Cyber Security Analyst

at  Card Factory

Job Introduction
cardfactory are excited to announce a new opportunity for a Cyber Security Analyst to join our growing team on an FTC until January 2025. Working closely with the Head of Information & Cyber Security, you will conduct analysis of security related events to include validation, escalation, and reporting upon any indicators of compromise based upon the guidelines and monitoring platforms provided to them. The Analyst will be responsible for handling all such events of interest, working with the wider IT teams to ensure the recommended treatment plans are implemented based on risk analysis. Based at Junction 41 in Wakefield, with free parking and a flexible, hybrid way of working, this is a fantastic opportunity to make a real impact in our team. Colleagues are required to work in the office for a minimum of 1-2 days per week, with the expectation of additional attendance when needed.

Main Responsibilities

• Monitor and analyse security logs, alerts, and events, responding effectively to all security incidents.
• Stay informed about emerging cyber threats that could impact cardfactory, conducting regular website and application security scans and audits to identify vulnerabilities.
• Manage vulnerabilities, maintain a risk register, assess risk impact and probability, explore risk treatment options, recommend actions, and take ownership of risks until they are fully addressed.
• Conduct identity access management audits across all IT systems, ensuring accurate documentation and recommending remediation for overprivileged accounts.
• Support the wider business by addressing security requests related to projects, security training, and phishing simulations.
• Provide security support for projects and other business-wide changes in alignment with compliance and governance requirements.

The Ideal Candidate

• Previous Experience in IT and Security roles, overseeing security log events and console alerts.
• Familiarity with SIEM, MDR/XDR, IDS/IPS, firewalls, antivirus, vulnerability scanners, and identity & access management tools.
• Prior experience with computer networks, firewalls, servers, virtual machines, active directory, and Microsoft applications. Additional experience with Microsoft Azure products, phishing simulators, and email security gateways.
• Understanding of security standards and risk management frameworks.
• Remains calm under pressure and methodically analyzes cyber incidents.
• Knowledge of security frameworks (e.g., Cyber Essentials, CIS 20 Controls, OWASP, ISO 27001).
• Excellent written and verbal communication in English.
• Can explain technical and security matters to both technical IT and non-technical business stakeholders.
• Bachelor’s degree in computer science, Information Security, Computer Engineering, Mathematics, or related field.
• CompTIA Security+ or other relevant security qualifications.

About The Company
cardfactory is the UK’s leading specialist retailer of greeting cards, dressings, and gifts with over one thousand stores across the UK and Ireland. In 2020 we launched our exciting 5-year business strategy including our vision of becoming a true Omni-channel retailer. This strategy sees significant investment into our colleagues across the business creating multiple opportunities to join a fast-paced environment and be part of our exciting journey.
In return, we offer a wide range of benefits to support your physical, mental, and financial well-being.

• Monitor and analyse security logs, alerts, and events, responding effectively to all security incidents.
• Stay informed about emerging cyber threats that could impact cardfactory, conducting regular website and application security scans and audits to identify vulnerabilities.
• Manage vulnerabilities, maintain a risk register, assess risk impact and probability, explore risk treatment options, recommend actions, and take ownership of risks until they are fully addressed.
• Conduct identity access management audits across all IT systems, ensuring accurate documentation and recommending remediation for overprivileged accounts.
• Support the wider business by addressing security requests related to projects, security training, and phishing simulations.
• Provide security support for projects and other business-wide changes in alignment with compliance and governance requirements