Information sec within a fast paced environment
Contact number: 0113 3572045
25 holidays plus BH, increasing to 28 after 5 years. Pension 6%
Additional Benefits:
Parking on site. Broadband, mobile and laptop
Region: West Yorkshire
Description
We are looking for an Information Security Analyst to join our existing IT team.
Working with the Head of IT and current IT team of 6, to provide advice and guidance on info security and further develop security policies and processes across the entire infrastructure estate.
This role shall be responsible for supporting and maintaining information-driven solutions within a fast-paced and challenging environment. As a member of the IT team, you will review all aspects of the information systems environment and its components. The successful candidate will be required to proactively improve and provide advice and guidance on information security matters. You will feel comfortable in a role with autonomy, being the sole information security employee within the group, you enjoy responsibility and work closely with the IT team.
We believe this is an excellent opportunity for candidates who have a strong understanding of IT infrastructure and information security (primary skill) and enjoy fast-paced environments.
Key Duties and Responsibilities:
1. Assist with info security incident management and response activities.
2. General day-to-day support on managing and responding to security alerts from systems and end users.
3. Perform daily, weekly, and monthly security checks, reconciliation and compliance checks and investigate exceptions.
4. Fulfil information security requirement questionnaires and support the process.
5. Identify security risks.
6. Report security risks to the Head of IT and the board.
7. Create security policies, processes, and procedures.
8. Compile a list of technical controls to strengthen the airport's security capabilities and resilience to continued cyber threats.
9. Be aware of information security risks, mitigations, and opportunities to strengthen resilience to cyber-attacks and info security incidents.
10. Implementation of monitoring, reporting systems and applications.
11. Document user requirements and technical training guides.
12. Test information security disaster recovery and capabilities - identifying issues and work with the organisation to drive continual improvements.
Qualifications:
Technical Requirements:
* Hands-on experience of information security.
* Exposure to info sec standards including but not limited to Cyber Essentials, ISO 27001, 27002 etc., Data Protection Act and the General Data Protection Regulation.
* Good understanding of security testing principles, including experience of vulnerability scanning, identifying, resolving, and reporting risks.
* Documentation creation.
Detailed knowledge of:
* Threat analysis.
* Reporting.
* Security Incident Response processes, procedures, and best practices.
* Disaster Recovery and Business Continuity principles.
* Event and log analysis.
Core Behavioural Skills:
* Confident individual with good interpersonal skills, able to deal with people at all levels and communicate to users in a clear, non-technical language.
* Team-player.
* Analytically minded, able to break down and understand information.
* Must be comfortable with working in a fast-moving, dynamic environment.
* Strongly customer-focused, used to providing support to demanding users.
* Good organisational skills, used to managing and prioritising own workload.
* Ability to report on progress, timescales, outstanding and completed activities.
Additional Information:
IT team size is compact; therefore, there may be a shared responsibility within the team to offer support to each other.
They provide a great place to work, where each person has the opportunity and voice to affect change.
They enjoy a healthy, productive and flexible working environment that respects work-life balance.
#J-18808-Ljbffr