Cyber Security Analyst in Newquay

This role is broadly responsible for key functions and activities supporting and improving the day-to-day security posture of the King's College London IT environment, based out of the King's Service Centre (KSC) in Cornwall. The role will support the Cyber Security team and wider service more generally, with a specific focus toward security investigations, forensics and vulnerability management, with other daily activities as laid out in the following descriptions. Some travel may be required for meetings and training (predominantly between KSC and university campuses in London).

Accountabilities & Responsibilities

• Queue Management - day-to-day management of the security incident/service request queue in alignment with SLA.
• Security Incident Response & Digital Investigations - providing timely analyst services to aid the technical investigation of security incidents. Establishing root causes, patterns and solutions for re-securing systems and networks.
• Threat Hunting & Protective Monitoring - assisting with investigating alerts generated by security systems and raising incidents based on indicators of compromise.
• Vulnerability Assessment & Management - assist with and follow KSC vulnerability management processes. Regularly reporting upon and formally identifying key vulnerabilities, advising colleagues as necessary on remediation activities. Keeping proactively up to date with current & emerging threats and exploits which may impact on the KCL environment.
• Continuous Technical Improvement - assisting with ongoing development of King's technical protection investments including but not limited IPS/IDS, firewalls and end user protections. Availability to cover security on-call as required.
• Undertake such other duties within the scope of the post as may, from time to time, be assigned by the Cyber Security Operations or Cyber Security Development manager to ensure the Confidentiality, Integrity, Availability and more general effective operational running of the KCL environment.

Key Skills & Experience Required

• 1 year+ real world technical security experience within a professional IT environment. (E)
• Knowledge of security related technologies such as firewalls, proxy servers, IPS/IDS, SIEM, endpoint protections. (E)
• Proactive interest in industry developments and cybersecurity solutions. (E)
• Excellent general IT skills and knowledge including contemporary Microsoft solutions, networking and/or applications. (E)
• Awareness of recognised security standards and architectural patterns e.g. SANS, CIS, NIST, NCSC and/or PCI-DSS. (D)
• ITIL awareness is essential, foundation or higher certification highly desirable. (D)
• Experience of investigation and remediation of security incidents. (D)
• Holds or is actively working towards a recognised security certification i.e. SSCP, CompTIA S+ (D)

Employee Benefits

• Hybrid Working - Minimum of 5 days per month in the office
• 10% Performance related bonus
• 30 Days holiday and maximum of 8 public holidays (pro‑ratio)
• Sick pay
• 4 Discretionary Christmas Closure Days
• Contributory pension scheme
• Life Assurance cover
• Service time - 3 Volunteer days per year
• Free onsite parking & Bike racks
• Annual leave purchase scheme - up to a maximum of 10 days (subject to national minimum wage requirements)
• Student Discount (access to Totum, Unidays & Student Beans)
• CycleScheme
• TechScheme
• Opportunities for formal training and professional certification
• Free access to Linkedin Learning
• Free access to Future Learn short courses
• Potential for internal promotion and advancement

Equality, diversity & inclusion

We are an inclusive and welcoming employer that encourages a wide range of applicants. We embrace diversity and want everyone to be able to bring their whole selves to work and succeed. This is in line with King's College London (KCL).