Security Analyst – IT Operations

at  Glory Global Solutions

COMPANY OVERVIEW

As a global leader in cash technology solutions, we provide the financial, retail, cash centre and gaming industries with confidence that their cash is protected and always working to help build a stronger business.
Our cash automation technologies and process engineering services help businesses in more than 100 countries optimise the handling, movement and management of cash. While we span the globe, we personally engage with each customer to address their unique challenges and goals — enhancing staff efficiency, reducing operating costs and enabling a more rewarding customer experience.
We offer peace of mind. We enable transformation. We generate options. We empower people. We do all this by releasing companies from the burden of cash management, putting cash to work, and helping customers enhance the value that their staff and facilities add to their business.

EDUCATION LEVEL:

• A technical degree or professional qualification
• Formal security qualifications such as CISSP or CEH would be of interest

REQUIRED SKILLS AND COMPETENCIES

• Knowledge of Microsoft security applications, including Defender, Sentinel and InTune
• Ability to identify and monitor vulnerabilities using tools such as Rapid 7
• Experience working with corporate Information Technology platforms and systems
• Advanced understanding of security practices for Linux, MacOS, Windows operating systems
• Experience with public cloud security best practices (GCP, Azure, etc.)
• Ability to communicate security requirements to the wider IT teams
• Able to produce clear and comprehensive requirements documentation
• Strong written and verbal communication skills
• Commitment to excellence and high standards; strong organizational skills; able to manage time, priorities and workload
• Ability to work autonomously
• Comfortable to challenge seniority and existing processes.
• Knowledge of ISO27001 standard would be advantageous

ROLE PROFILE

ROLE TITLE: Security Analyst – IT Operations
FUNCTION: Information Technology
REPORTING: Director, Global IT Operations
LOCATION: UK - Basingstoke/Knutsford or Portugal - Torres Vedras

ROLE PURPOSE

In this newly created position, you’ll use your knowledge and experience to ensure that the implementation, management, and support, of the security applications and tools are to an acceptable level and provide sufficient protection to GGS (Glory Global Solutions) against external and internal threats.
Day to day, you will provide dedicated ownership and support for internal and external security applications and tools. Using the applications and tools, you will lead security incident and event management, vulnerability management, XDR, and device management. Working in conjunction with Information Security and the wider IT Operations team, you will enforce policy through the management and support of technical controls and will be able to demonstrate the effectiveness of controls and compliance with internal policies, contractual commitments, and compliance to our security certifications.

MAIN RESPONSIBILITIES

• Liaising with our external Managed Security Operating Centre to respond to escalations
• Management of internal security applications, including Microsoft Defender, Microsoft Sentinel, Microsoft InTune, Cisco Umbrella, Spycloud and the other tools as required
• Working with customers to remove identified vulnerabilities from external tools such as BitSight and Security Scorecard
• Change Management and Service Desk
• Using internal vulnerability management tools to highlight vulnerabilities within internal systems and infrastructure. Working with our security partner to coordinate and perform external vulnerability management. Working with the system and business owners to resolve vulnerabilities in line with GGS Policy
• Producing monthly reports to demonstrate effectiveness of tools and identified vulnerabilities and resolution of vulnerabilities
• Monitoring of the Dark Web using partner tools to identify and alert to threats
• Regular review of technical and cloud infrastructure controls, such as firewalls, IDS/IPS systems, security groups and Access Brokers
• Documenting processes to enhance incident response
• Identifying capabilities of existing and new tools to increase security resilience through to implementation
• Working closely with IT Operations and Infrastructure to assist in the hardening of systems and where applicable, the creation of build standards in line with industry standards such as CIS
• Liaison for penetration testing between system owners and GGS security partners