Cyber and Information Security Analyst

This job is with FSCS, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly.The RoleThis is a new role within the Information Security team reporting into the SOC Manager. A main purpose of the Cyber and Information Security Analyst is to support the protection of our organisations IT infrastructure, networks, and data from cyber threats. Within this role, you will assess security risks, implement proactive measures, monitor systems for security breaches and respond to cyber incidents.Key PrioritiesSecurity Monitoring & Incident ResponseMonitor our security tools for any potential security threats (CTI).Respond and investigate incidents escalated by the SOC.Collaborate with IT teams to remediate vulnerabilities and incidents.Risk Assessment & ComplianceConduct regular security assessments to ensure security controls are enforced and working as expected.Ensure compliance with industry best standards and regulations e.g., ISO 27001, GDPR.Assist in security audits and compliance reporting.Security Architecture and ImplementationProvide assistance in reviewing and implementing security solutions such as firewalls, endpoint protection, and identity and access management.Assist in identifying and implementing secure configurations for network and systems (security hardening).Assist in developing secure software and cloud security best practices.Policy Development and AwarenessDevelop and update cyber and information security policies, standards, procedures, and best practices.Conduct and create security awareness training or articles for employees.Promote a strong cybersecurity culture within the organisation.Knowledge, skills and experienceExperience using a range of security technologies including firewalls, web proxies, secure email gateways and DLP solutions.Strong communications skills to effectively collaborate with cross-functional teams and communicate complex issues to non-technical stakeholders.Experience of one of more EDR solutions such as Microsoft Defender or SentinelOne (desirable)A good understanding of attacker tactics, techniques and procedures including experience of the Mitre ATT&CK framework.Experience of Vulnerability Management and Vulnerability scanning tools such as Tenable, Rapid7 or Qualys.Experience of one or more SIEM solutions, including Azure Sentinel.DesirableCybersecurity relevant certification from CompTia, SANS, GIAC or ISC2.Microsoft Certified Security Operations Analyst Associate or similar qualification.Working at the FSCSAt FSCS we are purpose driven and committed to delivering an exceptional service and results for our customers.We have invested greatly in a flexible people offering that we're proud of, that our employees love and that supports and promotes diversity, inclusion, and overall wellbeing. Key benefits include:Employer pension contributions from 9%+ dependant on your contributions and length of serviceLife assurance, income and critical illness protectionPrivate medical and dental insuranceEAP and Virtual GP26 days annual leave + bank holidays and the option to sell 5 or buy up to 9 additional days per annum to suit your lifestyleEnhanced Maternity, Paternity and Adoption leave - 6 months full payAdditional discounts and options to earn rewards to spend at your choice of retailerTo ApplyUse the Apply Now button to apply with your CV.We are happy to consider any reasonable adjustments that candidates may need during the recruitment process, and you will be asked whether you require any during your application. If there are additional options you'd like to request, please contact . We also offer reasonable adjustments on the job.#LI-DNI