Cybersecurity Analyst

Cybersecurity Analyst

Reports to

Executive Director, IT GRC and Cybersecurity

Department

IT

Hours

Full Time

Location

UK-London

About Autolus

Autolus is a biopharmaceutical company, advancing innovative therapies at both clinical and commercial stages of development, focused on next-generation, programmed T cell therapies for the treatment of cancer. Using a broad suite of proprietary and modular T cell programming technologies, the company is engineering precisely targeted, controlled, and highly active T cell therapies designed to better recognize cancer cells, break down their defence mechanisms, and eliminate these cells. Autolus has a pipeline of product candidates in development for the treatment of haematological malignancies, solid tumours, and autoimmune diseases.

Why Autolus?

Our team is passionate in the pursuit of excellence and in pushing the boundaries of cancer therapy and autoimmune diseases to deliver life-changing treatments to patients. While working at Autolus you will enjoy a flexible, diverse, and dynamic working environment which actively promotes creativity, leadership, and teamwork. In addition to this Autolus is proud to offer a competitive salary, performance-related bonus as well as private medical insurance, life insurance, and 401-k program.  

Our Promise

Autolus is developing complex, breakthrough therapies for a globally diverse market and equally recognises that diversity amongst our people is critical to our mission. As we draw on our differences, what we’ve experienced, and how we work, we celebrate diversity and are committed to creating an inclusive environment for all employees.

Role Summary

The Cybersecurity Analyst is responsible for protecting an organization's computer systems, networks and applications from cyber threats. This role involves monitoring security systems, analyzing potential threats, responding to incidents, and implementing security measures to safeguard sensitive information. The analyst works closely with the Cybersecurity Architect and broader IT team to ensure compliance with security policies and regulatory requirements, perform vulnerability assessments, and stay updated on emerging cyber threats and trends.

Key Responsibilities

·Ensure continuously monitoring of networks and systems for security breaches, suspicious activity, and anomalies using SIEM service/tools.

·Review existing configurations, identity areas for cybersecurity improvements and implement security controls to strengthen the overall security posture.

·Ensure security alerts and incidents are investigated to determine the scope and impact and coordinate timely responses and mitigation.

·Conduct regular vulnerability assessments and scans, prioritize risks, and recommend remediation steps.

·Assist in audits, ensure compliance with industry standards (e.g., ISO 27001, NIST, GDPR), and maintain documentation.

·Analyze threat intelligence feeds to stay informed about the latest threats, vulnerabilities, and threat actors.

·Contribute to security training programs and promote awareness of cybersecurity best practices among employees.

·Work closely with Cybersecurity Architect, infrastructure team, digital workplace team and other stakeholders to strengthen overall security posture.

·Maintain detailed records of incidents, risk assessments, and changes to security systems; prepare regular reports for management.

Demonstrated skills and competencies

E – Essential P – Preferred

Experience

• 
  
• E:Demonstrated expertise in cybersecurity, with a strong track record in managing and responding to security threats.
  
• E:Proven experience working within a security operations environment.
  
• P:Familiarity with security operations in the validated pharmaceutical or life sciences industry.
  

Qualifications

• 
  
• E: Bachelor’s degree 
  
• E: Relevant cybersecurity certifications (e.g. CompTIA Security+, CEH, ISC2 SSCP)
  
• E: Microsoft security certifications (e.g. SC-900, SC-200, SC-300, AZ-500)
  
• P: CISSP Certification (Certified Information Systems Security Professional)
  
• P: CISM Certification (Certified Information Security Manager)
  

Skills/Specialist knowledge

• 
  
• E: Hands-on experience working with security tools (e.g. EDR, XDR, SIEM, SOAR etc.) and advanced KQL expertise for threat detection and response.
  
• E: Strong knowledge of network protocols and device hardening (macOS, Linux, Windows)
  
• E: Knowledge of security technologies: DLP, IAM, encryption, SSO and, PAM and cloud security.
  
• E: Ability to work with internal and external security auditors
  
• P: Proficiency in cybersecurity frameworks and standards (e.g., NIST CSF, ISO 27001, CIS Controls, Microsoft Cloud Security benchmark, COBIT).
  
• P: PowerShell for automation of BAU tasks in Microsoft environment
  

Autolus Core Competencies

Focus on Results:Works to meet business goals set by management and leaders

Builds Trust and Relationships:Ensures trust with internal and external partners by delivering on commitments

Resilience:Has the capacity to recover quickly from difficulties; toughness

Communicates and Collaborates:Builds partnerships and works collaboratively with others to meet objectives