DESCRIPTION

As an Offensive Cyber Security Human Operations Analyst, you will support the organisation’s cybersecurity initiatives as we constantly enhance and augment our security capabilities in line with the threats posed to our business and customer data by external adversaries. You will be supporting the Offensive Cyber Security Team in the areas of Red Teaming, Penetration Testing, Vulnerability Management, Artificial Intelligence Security, Secure Software Development Lifecycle (SSDLC) and Breach-and-Attack-Simulation (BAS) as we build the Fusion capability within WTW.
With adversaries leveraging techniques against the psychology of the individual within WTW we need to enhance the capabilities of the offensive cyber security team to guard against the ‘Hacking of the Human’.
Primarily, as we develop the Cyber Skills Academy within WTW we require an individual with knowledge management skills, experience in developing human capital capabilities and workforce planning and human operations.
Training and development will be provided for any technical aspect of this role.

THE REQUIREMENTS

• Previous experience of working within human capital development or human resources within large complex organizations.
• Cybersecurity Awareness: Familiarity with common cybersecurity concepts, principles, and best practices, such as vulnerability management, network security, incident response, and log analysis.
• Attention to Detail: Strong attention to detail to ensure accurate and error-free script development, execution, and maintenance.
• Problem-Solving Skills: Excellent problem-solving skills to identify security gaps, analyse complex issues, and develop effective solutions.
• Continuous Learning: Eagerness to learn and adapt to new scripting techniques, cybersecurity technologies, and industry trends.
• Stakeholder Management: Highly effective verbal and written communication skills to collaborate with senior leadership and team members, document scripts, and provide clear instructions to end-users.
• Works effectively and inclusively within and across teams, seeking and valuing different points of view.

• Working for the Director of Offensive Cyber Security to develop and design new capabilities encompassing: Human Operations, Technical Knowledge Management, Artificial Intelligence Security, Red Teaming, Penetration Testing, Breach and Attack Simulation (BAS), Vulnerability Management and Secure Software Development Lifecycles (SSDLC).
• Generative AI Security: Support the research, design, development, and maintenance capabilities of solutions and strategies to protect our business and our customers data as we embrace generative artificial intelligence. (Gen AI)
• Cyber Training Academy Research and Development: Analyse providers of offensive cyber training and cyber ranges to guide the selection and development of an offensive cyber training academy within WTW.
• Security Tools Integration: Integrate security tools and systems to enhance their capabilities and provide seamless integration across the cybersecurity infrastructure.
• Centre for Threat Informed Defence: (CTID) Support the Director of Offensive Cyber Security in the development of a CTID capability within WTW. This will include developing knowledge and familiarisation with the Mitre Attack Framework and Breach and Attack Simulation vendors such as Attack-IQ. Human performance factors and the measurement of, will be a key enabling factor to the success of the CTID.
• Security Analysis and Reporting: Gather, analyse, and report security-related data, such as system logs, network traffic, and threat intelligence, to support incident response and proactive security measures.
• Collaborate with cross-functional teams, including cybersecurity analysts, engineers, and system administrators, to understand their requirements and develop custom solutions to address their specific needs.
• Proactively identify and assess potential risks, implementing robust measures and protocols to remediate and effectively reduce cyber threats.
• Research and Innovation: Stay updated with the latest cybersecurity trends and emerging technologies to continuously enhance your skills within the offensive cyber security team.