Company Description
At Turner & Townsend we’re passionate about making the difference. That means delivering better outcomes for our clients, helping our people to realize their potential, and doing our part to create a prosperous society.
Every day we help our major global clients deliver ambitious and highly technical projects, in over 130 countries worldwide.
Our team is dynamic, innovative, and client-focused, supported by an inclusive and fun company culture. Our clients value our proactive approach, depth of expertise, integrity and the quality we deliver. As a result, our people get to enjoy working on some of the most exciting projects in the world.
Job Description
The Security Analyst shall support the Senior Cyber Security Specialist in the development and deployment of Client’s Cyber Security Standards, Policies and Procedures on behalf of the Client Directorate.
The role holder is responsible for monitoring, analysing, and responding to security threats while ensuring compliance with security policies and industry standards. The Intermediate Security Analyst shall have experience in security operations, incident response, and vulnerability management.

EXPERIENCE

• Experience in cybersecurity, IT security, or related roles.
• Experience with cybersecurity policy, architecture and strategy
• Detailed knowledge of security operations (cybersecurity management, vulnerability scanning, analysis and mitigation management, penetration testing, security incident management)
• Tangible experience with Security monitoring (threat detection and response, Level 3 Security analysis and handling etc.
• Experience with Data Security (data leakage protection, data classification, data handling etc.)

SKILLS

• Familiarity with SIEM tools (Splunk, QRadar, etc.).
• Knowledge of firewalls, antivirus software, and endpoint security solutions.
• Understanding of common attack vectors (phishing, malware, ransomware, etc.).
• Experience with vulnerability assessment tools (Nessus, Qualys, etc.).
• Basic knowledge of scripting (Python, PowerShell) is a plus.
• Strong analytical, problem-solving, and communication skills.
• Ability to work in a team and independently
• Ability to co-ordinate and communicate important information across the team
• Well-developed interpersonal and communication skills
• Ability to work in a collaborative manner that is positive, open, transparent and is a clear and effective communicator.

FORMAL EDUCATION QUALIFICATIONS

Minimum Level 8 degree (or equivalent) in relevant subject area e.g., engineering, computer science or equivalent experience.

• Ensure compliance with client Cyber security policies, industry regulations (e.g., ISO 27001, NIST, GDPR), and industry best practices.
• Support internal security awareness programs by working closely with the Project Information System’s team to “train the trainer” to educate the client team members on cybersecurity best practices.
• Work closely with the Client and others to implement security improvements and mitigate risks.
• Attend weekly technical meetings and arrange monthly update meetings to report on progress to the Data-Information Standards & Governance Lead.
• Maintain the security documentation, prepare reports on security incidents, and contribute to security audits. The documentation will be reviewed on monthly basis and formally updated and re-published quarterly
• Support the Senior Cyber Security Specialist in developing the Security Information Requirements for the design, construction and operation of the project.
• Monitor security alerts, logs, and events from SIEM (Security Information and Event Management) tools to detect potential threats and vulnerabilities with the support of the client.
• In collaboration with client to manage and optimise security tools such as firewalls, endpoint protection, and threat intelligence platforms.
• In association with client to investigate and respond to security incidents, conduct root cause analysis, and recommend mitigation strategies.
• Assist in identifying, analysing, and remediating vulnerabilities across networks, systems, and applications.
• Conducting the Cyber security evaluation for the 3rd Party Tool requests and support the Systems Architecture and Integration’s team.
  Qualifications