technical leadership on designated Infosec projects, including business-funded projects, service improvements, and system enhancements. Subject Matter Expertise: Offer protective monitoring expertise and contribute to the creation and improvement of incident response playbooks and standards documents. On-call Rotation: Participate in the team's on-call rotation as required. Required Qualifications Experience: Demonstrated experience in information security roles, showcasing relevant security skills. Technical Knowledge: Strong understanding of general security technologies, Microsoft Windows operating systems, and networking technologies. Cloud and Security Technologies: Knowledge of Cloud, DLP, Anti-virus, and EDR technologies, and practical experience with SIEM technology and security monitoring. Enthusiasm for Technology: Passion for technology and the ability to promote information security within the firm using business-friendly language. Security Technology Expertise: In-depth understanding of security technologies such as EDR, MSSP, SIEM, Log Management, Cloud Posture Management, Encryption, Access Control, OS Security, IDS, DLP, Mobile Security, Firewalls, Vulnerability Analysis, Network Security, and TCP/IP. Methodical Approach: Attention to detail, high accuracy, and a methodical approach to work. Risk Assessment: Ability to consider the wider information security implications of events and perform risk assessments. Legal/Regulatory Knowledge: Familiarity with key legal and regulatory requirements such as DPA, FOI, GDPR, and CMA. Self-Motivation: Highly self-motivated and capable of working independently with minimal supervision. Balanced Skill Set: Combination of common sense and technical ability, capable of making sound decisions under pressure. Coordination and Prioritization: Ability to plan, coordinate, and effectively prioritize information from various sources. Communication Skills: Excellent verbal and written communication and presentation skills. Adaptability: Flexibility and willingness to adapt to new working practices as required by changes in IT systems and security landscapes. For further information, please contact Alice Armstrong at Hayward Hawk.