Senior Information Security Analyst

at  Sainsburys

Coventry CV7 9RD, , United Kingdom -

Start DateExpiry DateSalaryPosted OnExperienceSkillsTelecommuteSponsor Visa
Immediate22 Dec, 2024GBP 10000 Annual24 Sep, 2024N/ACollaboration Tools,Github,Jenkins,Azure,Oracle,Logging,Security,Large Enterprise,Security+,Email,Sap,Edr,Testing,Business Requirements,Confluence,Puppet,Ansible,Consideration,Ips,Aws,Processing,Siem,Dlp,Process Automation,DockerNoNo
Add to Wishlist Apply All Jobs
Required Visa Status:
CitizenGC
US CitizenStudent Visa
H1BCPT
OPTH4 Spouse of H1B
GC Green Card
Employment Type:
Full TimePart Time
PermanentIndependent - 1099
Contract – W2C2H Independent
C2H W2Contract – Corp 2 Corp
Contract to Hire – Corp 2 Corp

Description:

WHAT YOU NEED TO KNOW AND SHOW

  • A strong technical understanding of security to ensure systems are designed and built securely and to help continually improve our security posture
  • Familiarity with common Mobile Device and Endpoint Management solutions
  • An understanding of the Microsoft Defender suite of products
  • Awareness of Email & Web Security Gateway technologies
  • Ability to understanding the operation of corporate networks and firewall solutions, including Wide Area Network considerations for multi-site deployments (inc. international)
  • Consideration on how to assess the security of purchased Software-as-a-Service products
  • Familiarity with AI tooling such as Microsoft 365 / Security / GitHub Copilot.
  • Experience with other common productivity & collaboration tools, such as Confluence, Miro, Adobe Cloud Suite
  • Ability to understand and assess integrations between systems through methods such as APIs, Process Automation or Batch processing
  • Nice to have knowledge of AWS, Azure, Oracle, GCP and SAP Clouds
  • Risk Management experience and understanding of Risk Management Frameworks
  • Strong analytical and report writing skills
  • Appreciation of containerisation technologies such as Docker, Kubernetes etc.
  • Experience with logging, monitoring, load balancing/proxies and API gateways
  • Working knowledge of GitHub, Jenkins, Ansible, Chef and Puppet
  • In-depth knowledge of the OWASP Top 10, Mitre ATT&CK, NIST frameworks, PCI-DSS and Cyber Kill Chain
  • Familiarity with PAM, EDR, AV, IPS, SIEM, WAF and DLP technologies
  • The ability to verify solutions and gain assurance that they are fit for purpose through demonstrable evidence of controls and testing
  • Strong understanding of the changing threat landscape and how this may affect our systems
  • The ability to challenge concerns and report through appropriate channels
  • Self-drive, motivation and the ability to work independently to deliver expected outcomes
  • Excellent teamwork and problem-solving skills by blending technical knowledge with business requirements
  • In-depth understanding of data and security risks in a large enterprise

DESIRABLE QUALIFICATIONS

You will have two (or more) of the following:

  • CompTIA CASP+, Cloud+, Security+, Network+, Linux+

Responsibilities:

JOB TITLE / ROLE

Senior Information Security Analyst – Product Assurance

WHAT YOU NEED TO DO

  • As a Senior Information Security Analyst, you will have good all round infosec experience coupled with finely honed Stakeholder Management skills to ensure that robust security is maintained across our environment.
  • Provide technical, procedural and policy advice to business stakeholders and Engineers with sufficient detail
  • Review requests to ensure they comply with company policy and best security practice prior to approval
  • Conduct in-depth risk assessments and threat modelling alongside producing detailed documentation
  • Present findings to management alongside recommendations on how to secure our systems
  • Advocate for innovative security solutions through persuasive quantitative evidence and presentation
  • Mentor, engage and help educate junior colleagues across the InfoSec family
  • Support strategic initiatives to ensure cybersecurity is integrated at all phases across the business
  • Ensure that risks have been raised and being able to comprehensively explain the issues
  • Provide subject matter expertise on the InfoSec domain that the candidate is expert at
  • Evaluate requests from our suppliers to ensure they are fit for purpose
  • Deliver weekly reporting to management and other stakeholders
  • Co-ordinate complex incident response and recovery, working closely with Engineers and SOC colleagues
  • Provide support to the Information Security Manager


REQUIREMENT SUMMARY

Min:N/AMax:5.0 year(s)

Information Technology/IT

IT Software - Network Administration / Security

Other

Graduate

Proficient

1

Coventry CV7 9RD, United Kingdom