IT Security Specialist

This job has now expired please search on the home page to find live IT Jobs.

Overall requirement:

Working with the IT Security team to provide, advice and guidance on IT security across a multi-region infrastructure consisting of 5200+ staff and 90+ sites.

As a member of the IT Security team, you will be responsible for all aspects of the IT Security environment and its components. This includes specifying, designing and implementing enterprise-wide solutions.

Essential Skills:

*Comprehensive experience including in-depth knowledge within a security analyst role supporting global sites and regions.

*Excellent understanding of security testing principles, including experience of penetration testing, identifying, resolving and reporting risks, Security Auditing, Forensics & Security architecture.

*Project ownership, from specification through solution selection, deployment and ongoing management.

*Experience of document creation, such as the creation of reports or procedures or technical documentation.

*Ability to engage with projects and provide information security awareness and to raise compliance requirements across the business including within projects and operational teams.

*Experience of carrying out risk reviews, technology audits or other similar work.

*Technical security experience with the following - Microsoft core OS; Networking (WAN, LAN & Wifi); Security operations.

*A good understanding of normal network infrastructure such as VPNs, firewalls, switches, routers, LANs etc.

Principal Duties, Responsibilities & Accountabilities:

Responsibilities will include:

*Maintaining and improving a Cyber Essentials Plus Security Standard.

*Co-ordinate, measure and report on the technical aspects of security management.

*Fully participate in internal governance activities relating to Information Security.

*Propose changes to existing policies and procedures to ensure operating efficiency and regulatory compliance.

*Identifying security non conformities, patching or reconfiguring systems to resolve issues and building and testing new security technologies.

*Research and propose appropriate security solutions.

*Design, co-ordinate and manage security testing procedures to verify the security of systems, networks and applications, and manage the remediation of identified risks.

*Recommend and co-ordinate the implementation of technical controls to support and enforce defined security policies.

*Manage the process of gathering, analysing and assessing the current and future threat landscape, as well as providing the IT Director with a realistic overview of risks and threats in the enterprise environment.

*Monitor and report on compliance with security policies, as well as the enforcement of policies within the IT department.

Additional Desirables:

*Experience within information security risk and compliance function.

*An understanding of enterprise information security and in depth knowledge of standards including Cyber Essentials, ISO 27001, 27002 etc. Data Protection Act and the General Data Protection Regulation.

*Technical expertise of Cisco security products, specifically ASA firewalls, AnyConnect, VPN and clientless portal.

Spring acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers. The Spring Group UK is an Equal Opportunities Employer.

By applying for this role your details will be submitted to Spring. Our Candidate Privacy Information Statement explains how we will use your information - please copy and paste the following link in to your browser: www.spring.com/candidate-privacy-information-statement