IT Security Analyst

IT Security Analyst required to work remotely, however you will need to come into the nearest Centre occasionally at least once a month.

Please note; only apply if you hare happy to undergo an enhanced DBS as you will be working around children.

Duties and responsibilities

Security Operations

• Securely manage M365 & Azure resources, implementing comprehensive security policies and initiatives.
  
  
• Implement security measures and controls for EUC environments, including endpoint security, access controls, and device management.
  
  Vulnerability Management
  
  
• Conduct and oversee regular vulnerability assessments on systems, networks, and applications.
  
  
• Identify, analyse, and prioritise vulnerabilities based on risk and potential impact and utilise threat intelligence analysis to determine the risk posed by identified vulnerabilities.
  
  
• Collaborate with the IT MSP to develop and implement remediation plans, drive remediation efforts and identify improvements in the vulnerability management program.
  
  
• Monitor and track the status of identified vulnerabilities and ensure timely resolution.
  
  Security Monitoring and Incident Response
  
  
• Leverage Microsoft Defender EDR/XDR and other security tools to monitor, analyse, and respond to security threats.
  
  
• Investigate suspicious activity and determine if incidents have occurred.
  
  
• Contain and mitigate security incidents to prevent further impact.
  
  
• Develop, implement, and optimise security automation processes to improve detection, response, and mitigation efforts
  
  Security Compliance & Governance
  
  
• Ensure security configurations align with compliance frameworks such as ISO 27001, Cyber Essentials Plus, and regulatory requirements
  
  Skills and experience
  
  Essential
  
  
• 3yrs+ with current IT Security Analyst experience.
  
  
• Proven experience with M365 security solutions.
  
  
• Proven experience in system configuration and hardening.
  
  
• Strong understanding of security best practices.
  
  
• Clear and effective communication with stakeholders, development teams, and other cross functional teams to articulate goals.
  
  
• Excellent verbal, written and interpersonal skills and ability to articulate information.
  
  
• Relationship building and ability to manage and engage with stakeholders, ensuring alignment on product goals and expectations.
  
  
• Right to live and work in the UK and able to travel, when required, to centres.
  
  
• Degree or postgraduate degree in Computer Science, Cybersecurity, Information Technology, or equivalent industry experience.
  
  Desirable
  
  
• Experience of Microsoft Sentinel
  
  
• Knowledge of Cyber Essentials, Cyber Essentials Plus and/or ISO 27001
  
  Please send in your CV if you have the above skills and you do not need sponsoring, as my client cannot sponsor you sorry