At a Glance
- Tasks: Lead cyber security efforts, manage incidents, and mentor junior analysts in a dynamic environment.
- Company: Join Marshall, a family-owned British company with over a century of innovation.
- Benefits: Enjoy 27 days holiday, hybrid working, private healthcare, and a competitive salary.
- Other info: Opportunity for career growth in a diverse and inclusive workplace.
- Why this job: Make a real impact in cyber security while developing your skills in a supportive team.
- Qualifications: Experience in cyber security, SIEM systems, and incident response required.
The predicted salary is between 50000 - 60000 £ per year.
Benefits include a competitive salary and remuneration package, 27 days holiday, pension contributions matched up to 9%, and a hybrid working opportunity with private healthcare.
Marshall, an independent, family-owned British company, has an opportunity for a Senior Cyber Security Analyst (12 month contract).
Job Focus
The focus of this technical role is on threat prevention, detection and response for Marshall, including the configuration and monitoring of a security information and event management (SIEM) system, operating next generation antivirus, intrusion detection/prevention systems (IDS/IPS), vulnerability management tools, and Firewall, DLP, Web and Email Security Gateways. This is a senior role, where the holder will be expected to evolve and expand the use of current security toolsets, help identify and implement additional tools, services, process changes, policy decisions and close compliance gaps, to enhance the Marshall protection and detection capabilities as risks evolve over time.
Responsibilities
- Managing set checklists
- Problem management through to handover or resolution
- Threat identification and classification
- Incident response lead
- Report writing
- Stakeholder management
- Continuous improvement
- Junior SOC staff mentoring
Tasks
- Helping to maintain and monitor the effectiveness of security measures and controls
- Conduct and help coordinate routine security event monitoring and investigations using available tools
- Use, configure and develop the use of a security information and event management (SIEM) and EDR tool
- Monitor and configure network intrusion detection and prevention systems
- Analyse and create reports for security incidents, to determine root cause and lessons learnt
- Create and rehearse Incident Response plans, support audits and red team engagements
- Work closely with other Cyber Security/IT team members and external support groups
- Routinely communicate with individuals both inside and outside the business
- Responding to, own and close/escalate service tickets
- Take ownership as required, of project activities assigned from internal or external projects
- Configuring, reviewing and reporting relevant risks using vulnerability testing tools/services
- Input into the risk management process and help prioritise key mitigation strategies
- Confidently work with outside services in the event of incident response or routine investigations, including Red/Blue Team engagements
- Aid in the delivery of security awareness training to the business
- Mentor junior cyber security analyst/s
- On occasion, be able to cover Cyber Security Manager operational responsibilities
Technical Competencies
- Deep hands-on skills with Windows and ideally Linux operating systems, also networking and bespoke device types
- Very good awareness of computer networking protocols in relation to cyber security
- Administration, configuration and use of a Security Information and Event Management (SIEM) system, including creating alerts, reports, dashboards, handling IOCs and Threat Feeds
- Administration of Firewalls, Web Proxies, Web Application Firewalls, Email Security and Endpoint Detection-Response software
- Technical understanding of common cyber security threats, faced by individuals or organisations, as well as mapping threats to frameworks such as MITRE ATT&CK
- Extensive and detailed knowledge of how software/hardware vulnerabilities can be exploited
- Ability to prioritise risks in terms of potential likelihood, impact, consequences and mitigations
- Any Cyber Security related qualifications
Experience
- Experience of working in a Security Operations Centre or similar role
- Detailed exposure to Applications, Networks, Servers and/or Endpoint devices
- Working with large amounts of data, for analysis, reporting or general IT services
- Documenting, developing and expanding on existing operational cyber security processes and playbooks
- Exposure to and experience of recovering from cyber security incidents
- Experience working in or for a highly regulated industry, with data classifications and compliance frameworks
- Practical experience knowledge of vulnerability scanning and pen testing type tools
- Experience doing gap analysis, threat modelling and managing/mapping TTPs
- Experience of collating and presenting information to others inside and outside IT or Security Teams
- Compiling risk assessments, technical, security or otherwise, including lessons learnt
You must be available to attend site at short notice should there be a major cyber incident which requires onsite investigation, coordination or response.
Equal Opportunity Statement
Marshall Group is an Equal Opportunity Employer and values a diverse and inclusive workplace. All qualified candidates will receive consideration for employment without regard to age, race, colour, religion, genetic information, sex, sexual orientation, gender identity, national origin, disability status, or any other characteristic protected by law.
Senior Cyber Security Analyst (12 month FTC) employer: Marshall of Cambridge Holdings Limited
Marshall is an exceptional employer, offering a competitive salary and a comprehensive benefits package that includes 27 days of holiday, matched pension contributions, and private healthcare. With a strong emphasis on employee growth and a supportive work culture, Marshall fosters a collaborative environment where team members can thrive, particularly in the dynamic field of cyber security. The opportunity to mentor junior staff and engage in continuous improvement initiatives makes this role not only rewarding but also pivotal in shaping the future of the company's security landscape.
Contact Details:
Marshall of Cambridge Holdings Limited Recruitment Team
StudySmarter Expert Advice🤫
We think this is how you could land Senior Cyber Security Analyst (12 month FTC)
✨Tip Number 1
Network like a pro! Reach out to folks in the cyber security field, attend meetups or webinars, and don’t be shy about asking for informational interviews. You never know who might have the inside scoop on job openings!
✨Tip Number 2
Show off your skills! Create a portfolio or a GitHub repository showcasing your projects, especially those related to SIEM systems or incident response. This gives potential employers a taste of what you can do beyond just a CV.
✨Tip Number 3
Prepare for interviews by brushing up on common cyber security scenarios. Think about how you’d handle specific incidents or threats, and be ready to discuss your past experiences in detail. Practice makes perfect!
✨Tip Number 4
Don’t forget to apply through our website! We’ve got some fantastic opportunities waiting for you, and applying directly can sometimes give you an edge. Plus, it’s super easy to keep track of your applications that way!
We think you need these skills to ace Senior Cyber Security Analyst (12 month FTC)
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Senior Cyber Security Analyst role. Highlight your relevant experience with SIEM systems, incident response, and any specific tools mentioned in the job description. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about cyber security and how your background makes you a great fit for Marshall. Don’t forget to mention any experience you have with mentoring junior staff, as that’s a key part of the role.
Showcase Your Technical Skills:In your application, be sure to showcase your hands-on skills with Windows and Linux operating systems, as well as your knowledge of networking protocols. We love candidates who can demonstrate their technical prowess, so don’t hold back!
Apply Through Our Website:We encourage you to apply through our website for the best chance of getting noticed. It’s super easy, and you’ll be able to keep track of your application status. Plus, we love seeing applications come directly from our site!
How to prepare for a job interview at Marshall of Cambridge Holdings Limited
✨Know Your Tools Inside Out
Make sure you’re familiar with the specific security tools mentioned in the job description, like SIEM systems and IDS/IPS. Be ready to discuss your hands-on experience with these tools and how you've used them to prevent or respond to threats.
✨Showcase Your Incident Response Skills
Prepare examples of past incidents you've managed, focusing on your role in the response process. Highlight how you identified threats, classified incidents, and what steps you took to resolve them. This will demonstrate your capability to lead incident responses effectively.
✨Understand the Bigger Picture
Familiarise yourself with the latest trends in cyber security and how they relate to the company’s operations. Being able to discuss current threats and compliance frameworks like MITRE ATT&CK will show that you’re not just technically skilled but also strategically minded.
✨Be Ready to Mentor
Since mentoring junior staff is part of the role, think about your approach to teaching and sharing knowledge. Prepare to discuss how you’ve mentored others in the past and how you would support the development of junior analysts in this position.
