Reference: TQ2425_2135_399
Vacancy: 1
Job title: Technical Security Analyst
Location: Leicester
Job Purpose:
TESTQ Technologies is an IT services and solutions company whose offerings spans over variety of industry sectors with strong technical, domain and process expertise helping clients grow their businesses and decrease operational costs on continuous basis in an ever-changing business environment.
This opportunity is in the solution design and development arena for Technical Security Analyst who will play a major role with the technical design and development of the company’s technical offerings. The role is based at our Leicester office with occasional assignments at client locations.
Job Description (Main Duties and Responsibilities):
Coordinate with users to discuss computer data access needs, to identify security threats and violations, and to identify and recommend needed programming or process changes.
Uses data encryption, firewalls, and other appropriate security tools and applications to conceal and protect transfers of confidential digital information.
Responsible to Develop and implement plans to safeguard digital data from accidental or unauthorized modification, destruction, or disclosure; adheres to emergency data processing needs.
Responsible to Monitor computer networks for security issues.
Need to Investigate security breaches and other cybersecurity incidents.
Need to Install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs.
Responsible to Document security breaches and assess the damage they cause.
Reviews violations of security procedures; provides training to ensure violations do not recur.
Monitors and restricts access to sensitive, confidential, or other high-security data.
Modifies security files and applications as able and necessary to provide specialized access, allow new software to be installed or integrated, or correct errors.
Responsible to Performs risk assessments, audits, and tests to ensure proper functioning of data processing activities and security measures.
Safeguards system security and improves overall server and network efficiency by training users and promoting security awareness.
Work with the security team to perform tests and uncover network vulnerabilities.
Responsible to Fix detected vulnerabilities to maintain a high-security standard.
Stay current on IT security trends and news.
Responsible to Develop company-wide best practices for IT security and Perform penetration testing.
Research security enhancements and make recommendations to management.
Stay up-to-date on information technology trends and security standards.
Determines when to update virus protection systems by monitoring current reports of computer viruses; facilitates or performs needed updates.
Key Skills, Qualifications and Experience Needed [The candidate must demonstrate these in all stages of assessment]
2 to 3 years of experience in a related field.
Knowledge of common security threats (e.g., malware, phishing, ransomware) and vulnerabilities (e.g., SQL injection, cross-site scripting).
Deep understanding of core security concepts, including confidentiality, integrity, availability, and non-repudiation.
Understanding of network designs, topologies, and protocols (TCP/IP, DNS, etc.).
Experience with firewalls, intrusion detection systems (IDS), and intrusion prevention systems (IPS) for monitoring and protecting network traffic.
Proficiency with Security Information and Event Management (SIEM) tools like Splunk, ArcSight, or QRadar for log management and analysis.
Experience with vulnerability assessment tools like Nessus, OpenVAS, or Qualys for identifying and managing security weaknesses.
Knowledge of secure coding practices and common vulnerabilities in application development (e.g., OWASP Top Ten).
Understanding of industry regulations and standards such as GDPR, HIPAA, PCI-DSS, and how they impact security practices.
High level of attention to detail in analyzing security data, identifying anomalies, and managing security configurations.
Advanced certification for security professionals with a broad understanding of security domains is an added advantage.
Familiarity with common security threats (e.g., malware, phishing) and vulnerabilities (e.g., SQL injection, XSS).
Proficiency with Security Information and Event Management (SIEM) tools like Splunk, ArcSight, or QRadar for monitoring and analyzing security data.
Experience with tools like Nessus, OpenVAS, or Qualys for scanning and managing vulnerabilities.
Other Key skills:
Good analytical and Problem-solving skills
Good communication skills
A thorough approach and Self starter
Focus on quality and delivery
Working together in teams.
Leadership and effective decision making.
Flexible Attitude
Excellent customer service
Qualifications: Bachelor's degree or above in the UK or Equivalent.
Salary: GBP 46000 to 60000 per annum
Published Date: 01-Jan-2025
Closing Date: 02-Feb-2025
Evaluation: CV Review, Technical Test, Personal and Technical Interview and References
Job Type: Full-time, Permanent [Part time and Fixed Term option is available] *