Intermediate Security Analyst (Senior Consultant)

Company Description

At Turner & Townsend we’re passionate about making the difference. That means delivering better outcomes for our clients, helping our people to realize their potential, and doing our part to create a prosperous society. 

Every day we help our major global clients deliver ambitious and highly technical projects, in over 130 countries worldwide.

Our team is dynamic, innovative, and client-focused, supported by an inclusive and fun company culture. Our clients value our proactive approach, depth of expertise, integrity and the quality we deliver. As a result, our people get to enjoy working on some of the most exciting projects in the world.

Job Description

The Security Analyst shall support the Senior Cyber Security Specialist in the development and deployment of Client’s Cyber Security Standards, Policies and Procedures on behalf of the Client Directorate.

The role holder is responsible for monitoring, analysing, and responding to security threats while ensuring compliance with security policies and industry standards. The Intermediate Security Analyst shall have experience in security operations, incident response, and vulnerability management.

Principal Accountabilities

• Ensure compliance with client Cyber security policies, industry regulations (e.g., ISO 27001, NIST, GDPR), and industry best practices.
• Support internal security awareness programs by working closely with the Project Information System’s team to “train the trainer” to educate the client team members on cybersecurity best practices.
• Work closely with the Client and others to implement security improvements and mitigate risks.
• Attend weekly technical meetings and arrange monthly update meetings to report on progress to the Data-Information Standards & Governance Lead.
• Maintain the security documentation, prepare reports on security incidents, and contribute to security audits. The documentation will be reviewed on monthly basis and formally updated and re-published quarterly
• Support the Senior Cyber Security Specialist in developing the Security Information Requirements for the design, construction and operation of the project.
• Monitor security alerts, logs, and events from SIEM (Security Information and Event Management) tools to detect potential threats and vulnerabilities with the support of the client.
• In collaboration with client to manage and optimise security tools such as firewalls, endpoint protection, and threat intelligence platforms.
• In association with client to investigate and respond to security incidents, conduct root cause analysis, and recommend mitigation strategies.
• Assist in identifying, analysing, and remediating vulnerabilities across networks, systems, and applications.
• Conducting the Cyber security evaluation for the 3rd Party Tool requests and support the Systems Architecture and Integration’s team.

Qualifications

Experience, Skills and Qualifications

Experience

• Experience in cybersecurity, IT security, or related roles.
• Experience with cybersecurity policy, architecture and strategy
• Detailed knowledge of security operations (cybersecurity management, vulnerability scanning, analysis and mitigation management, penetration testing, security incident management)
• Tangible experience with Security monitoring (threat detection and response, Level 3 Security analysis and handling etc.
• Experience with Data Security (data leakage protection, data classification, data handling etc.)

Skills

• Familiarity with SIEM tools (Splunk, QRadar, etc.).
• Knowledge of firewalls, antivirus software, and endpoint security solutions.
• Understanding of common attack vectors (phishing, malware, ransomware, etc.).
• Experience with vulnerability assessment tools (Nessus, Qualys, etc.).
• Basic knowledge of scripting (Python, PowerShell) is a plus.
• Strong analytical, problem-solving, and communication skills.
• Ability to work in a team and independently
• Ability to co-ordinate and communicate important information across the team
• Well-developed interpersonal and communication skills
• Ability to work in a collaborative manner that is positive, open, transparent and is a clear and effective communicator.

Formal Education Qualifications

Minimum Level 8 degree (or equivalent) in relevant subject area e.g., engineering, computer science or equivalent experience.

Practicing / Training / Compliance Certification

Professional Memberships

At least one of the Certifications below:

• CompTIA Security+
• ISO/IEC 27001 Lead Implementer or Lead Auditor 
• EC-Council Certified Ethical Hacker (CEH)
• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Certified Information Systems Auditor (CISA)
• GIAC Security Essentials (GSEC)
• CompTIA CySA+ (Cybersecurity Analyst)

Additional Information

Our colleagues share our vision and mission. We offer a workplace where every person has the opportunity and voice to influence and change.

We want our people to succeed both at work and in their private lives. To support this, we promote a healthy, productive and flexible work environment that respects work-life balance.

Turner & Townsend stands for a level playing field. We celebrate diversity and are committed to creating an inclusive environment for all employees as well as actively encouraging applications from all parts of society.

Please find out more about us at www.turnerandtownsend.com/

Join our social media conversations for more information about Turner & Townsend and our exciting future projects: 

Twitter

Instagram

LinkedIn

#LI-AV1

It is strictly against Turner & Townsend policy for candidates to pay any fee in relation to our recruitment process. No recruitment agency working with Turner & Townsend will ask candidates to pay a fee at any time.  

Any unsolicited resumes/CVs submitted through our website or to Turner & Townsend personal e-mail accounts, are considered property of Turner & Townsend and are not subject to payment of agency fees. In order to be an authorised Recruitment Agency/Search Firm for Turner & Townsend, there must be a formal written agreement in place and the agency must be invited, by the Recruitment Team, to submit candidates for review.  

Join our social media conversations for more information about Turner & Townsend and our exciting future projects: 

Twitter

Instagram

LinkedIn

It is strictly against Turner & Townsend policy for candidates to pay any fee in relation to our recruitment process. No recruitment agency working with Turner & Townsend will ask candidates to pay a fee at any time. 

Any unsolicited resumes/CVs submitted through our website or to Turner & Townsend personal e-mail accounts, are considered property of Turner & Townsend and are not subject to payment of agency fees. In order to be an authorised Recruitment Agency/Search Firm for Turner & Townsend, there must be a formal written agreement in place and the agency must be invited, by the Recruitment Team, to submit candidates for review.