Senior Information Security Analyst
at Sainsburys
Coventry CV7 9RD, , United Kingdom -
Start Date | Expiry Date | Salary | Posted On | Experience | Skills | Telecommute | Sponsor Visa |
---|---|---|---|---|---|---|---|
Immediate | 22 Dec, 2024 | GBP 10000 Annual | 24 Sep, 2024 | N/A | Collaboration Tools,Github,Jenkins,Azure,Oracle,Logging,Security,Large Enterprise,Security+,Email,Sap,Edr,Testing,Business Requirements,Confluence,Puppet,Ansible,Consideration,Ips,Aws,Processing,Siem,Dlp,Process Automation,Docker | No | No |
Required Visa Status:
Citizen | GC |
US Citizen | Student Visa |
H1B | CPT |
OPT | H4 Spouse of H1B |
GC Green Card |
Employment Type:
Full Time | Part Time |
Permanent | Independent - 1099 |
Contract – W2 | C2H Independent |
C2H W2 | Contract – Corp 2 Corp |
Contract to Hire – Corp 2 Corp |
Description:
WHAT YOU NEED TO KNOW AND SHOW
- A strong technical understanding of security to ensure systems are designed and built securely and to help continually improve our security posture
- Familiarity with common Mobile Device and Endpoint Management solutions
- An understanding of the Microsoft Defender suite of products
- Awareness of Email & Web Security Gateway technologies
- Ability to understanding the operation of corporate networks and firewall solutions, including Wide Area Network considerations for multi-site deployments (inc. international)
- Consideration on how to assess the security of purchased Software-as-a-Service products
- Familiarity with AI tooling such as Microsoft 365 / Security / GitHub Copilot.
- Experience with other common productivity & collaboration tools, such as Confluence, Miro, Adobe Cloud Suite
- Ability to understand and assess integrations between systems through methods such as APIs, Process Automation or Batch processing
- Nice to have knowledge of AWS, Azure, Oracle, GCP and SAP Clouds
- Risk Management experience and understanding of Risk Management Frameworks
- Strong analytical and report writing skills
- Appreciation of containerisation technologies such as Docker, Kubernetes etc.
- Experience with logging, monitoring, load balancing/proxies and API gateways
- Working knowledge of GitHub, Jenkins, Ansible, Chef and Puppet
- In-depth knowledge of the OWASP Top 10, Mitre ATT&CK, NIST frameworks, PCI-DSS and Cyber Kill Chain
- Familiarity with PAM, EDR, AV, IPS, SIEM, WAF and DLP technologies
- The ability to verify solutions and gain assurance that they are fit for purpose through demonstrable evidence of controls and testing
- Strong understanding of the changing threat landscape and how this may affect our systems
- The ability to challenge concerns and report through appropriate channels
- Self-drive, motivation and the ability to work independently to deliver expected outcomes
- Excellent teamwork and problem-solving skills by blending technical knowledge with business requirements
- In-depth understanding of data and security risks in a large enterprise
DESIRABLE QUALIFICATIONS
You will have two (or more) of the following:
- CompTIA CASP+, Cloud+, Security+, Network+, Linux+
Responsibilities:
JOB TITLE / ROLE
Senior Information Security Analyst – Product Assurance
WHAT YOU NEED TO DO
- As a Senior Information Security Analyst, you will have good all round infosec experience coupled with finely honed Stakeholder Management skills to ensure that robust security is maintained across our environment.
- Provide technical, procedural and policy advice to business stakeholders and Engineers with sufficient detail
- Review requests to ensure they comply with company policy and best security practice prior to approval
- Conduct in-depth risk assessments and threat modelling alongside producing detailed documentation
- Present findings to management alongside recommendations on how to secure our systems
- Advocate for innovative security solutions through persuasive quantitative evidence and presentation
- Mentor, engage and help educate junior colleagues across the InfoSec family
- Support strategic initiatives to ensure cybersecurity is integrated at all phases across the business
- Ensure that risks have been raised and being able to comprehensively explain the issues
- Provide subject matter expertise on the InfoSec domain that the candidate is expert at
- Evaluate requests from our suppliers to ensure they are fit for purpose
- Deliver weekly reporting to management and other stakeholders
- Co-ordinate complex incident response and recovery, working closely with Engineers and SOC colleagues
- Provide support to the Information Security Manager
REQUIREMENT SUMMARY
Min:N/AMax:5.0 year(s)
Information Technology/IT
IT Software - Network Administration / Security
Other
Graduate
Proficient
1
Coventry CV7 9RD, United Kingdom