Junior Operational Security Analyst

The Role

Are you passionate about cybersecurity and eager to thrive in a collaborative, inclusive environment where everyone’s contributions are valued? Do you enjoy working alongside diverse technical teams to protect and secure digital assets? If so, the Operational Security team at Trayport could be the perfect place for you!

This is an exciting opportunity to join a close-knit team dedicated to defending the organization from cyber-attacks, breaches, and security incidents. You will be working with experienced security professionals to secure and monitor a range of technologies across both on-premises and cloud environments. This role offers excellent opportunities for growth and career development in the ever-evolving field of cybersecurity.

Your primary areas of focus will include:

• Event Management
• Incident Response and Management
• Endpoint Security
• Network Security
• Vulnerability Management

Responsibilities

As an Operational Security Analyst, you will:

• Investigate security events from our SIEM, security tools, and vendor/partner reports
• Actively contribute to enhancing our ability to detect, investigate, and resolve anomalies and threats, while developing and improving response plans and playbooks
• Maintain and configure endpoint and network security tools, balancing user experience with protection that aligns with the organization’s risk appetite
• Strengthen system security in line with best practices and collaborate with stakeholders to ensure timely implementation of recommendations
• Stay informed about emerging threats and vulnerabilities, and recommend actions to mitigate associated risks
• Assess security vulnerabilities in Trayport’s infrastructure and systems, and ensure they are addressed
• Prioritize requests from technical users and collaborate with them for necessary security input or support
• Work with the broader security team and stakeholders across the business to enhance and maintain our security posture, as well as contribute to ongoing initiatives

Skills and Experience

Essential:

• Ability to understand and communicate key concepts with team members and stakeholders
• Passion for security and technology, with a commitment to staying up-to-date with industry developments
• Detail-oriented, conscientious, diligent, reliable, self-motivated, and a natural problem-solver
• Knowledge of the following technical areas, along with general awareness of others:
• Cloud Security (Azure/AWS)
• Windows Security
• Linux Security
• Active Directory/LDAP
• Authentication Mechanisms (Kerberos, NTLM, etc.)
• Basic programming/scripting (e.g., PowerShell, Bash)
• Vulnerability Management and associated tools (e.g., Rapid7)
• SIEM and associated tools (e.g., Splunk)
• Endpoint Security Controls (e.g., EDR/Anti-virus)
• Networking Fundamentals (OSI Model, TCP/IP, DNS, ICMP, routing)
• Network Security Controls (Firewalls, packet capture, TLS inspection, IDS/IPS)
• Common Application Protocols (SSH, RDP, SMB, etc.)
• Cryptography/PKI
• MFA Solutions (e.g., Okta, Vasco)

Desired:

• One or more of the following:
• Prior experience in information security or systems administration/engineering
• Discipline-specific qualifications (e.g., SANS, CEH, OSCP, CRT, ISO27001 LA, CISMP)
• Bachelor's degree in a related field (e.g., Computer Science, Computer Security)
• Knowledge of ISO/IEC 27000 Information Security standards and experience working with a compliant ISMS
• Experience in IT problem management and root cause analysis

At Trayport, we encourage applications from all backgrounds and walks of life, and we are committed to building a team that reflects a diverse range of perspectives and experiences. We believe in creating an environment where everyone can thrive, and we are excited to see how your unique skills and experiences can contribute to our continued success.