[ref. z4641116] London - Information Security Specialist

Information Security Specialist

The ideal candidate will have experience in IT infrastructure security, particularly within financial institutions, and a strong understanding of various security platforms and standards.

Required Skills & Qualifications:

• Experience in IT infrastructure security, preferably within financial institutions.
• Strong knowledge of endpoint protection, anti-virus, anti-malware, anti-ransomware, and encryption technologies.
• Proven experience in securing, auditing infrastructure components and configurations on virtualization platforms, Windows, and Linux.
• Working experience with network infrastructure components such as IPS, SIEM, WAFS, load balancers, proxies, and firewall management systems.
• Burpsuite and DevSecOps
• Solid understanding of incident management and forensics for security-related issues.
• Excellent documentation and communication skills, with the ability to communicate effectively with technical colleagues.

Qualifications and Training (Good to Have):

• CISSP or other relevant certifications (e.g., Network+, Security+, MCSP, CNA).

Day-to-day of the role:

• Security Operations and Infrastructure:
• Assist in identifying, analysing, and following up on security vulnerabilities in IT systems.
• Help maintain an accurate IT asset inventory across various security platforms such as CMDB, AV, and SIEM.
• Participate in regular security reviews, vulnerability assessments, and ensure compliance with established security standards.
• Monitor user access and permissions, identifying and reporting potential unauthorized access.
• Implement and maintain Active Directory and File Share security controls, and participate in regular AD security assessments and remediation efforts.
• Threat Intelligence and Incident Response:
• Monitor and analyse phishing campaigns and assist in managing the organizational phishing response program.
• Review and distribute threat intelligence alerts to relevant stakeholders, assessing potential impacts on organizational assets.
• Monitor security alerts identified by SOC and CSIRT, participate in investigations, and assist in incident response activities including malware analysis and threat hunting.
• Collaborate with the CERT team in maintaining an up-to-date threat landscape and contributing to the incident response playbooks.
• Security Risk Management and Compliance:
• Support the maintenance of the IT security risk register and assist with internal and external security audits.
• Contribute to security reporting and tracking security risk indicators.

Personal Attributes:

• Dynamic, creative, and proactive.
• Committed to continuous learning and staying updated with the latest technologies.
• Ability to work independently and achieve results.
• Strong timekeeping and time management skills.
• Ability to prioritize and meet tight deadlines.
• Hands-on approach with a willingness to go the extra mile.

Benefits:

• Opportunities for professional growth and development.
• Dynamic and supportive work environment.

To apply for this Information Security Specialist position, please submit your CV and a cover letter