At a Glance
- Tasks: Lead cybersecurity initiatives and protect sensitive data in a dynamic law firm environment.
- Company: Join an internationally renowned city law firm expanding its Cyber Security operations.
- Benefits: Hybrid work model, competitive salary, and opportunities for professional growth.
- Other info: Collaborative team culture with a focus on innovation and continuous improvement.
- Why this job: Make a real impact by safeguarding client information and enhancing security practices.
- Qualifications: 5+ years in cybersecurity, relevant degree, and industry certifications preferred.
The predicted salary is between 60000 - 80000 £ per year.
Hybrid role 3 & 2. It is advantageous to have worked in a law firm. An internationally renowned city law firm has an exciting new position available within the organisation, which is a completely new role, an expansion of its Cyber Security operations and capacity.
You will work closely with the Cyber team and IT colleagues, ensuring systems and services are both secure and stable, enabling the firm to deliver an outstanding service to its clients and achieve its strategic goals. This ensures the cybersecurity Ops team manages identified threats and risks and ensures adoption and adherence to standards.
Key Responsibilities include:
- Provide expertise and cybersecurity requirements to the firm's change programme to ensure that security good practice is fully embedded into change initiatives, and security by design principles are applied.
- Provide 3rd line support to the IT service desk, responding to support requests and incident tickets which have been triaged and escalated to the cybersecurity operations team, and provide out of hours support through participation in an on-call rota.
- Undertake routine monitoring of security alerts generated by systems and consumed by the cybersecurity team, investigating, analysing and responding to them as required.
- Co-ordinate and undertake regular reviews of security tools to ensure they are maintained in a fully operational state across all in-scope assets and are tuned to incorporate new features or changes to the operational environment.
- Co-ordinate and undertake threat modelling to identify and analyse potential security threats, and ensure the necessary controls are in place to manage the threat and associated risks.
- Co-ordinate and undertake regular threat hunting, analysing logs and event data across the firm's systems, and procuring threat intelligence to inform the hunts.
- Provide technical leadership during security incident response, from identification through to containment, eradication, recovery and post-incident review, reporting and recommendations; liaising with external IR providers as required.
- Maintain Incident response playbooks and undertake regular IR exercises.
- Ensure that the internal team and managed service security providers have clear roles and responsibilities, and services are joined up and operated seamlessly.
- Ensure that the day-to-day operations of the wider IT systems are compliant with the firm's security policies and standards.
- Conduct risk assessments and recommend security improvements.
- Provide guidance on secure configuration and hardening the security of systems.
- Manage penetration testing activities conducted by third party testers and any remediation activities required.
- Fulfil 3rd line support and service request tickets.
- Develop, document and maintain security procedures and cybersecurity operational documentation.
- Oversee and drive vulnerability management activities with the technical systems owners.
- Ensure audit trails, system logs and other monitoring data sources are reviewed regularly, and are following policies and audit requirements.
- Provide out-of-hours support for security incidents.
Key Skills & Experience Required:
- 5+ years' experience in cybersecurity or information security.
- Bachelor's Degree in Cybersecurity, or similar. Industry certifications such as CompTIA Security+, GIAC, CISM, CISSP or other relevant certifications preferred.
- Strong understanding of network and endpoint security, incident response, threat intelligence, and vulnerability management.
- Experienced with security tools such as SIEM platforms, EDR/XDR solutions, firewalls, IDS/IPS.
- Strong knowledge of Microsoft Azure cloud security technologies and concepts.
- Familiar with cybersecurity frameworks such as NIST CSF, ISO27001, CIS Controls.
- Strong analytical and problem-solving skills.
- Good understanding of best practice security operations and architectures.
- Knowledgeable on security and data protection legislations and regulations, and the security requirements resulting from them.
Senior Information Security Analyst in City of London employer: CONEX EUROPE LIMITED
Join an internationally renowned city law firm as a Senior Information Security Analyst, where you will be at the forefront of expanding our Cyber Security operations. We pride ourselves on fostering a collaborative work culture that values professional growth and innovation, offering comprehensive training and development opportunities to enhance your skills. With a hybrid working model and a commitment to maintaining a secure environment for our clients, this role not only promises meaningful work but also the chance to make a significant impact in a dynamic legal setting.
StudySmarter Expert Advice🤫
We think this is how you could land Senior Information Security Analyst in City of London
✨Tip Number 1
Network like a pro! Reach out to your connections in the cybersecurity field, especially those who have experience in law firms. A friendly chat can lead to insider info about job openings that aren't even advertised yet.
✨Tip Number 2
Show off your skills! Prepare a portfolio or a presentation that highlights your past projects and achievements in cybersecurity. When you get that interview, use it to demonstrate how you can add value to their team.
✨Tip Number 3
Stay updated on industry trends! Follow relevant blogs, podcasts, and forums to keep your knowledge fresh. This will not only help you in interviews but also show potential employers that you're genuinely passionate about cybersecurity.
✨Tip Number 4
Apply through our website! We make it super easy for you to submit your application directly. Plus, it shows you're serious about joining our team and helps us keep track of your application better.
We think you need these skills to ace Senior Information Security Analyst in City of London
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Senior Information Security Analyst role. Highlight your relevant experience in cybersecurity, especially if you've worked in a law firm or professional services. We want to see how your skills align with our needs!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about cybersecurity and how you can contribute to our Cyber team. Be sure to mention any specific tools or frameworks you're familiar with that are relevant to the role.
Showcase Your Certifications:If you've got industry certifications like CompTIA Security+ or CISSP, make them stand out! We love seeing candidates who are committed to their professional development and have the credentials to back it up.
Apply Through Our Website:Don't forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows you’re keen on joining our team at StudySmarter!
How to prepare for a job interview at CONEX EUROPE LIMITED
✨Know Your Cybersecurity Stuff
Make sure you brush up on your knowledge of cybersecurity principles, especially those relevant to law firms. Be ready to discuss your experience with security tools like SIEM platforms and your understanding of frameworks like NIST CSF or ISO27001.
✨Showcase Your Problem-Solving Skills
Prepare examples of how you've tackled security incidents in the past. Think about specific situations where you identified threats, responded to incidents, or improved security measures. This will demonstrate your analytical skills and ability to handle pressure.
✨Understand the Role's Responsibilities
Familiarise yourself with the key responsibilities listed in the job description. Be prepared to discuss how you would approach tasks like threat modelling, vulnerability management, and incident response. Showing that you understand the role will impress the interviewers.
✨Ask Insightful Questions
Prepare thoughtful questions about the firm's cybersecurity operations and how they align with their strategic goals. This shows your genuine interest in the position and helps you gauge if the firm is the right fit for you.
