AD Analyst
London - Paddington (GBR)
Applications have closed
DS Smith
DS Smith is an international packaging company, offering sustainable, plastic-free packaging, integrated recycling services, and sustainable paper products.About us
DS Smith is a leading provider of sustainable fibre-based packaging worldwide, which is supported by recycling and papermaking operations. We play a central role in the value chain across sectors including e-commerce, and we are committed to leading the transition to the circular economy, while delivering more circular solutions for our customers and wider society - replacing problem plastics, taking carbon out of supply chains and providing innovative recycling solutions.
About the role
DS Smith are in the process of maturing their Information Security services. A critical part of this is to accelerate the delivery of the Information Security Department. As a Cyber Security, Identity Analyst, specializing in Active Directory (AD) and Entra management, your primary responsibility will be to ensure the integrity, security, and efficiency of organizational identity and access management systems. You will play a critical role in safeguarding digital assets, protecting against unauthorized access, and maintaining compliance with regulatory standards. In addition, you will work with the corporate licensing teams to identify opportunities and savings.
Key responsibilities include:
Manage and optimize Active Directory/Entra environments, handle user accounts, enforce security policies, and monitor system health to detect and mitigate threats.
Manage identity lifecycle processes, conduct access audits, resolve incidents, implement RBAC, and advise on identity management tools.
Coordinate and resolve security incidents, develop procedures, support the CISO, and ensure compliance with security standards while maintaining stakeholder relationships.
Act as an expert during security incidents, manage response activities, and document procedures to enhance future incident handling.
Address security deficiencies, assess risks, and support penetration testing for identity and AD/Entra security.
Support internal audits and assist in risk management to reduce security risks.
Develop and deliver security training, provide guidance on identity security, and stay updated on emerging threats and trends.
About you:
Experience managing multiple tasks simultaneously and meeting established deadlines.
Have significant understanding of security across - policy, culture, incident response, cloud and risk management. Must have practical work-based experience in all of these areas.
Be able to design processes and procedures and take the lead on embedding these within security operations or across the business.
Proficiency in a wide range of information security technologies including e-mail protection, active directory, end point security and a knowledge of the Microsoft security stack M365 Defender, Azure AD.
Can demonstrate the ability to take responsibility and make sound decisions on security incident remediation.
A background (and ideally accreditation) in cyber security for operational technology and industrial control systems.
Understanding and application of Cyber security frameworks e.g. NIST, ISO-27001 and Information Security Management System – ISMS would be beneficial.
Highly desirable a professional certifications and or membership in professional associations is (e.g. CISSP, ISO27000 certification, CISM, CEH, NCSC, CCP).
Bachelor's degree in Computer Science, Information Technology, or related field.
Demonstrated experience in Active Directory administration and management.
Proficiency in scripting languages (e.g., PowerShell, KQL) for task automation and Active Directory automation.
Strong understanding of identity and access management (IAM) principles and technologies.
Familiarity with regulatory standards such as GDPR, HIPAA, or PCI DSS.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Active Directory Audits Automation Azure CEH CISM CISO CISSP Cloud Compliance Computer Science E-commerce GDPR HIPAA IAM Incident response Industrial ISMS ISO 27000 NIST PCI DSS Pentesting PowerShell Risk management Scripting
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.