Security Analyst

Join us as a Security Analyst

• We’ll look to you to assess, triage, and respond proactively and effectively to security related threats, incidents, requests, and events
• The work you do will be vital in defending our assets, information, and systems from unauthorised access, use, disclosure, disruption, modification, perusal, inspection, recording, or destruction
• Collaborating with internal and external stakeholders including third party suppliers, you’ll ensure activities relating to incident response, user access, alert monitoring, root cause analysis, and scenario planning are completed in line with standard operating procedures and to a high standard
• This role is available at associate vice president level

What you’ll do

Working with an array of domains, stakeholders, and specialists, you’ll take a proactive role to anticipate and identify security events, incidents, and trends that could adversely impact the bank, our customers, employees, or assets.

You’ll contribute to security operations including production support, incident response, and on-call rota, and you’ll carry out and contribute to root cause analysis on security incidents and events, conduct training and scenario planning to prepare for and anticipate future events. As such, you’ll minimise future reoccurrence, and prepare reports and briefings as needed and to a high quality. You’ll also develop and maintain response plans, procedures, and playbooks to increase consistency and effectiveness of response capability.

As well as this, you’ll:

• Proactively identify and effectively manage risks to deliver key security related customer and compliance outcomes, escalating and driving actions as necessary
• Actively contribute to your Centre of Excellence (CoE) specialism by cross sharing learnings and best practice with your colleagues
• Maintain the end-to-end security response as directed, and ensure that security related services are delivered in line with expectations and that process change is implemented smoothly
• Act with pace when responding to customer queries and complaints and when responding to security events, make sure that feedback loops are in place to learn how to improve service and response
• Interrogate and interpret large volumes of data and analyse and assess data to understand trends and causal factors

The skills you’ll need

We’re looking for someone with a passion for cloud security and automation using Agile and DevOps methodologies, as well as promoting shift-left culture, which integrates security analysis into each CI/CD stage. You’ll have experience with Azure Cloud and security stack including Defender, Azure Sentinel and Azure Security Centre. You’ll also have expertise in automated security assessments and familiarity with third-party security tools integration such as Qualys and Tenable and compliance standards like PCI-DSS.

In addition to this, you’ll demonstrate:

• Experience and knowledge of security controls
• The ability to communicate technical issues in business terms to range of stakeholders
• Experience using analytical and problem-solving skills within the workplace
• An understanding of Agile methodologies with experience of working in an Agile team

Hours

Job Posting Closing Date: