Security Analyst

An exciting opportunity has arisen for a Security Analyst to join our IT team based in Newcastle upon Tyne. This is an interesting and varied role, where you’ll explore emerging technologies and threats. You’ll implement additional security tools to enhance the security posture of the business, carry out threat hunting, and help deal with any Cyber Security incident from stopping the attack to forensic analysis and outcomes.

What will I be doing:

• Enhancing cloud security across the firm, acting as a primary security contact.
• Monitoring systems, performing regular checks, and producing security reports.
• Configuring and managing security tools, responding to alerts and escalating issues.
• Investigating security incidents, including unusual activity and potential data breaches.
• Identifying and reporting threats and vulnerabilities to support risk management.
• Supporting and improving security infrastructure, policies, and procedures.
• Collaborating with project teams to ensure compliance with security and governance standards.
• Promoting best practices, sharing threat intelligence, and staying current on emerging security risks.
• Acting as a champion for Information Security best practice and policies.

You’ll have:

• A solid background in IT with a minimum of 3 years’ experience working within Information Security infrastructure.
• Familiarity with endpoint security solutions and security infrastructure, including EDR, vulnerability management tools, DLP solutions, and removable media encryption.
• A good understanding of security frameworks such as ISO 27001, Cyber Essentials+, Mitre and NIST.
• In-depth knowledge of some or all of the following – Network, server, desktop and their security components e.g., Windows Server, Windows 11, Office 365, Firewalls, Intrusion Prevention Systems, Endpoint Detection and Response, SIEM, Zero Trust Systems, MFA, SSO, Sandboxing.
• Familiarity with cloud security tools (e.g., Microsoft Defender for Cloud), and cloud compliance frameworks.
• Proven ability to adapt quickly to emerging threats or new information, shifting focus as needed.
• Demonstrated expertise in Microsoft 365 Defender and Azure Sentinel for detecting, investigating, and responding to suspicious behaviours and anomalous activities.
• Experience of introducing Information Security improvement through effective deployment of technology and/or processes to move to a proactive footing in security management or demonstrating similar in current technical discipline.
• The ability to triage and remediate phishing and impersonation attacks in a timely and efficient manner as the risk dictates.
• In depth knowledge of Microsoft Sentinel.
• Great communication, problem-solving and analytical thinking skills.
• Excellent attention to detail, time management, and organisational skills.
• A Security-related certification e.g. CompTIA Security+, GSEC, CISSP, SSCP, CCSP, CISM would be advantageous but not essential.

What we can offer you:

• An enhanced pension scheme with employer matched contributions of up to 6%.
• 25 days annual leave + bank holidays (increasing to 28 days with length of service). There is also the option to purchase up to 5 additional days.
• Life assurance cover of 4 times basic salary, with the option to purchase additional cover.
• A range of health and wellbeing benefits.
• Hybrid working with a minimum requirement of 2 days per week in our Newcastle office.
• We also have a flexible benefits programme where you can purchase a wide range of additional benefits.