Job Title: Security Analyst

Location: Remote

Job Summary:

We are seeking a skilled and experienced Security Analyst to join our team. The ideal candidate will have a strong background in vulnerability management and experience working with Security Information and Event Management (SIEM) tools such as Microsoft Sentinel. You will play a critical role in ensuring the security of our cloud environments, infrastructure, and business units by identifying, analyzing, and addressing vulnerabilities and threats.

Key Responsibilities:

Vulnerability Management:
Develop, implement, and operate vulnerability management capabilities using tools like Tenable One.
Deploy, configure, and manage vulnerability assessment tools (e.g., Tenable, NCSC’s Active Cyber Defence Toolkit) and Attack Surface Management tools.
Deliver a seamless vulnerability management service across infrastructure and business units, ensuring the effectiveness of security measures.
Threat Analysis:
Utilize various sources of information to identify, analyze, and report on relevant threats and vulnerabilities.
Continuously monitor and assess the threat landscape to adjust security measures accordingly.
SIEM and EDR:
Implement and manage SIEM tools such as Microsoft Sentinel to monitor and respond to security incidents.
Utilize Endpoint Detection and Response (EDR) tools like Microsoft Defender to detect, investigate, and mitigate threats.
Cloud Security:
Secure and manage cloud environments, particularly AWS and Azure, ensuring compliance with security standards.
Work closely with cloud teams to integrate security measures and respond to cloud-specific threats.
Stakeholder Management:
Engage with stakeholders across the organization to communicate security risks, provide technical guidance, and ensure alignment on security initiatives.
Translate complex security issues into clear, actionable items for both technical and non-technical stakeholders.
Security Operations:
Lead and deliver core security operations focused on vulnerability management.
Verify the effectiveness of security measures across the entire estate, ensuring compliance with security policies and standards.

Qualifications:

Proven experience in vulnerability management and the use of tools like Tenable One.
Hands-on experience with SIEM tools, particularly Microsoft Sentinel.
Experience deploying and managing vulnerability assessment and Attack Surface Management tools.
Strong knowledge of cloud security, particularly in AWS and Azure environments.
Proficiency with EDR tools, such as Microsoft Defender.
Excellent verbal and written communication skills, with the ability to effectively communicate security issues to diverse stakeholders.
Strong stakeholder management skills, with a proven track record of working with cross-functional teams.
In-depth understanding of the current threat landscape and security best practices.

Preferred Qualifications:

Relevant certifications (e.g., CISSP, CEH, CompTIA Security+).
Experience with the NCSC’s Active Cyber Defence Toolkit.
Familiarity with regulatory requirements and industry standards (e.g., GDPR, ISO 27001).

Work Environment: