Cyber Security Analyst

Purpose

To maintain appropriate Cyber security controls across the 7IM Group, providing support for colleagues through training and guidance on cyber related questions, and will be comfortable working with a variety of technologies, security problems, and troubleshooting of the network. To be able to respond to security incidents, update and secure devices across the 7IM Group.

Responsibilities

• Managing, monitoring, and upgrading security measures for the protection of the 7IM group's data, systems, and networks, ensuring that the networks are protected from malware and viruses, identifying areas that might be under threat and areas where security can be improved.
• Management of SIEM activities and working alongside an outsourced 24/7 SOC team.
• Troubleshooting cyber security related issues.
• Responding to all system security breaches, investigating and implementing solid plans of incident response, learning from past shortcomings to create ever more robust security protocols.
• Conducting scans to identify any vulnerabilities in the network and system, creating resolution plans for any resulting issues.
• Regular administrative tasks, reporting, and communication with the relevant departments in the 7IM group, including IT Governance committee attendance and participation, reporting of relevant management information.
• Participation in the change management process, analysing changing security requirements across the whole lifecycle of a product, and make sure these are met at every stage.
• Contribute to colleague engagement in cyber through user training, appropriate regular cyber testing, and conduct cyber scenario tests.
• Stay on top of industry standards and developments with Cyber Security Industry where applicable to 7IM group.
• Contribute to internal cyber security policies for the organisation, updating where relevant and/or necessary.
• Assist with the completion of regular disaster recovery testing of IT infrastructure, configuring cyber specific components of the designed disaster recovery plan.
• Reports to the Cyber Security Engineer, immediately escalating outages, major delays and other serious issues.
• Support 7IM’s VPVPs and complete all necessary compliance and cyber initiatives.

Knowledge

• Experience with Microsoft Security tooling such as M365 Defender and Sentinel
• Experience with vulnerability management
• Knowledge of operating systems, virtual machines, Network Security Control and Cloud security.
• Knowledge of industry recognised IT and support practices.
• Comprehensive functional knowledge of Business Operations and processes and related Technology.
• Awareness of The Internet of Things (IoT) and Artificial Intelligence (AI).
• Experience and underlying knowledge of IT infrastructure technologies. Including networking, Active Directory, Entra ID, Exchange, Intune and virtualisation.
• Excellent PC support skills including a broad knowledge of Windows 10 & 11. Office 365 and experience of supporting 3rd party desktop applications.
• Ability to logically and methodically problem solve IT incidents and outages.
• Proven track record of delivering to commitments.
• Excellent written and oral communication skills, with an ability to make technical information easy to understand.
• Ability to identify, manage and mitigate risk.

Qualifications

• Applicable Cyber security qualifications (i.e. CompTIA Security+ & SC-200) would be beneficial.
• Microsoft Infrastructure specific, including Azure, certifications are a distinct advantage.

Skills/Other relevant information

• Team player.
• Conscientious.
• Great problem-solving skills
• Good attention to detail.
• Good time management skills
• Proactive approach.
• Ability to think laterally.
• Proven track record.
• Can-do attitude.
• Willing to take responsibility.