Security Analyst/Engineer
Recruiter
Listed on
Location
Salary/Rate
Type
Start Date
This job has now expired please search on the home page to find live IT Jobs.
Security Analyst/Engineer - Central London - Permanent - £75,000 - £85,000
My client offering the right person, the opportunity to join our dynamic team to help unlock the next stage of their growth. They provide modern business banking services to small-business owners, saving them time so they can get back to doing what they love. The main aim is to build an environment where continuous integration, delivery and deployment is a key focus and where everyone's common goal is to deliver outstanding software as fast as possible.
You will be responsible for:
*Be an advocate of the cybersecurity mindset, through coaching, mentoring and training
*Have experience of implementing commercial off the shelf tools such as Qualys, Dark Trace, Tenable, Twistlock, Splunk, SonarQube
*Ability to create, implement, maintain and monitor security and threats frameworks
*Influence the platform, tools and environment for security
*Implement and evolve security controls
*Stay abreast of security Industry trends and emerging threats, spot the risks and liaise with the clients risk committee
*Manage regular penetration tests
*Take ownership of security incident management and analysis processes
*Work with the DevOps team to enhance security incident detection and monitoring
*Advise on improvements to mobile and web application security
*Help to establish and actively participate in the Security Community of Practice, sometimes taking the lead
*You will have good persuading & listening skills
Experience
*At least 3 year's experience as a SecOps Engineer, Cybersecurity Consultant or Security Engineer
*Passionate about cybersecurity, penetration testing, threat modelling, defence-in-depth, and all things SecOps
*Comfortable coaching software engineers in security best practices.
*You've designed or vetted the security for large-scale applications in the cloud supporting hundreds of thousands of customers.
*Strong experience in Application Security, with deep understanding of OWASP, Secure SDLC processes and how they relate to microservices architectures
*Broad exposure to a range of security technologies, including WAF, DLP, IDS/IPS, IdAM, Certificate Management, SIEM, Endpoint Protection, Anti-malware and vulnerability management
*Deep knowledge of key Information Security standards (ISO 27001, OWASP, PCI DSS, SANS, NIST)
*Ideally you will have recognised security certifications (e.g. CISSP , CCSP , CSSLP)
*Worked in high-risk environments such as financial services, health care or defence
*Exposure to Agile principles, processes, and practices.
Spring acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers. The Spring Group UK is an Equal Opportunities Employer.
By applying for this role your details will be submitted to Spring. Our Candidate Privacy Information Statement explains how we will use your information - please copy and paste the following link in to your browser: www.spring.com/candidate-privacy-information-statement