Security Analyst
About finova
finova is the UK’s largest cloud-based mortgages and savings software provider, supporting over 60 leading lenders, 3000 mortgage brokers and 200 financial institutions. Our suite of award-winning software includes a Core Banking Platform, Broker Platform and finova Connect, a range of solutions that connect lenders, intermediaries and consumers. Fast implementation and open architecture are at the centre of our technology, giving our customers the flexibility to integrate into their existing system or configure solutions to meet the needs of their business.
About the role
As a finova Security Analyst, you will play a crucial role in supporting the IT teams with day-to-day security incidents, projects, monitoring, investigations, and supplier security questionnaires. Your expertise will be instrumental in maintaining the integrity and confidentiality of finova's data and our clients' data.
You will also be looked upon to provide technical leadership to peers and offer support and guidance where needed.
About You:
*Please note this is a London based hybrid role, you will be required to be in the office 3 times a week. This role requires you to work flexibly with occasional weekend/night shifts.
1. In depth knowledge of Core Infrastructure, AWS, Azure / Office 365 cloud platform
2. Knowledge of information security standards and regulations.
3. Strong knowledge of ISO 27001, CIS, NIST and NCSA standards and controls.
4. Experience with Microsoft Sentinel and log analytics
5. Strong analytical and problem-solving skills.
6. Excellent communication and interpersonal skills.
7. AZ-500, SC100/200/300 (Desired)
8. CCSP/SSCP (Desired)
9. Previous experience in Cybersecurity
What will you be doing?
1. Assist in the maintenance of finova's information security policies and procedures.
2. Monitor the finova's and customer networks and systems for security breaches and investigate any incidents.
3. Investigate reported security incidents.
4. Work with IT teams to ensure that patching for vulnerabilities is carried out regularly and effectively.
5. Conduct regular vulnerability assessments and internal penetration testing assessments.
6. Producing test reports to the company standards
7. Ensure compliance with industry standards and regulations such as ISO 27001, Cyber Essentials Plus, etc.
8. Assist in the management of global InfoSec tools and services.
9. Monitor Freshservice information security queue and act on assigned calls.
10. Manage the data incident process/es to investigate any potential breaches highlighted by DLP technologies.
11. Organise Information Security Education and Awareness campaigns including phishing simulations and producing regular and ad-hoc group metrics.
12. Work with IT to optimise security controls and improve the firm's external cyber posture to reflect the continually changing threat environment.
13. Prepare and deliver Management Information relating to the Risk & Control programme.
14. Create and update Knowledge Base articles to promote shift left and self-service within the operational teams.
15. Create high quality supporting documentation of the cyber security controls and platforms in place and assist in tracking any agreed exceptions.
16. Be the SME for all Cyber security platforms, engaging with relevant 3rd party Technology partners where required.
17. Participate and assist in new infosec initiatives as directed.
What will you get from joining the finova family?
Flexible Working:
1. 25 days holiday in each calendar year plus bank holidays
2. Bank Holiday trading: flexibility to work bank holidays and take another day off that fits your values, beliefs or celebration calendar better
3. Increasing your work life balance, holiday trading allows employees to buy an extra 5 days holidays
4. Work from anywhere in the world for up to 4 weeks a year
5. We recognise the importance of juggling family and work life therefore finova offer a flexible hybrid working policy
6. We’re open to applicants from all walks of life, please feel free to ask us if you require flexible working and we’ll do our best to accommodate
Looking After You:
1. Life Assurance, Group Income Protection and Private Medical Insurance
2. Pension scheme via Salary Exchange
3. Employee Assistance Programme with counselling sessions available
4. Virtual GP to save you time in trying to get an in-person appointment
Family Friendly policy:
1. Enhanced maternity and paternity pay
2. Paid time off for fertility treatments and pregnancy loss
Extra Perks:
1. Cycle to Work Scheme
2. Access to a huge range of benefits & discounts for shops, restaurants and gym memberships
3. Free fresh fruit daily
4. Share your passions and Interests with like-minded people through our colleague networks and social groups - from book clubs to fitness challenges and group parties
Giving you the chance to give back:
1. Give-As-You-Earn scheme allowing you to support your favourite charities straight from your monthly salary
2. One days paid volunteering day a year
Equal Opportunity Statement
Diverse teams really are the best teams, we promote a working environment in which diversity is recognised, valued and encouraged. We acknowledge the multi-cultural and diverse nature of the UK workforce and society in general. We are committed to principles of fairness and mutual respect where everyone accepts the concept of individual responsibility. Our policy seeks to ensure job applicants and employees are treated fairly and without favour or prejudice. We are committed to applying this throughout the entire employee lifecycle.
We know that some candidates (and, from the research we've seen, especially women) may feel less inclined to apply for a role if they don't quite meet every requirement of the role. If you like the look of a role but you're not 100% sure if your skillset will meet our requirements, please reach out and we will be happy to talk through your experiences.
Personal Data
finova retains applicants’ personal data on our HR System for the purpose of reviewing and evaluating applications and contacting candidates to discuss job opportunities. For unsuccessful candidates, finova will retain your personal data and CV for the duration of 6 months.
#J-18808-Ljbffr