Cyber Security Analyst
On site
Abingdon-On-Thames, United Kingdom
Full Time
10-02-2025
Job Specifications
2e-assure are recruiting Cyber Security Analysts to work in our Security Operations Centre (SOC).
The Cyber Security Analyst role is a great way to start your Cyber Security career or to take it to the next level. You will work as part of a team in our SOC, monitoring and protecting customers’ systems using the latest technology. You will have the opportunity to learn from experienced cyber security professionals and develop your career and skills.
The key to success in this role is to be able to learn quickly. Cyber threats are changing and developing all the time and we need to be able to keep up. There is a lot to learn; you will be using e2e-assure in-house technology as well as the software of other external organisations including Microsoft and AWS.
You will be supported by the team and wider organisation at all times and training will be provided to help you learn quickly and to develop on an ongoing basis.
This role requires shift working, including night shifts. You will be on a rotating shift pattern, including unsociable hours.
Key Responsibilities:
You will work closely with our customers to help them stay safe online and providing support and guidance when attacks happen. You will deal with security alerts, investigating and analysing them and collaborating with colleagues and customers until they are closed.
Threat hunting, threat detection and assessing potential issues and incidents.
Creating alerts and rules for detection of potential vulnerabilities, issues, and incidents.
Tuning existing security alerts to fix issues, reduce false positives and improve efficiency.
Communicating with customers and reporting any relevant issues to them.
Generating actionable and useful threat intelligence. You will also perform vulnerability scans, reviewing and validating the results and communicating these to stakeholders.
Collaborating with customers to provide relevant training and review sessions. Supporting them achieve proactive and practical security.
Candidate Attributes:
You need to be able to demonstrate that you can learn new concepts quickly and apply them logically.
You must be interested in cyber security and aware of its importance in the world today.
Planning and organisational skills to deliver time sensitive projects and meet deadlines and SLA’s.
Excellent communication skills, including written English.
Ability to work under pressure.
An excellent team player. We thrive on having a diverse team, where everyone plays a part, with multiple people covering an area of responsibility.
Self-driven work ethic, able to proactively pick up work and find relevant tasks.
Ideally you will have either: experience working in a cyber security environment OR a Cyber Security degree or equivalent OR GIAC GFACT, GSEC or other SANS-based qualifications (but these are not mandatory)
Additional Information:
Shifts / Working Time: This role requires shift working, including night shifts. You will be on a rotating shift pattern with some unsociable hours. The exact time arrangements will be agreed with line management, and shift working only starts after completing a period of on-the-job training.
Part-time and flexible working options are also available, please let us know at time of application you are interested in further details.
Salary: £25,000k-£45,000, dependent on experience. Once eligible, you will also receive an additional £5,000 night shift uplift.
Location: Based at our SOC in Oxfordshire. You will be able to work from home much of the time, but will be expected to attend the office at least once a month for several days at a time.
Benefits: Contributory pension scheme, 25 days annual leave + Bank holidays (with additional for continued service), enhanced maternity/ paternity/ sick pay, Cycle to Work scheme, Home & Tech scheme, Employee assistance program for mental health and wellbeing, neurodiverse support, inclusive and friendly working environment.
Clearance: Individuals in this role must be eligible for SC and NPPV3 clearance. This requires residency in UK for the last 5 years. Failure to pass these checks may result in your employment being discontinued.
e2e-assure is an equal opportunities employer. We understand the importance of diversity and inclusion to the success of e2e-assure as a business and are committed to providing a diverse working environment.
We expect e2e-assure employees to have a high standard of personal integrity, both during and outside work time, including how they present themselves online. We may conduct background and open-source checks to verify this.
To view our full candidate and careers data policy please visit https://e2e-assure.com/candidate-privacy-notice/
About the Company
e2e-assure is the UK's leading specialist in Managed Threat Detection and Response through our 24/7/365 UK owned and operated Security Operations Centre (SOC). Using our 10+ years of expertise, we have an SLA promise to detect critical threats (MTTD) in under 15 minutes and respond (MTTR) in under 30 minutes. e2e-assure abstracts away all unnecessary complexity from communication channels and empower your teams with clear, understandable and actionable knowledge, giving you the advantage in protecting your business agains... Know more
Related Jobs
- Company Name
- InteggIT Solutions
- Job Title
- Security Consultant
- Job Description
- Security Architect Consultant , Location- Bristol/London (Hybrid) Permanent Key Responsibilities: Defining end-to-end security architectures and solutions for projects/programs. Delivering cutting-edge solutions in areas such as identity management, cloud security, and infrastructure protection. Designing secure system architectures to meet business and security requirements. Providing innovative security solutions and justifying design decisions. Qualifications: Proven experience in information security and security solution architecture. Experience in working with identity management, cloud security, network protection, and security monitoring. Relevant certifications such as CISSP, CISM, TOGAF, SABSA, etc. A strong foundation in cryptography is highly desirable.
- Company Name
- UK Power Networks Services
- Job Title
- Senior Cyber Security (GRC) Analyst
- Job Description
- 80422 - Senior Cyber Security (GRC) Analyst This Senior Cyber Security (GRC) Analyst will report to the Cyber Security Governance, Risk & Compliance Manager and will work within the Information Systems directorate based in either our London or Crawley office. You will be a permanent employee. You will attract a salary of up to £75,000.00 and a bonus of 7.5%. This role can also offer blended working after probationary period (6 months) - 3 days in the office and 2 remote Close Date: 25/03/2025 We Also Provide The Following Additional Benefits 25 Days Annual Leave plus bank holidays. Reservist Leave – Additional 18 days full pay and 22 unpaid Personal Pension Plan – Personal contribution rates of 4% or 5% (UK Power Networks will make a corresponding contribution of 8% or 10%) Tenancy Loan Deposit Scheme, Season Ticket Loan Tax efficient benefits: Cycle to Work, Home & Tech, and Green Car Leasing Schemes Occupational Health support Switched On – scheme providing discount on hundreds of retailers’ products Discounted gym membership Employee Assistance Programme Job Purpose The Senior Governance Risk and Compliance (GRC) Analyst will support the Cyber Security GRC Manager in developing IT governance, risk management, and compliance strategies across UK Power Networks information applications and users to safeguard essential business services and operations from cyber threats. Dimensions People - Work collaboratively in a team of circa 8-10 permanent and temporary GRC resources and specialist 3rd Party GRC service providers. Mentor less experienced GRC analysts, providing guidance and training. Financial - no direct budget responsibility. Industry and Regulatory – deputise for the GRC manager to represent UKPN in energy sector industry forums and regulatory working groups, working collaboratively with Ofgem and the Department for Energy Security and Net Zero Communication – communicate and work with all teams and partners in UK Power Networks. Good verbal, written, and presentational skills to express risks and the potential possible effects to the business and make reasoned recommendations for management action to mitigate or reduce the risks. Stakeholders – regular and ongoing interaction with senior management across IT, IS and the Business; Build relationships with internal support teams, internal and external auditors, specialist 3rd party service providers and partners to manage IT risk, and to monitor mitigation plans and actions. Principal Accountabilities Risk Management: Conduct cyber security risk assessments following the UK Power Networks risk assessment framework and methodology, identifying and explaining findings and treatment actions to important partners. Ensure all risks relating to the control environment are captured and remediation actions defined, tracked, monitored and followed-up with owners including communication of third-party assessments and actions. Reporting: Produce management information related to the risk and control environment. Support IS teams to define main control metrics to demonstrate their effectiveness. Prepare regulatory submissions and provide assurance for UK Power Networks policy compliance within IT which includes main performance metrics and management reporting. Information Security Management System Support: Operate and maintain the information security management system and artefacts, in compliance with ISO 27001/27002 including the governance forum agenda and minutes. Policies and Standards: establish GRC policies, standards and procedures to monitor UKPN information security controls, exceptions, risks, and testing including management reporting on performance. Controls Framework: Ensure a fit for purpose and robust IT control environment and support a roadmap for IT controls improvements. Requiring an understanding of technical issues and controls. Compliance: Design, implement, and run processes to monitor UKPN IT compliance to legal and regulatory requirements such as Smart Energy Code, Cyber Essentials, National Cyber Security Centre (NCSC) Networks & Information Systems (NIS) Regulations Cyber Assessment Framework (CAF) and all IT related audits (internal and external) where the scope is wholly or significantly relevant to the companies cyber security controls. Business Continuity and Disaster Recovery: Own and maintain IT resilience and business continuity plans, plan, coordinate test exercises. Conduct business continuity reviews and evaluate resilience and business continuity activities. GRC Systems and Tools Support: support the technical implementation, maintenance and configuration of the suite of GRC tools, products and systems to ensure effective operation of GRC frameworks and capabilities. Stakeholder Management: Engage and work with important partners across IT, IS and the Business, maintaining daily working relationships with internal and external support teams, internal and external auditors, UKPN regulator Ofgem, third party managed service providers and partners to manage all IT risks across the enterprise. Supply Chain and 3rd Party: Engage, interact and ensure 3rd party supplies are meeting cyber security expectations. Gather evidence and assurance, risk assess and create reports and governance metrics for measuring the ongoing risk and impact that 3rd party suppliers present to UKPN. Nature and scope The Information Systems Department works across UK Power Networks, supporting us in the achievement of our vision to maintain its position as best DNO. The team achieve this through the provision of technology solutions, and the optimisation of current solutions to improve how we operate. Continuous improvement, customer service and seamless delivery is at the heart of this ethos and are therefore underpinned by effective cyber security. You will assess Cyber and IT risks and undertaking risk management activities within UK Power Networks. Also you will support UK Power Networks cyber security maturity improvements in processes that are necessary to protect our customers from cyber threats. You will support all other team members, the rest of Information Systems teams, IT Service Providers and partners across UK Power Networks to implement and improve IS and IT risk management and operational control capabilities that are important to safeguarding UKPN information assets, business services and operations. Knowledge: We ask that you understand governance, risk management, and compliance principles, in addition to a knowledge of relevant laws, regulations, and industry standards. We are looking for a detailed knowledge and practical expertise in at least 3 of the following specialist areas: - Specific Industry Standards IS/IT Operational Controls and Governance IT/IS Risk Management Business Continuity Planning and Disaster Recovery Supply Chain and 3rd Party Risk Management Problem Solving: The role must have strong analytical and problem-solving skills to recommend pragmatic mitigat...
- Company Name
- Alcumus
- Job Title
- Information Security Auditor
- Job Description
- Department: Audit Employment Type: Permanent Location: Field Based, UK Reporting To: Regional Operations Manager Description Please note, that a full driving licence is required as this is a field-based role. Join our growing Lead Auditor teams across the UK! At ISOQAR, we draw on our experience, knowledge, and ambition to empower organisations to achieve their highest potential. Through our robust portfolio of progressive solutions, comprehensive range of certifications and industry-leading insights, we lead by example to amplify excellence within the organisations that we support. ISOQAR is part of the Alcumus Group. A global leader in the provision of support and solutions, the Alcumus Group helps organisations increase resilience and manage risk, protecting its customers, workforce, stakeholders, and the environment. Due to our continued growth, we are seeking professionals within information security to join our growing Lead Auditor teams who support a breadth of clients across the UK. With onsite practical experience and deep knowledge of industry processes, policies, and regulations, you'll help clients reach their full potential. While internal audit experience is helpful, it's not mandatory as we offer comprehensive training via our academy. Following your Global and Divisional inductions, you will embark on a 12-week training programme, including classroom and onsite learning with a Senior Lead Auditor to achieve your Lead Auditor qualifications within Quality Management Systems (9001) and Information Security Management Systems (27001). What that means day to day The life of a Lead Auditor is both fun and varied, and no two days are the same. The responsibilities include: Getting to know our clients and their products Hosting opening meetings – let’s help our clients understand their audit process as much as we can Leading on the audit – this is where your subject matter expertise comes into play Report writing – now the audit is complete, it is time to finalise it and turn your hard work into a report for the client to receive Ongoing learning and development – if you join us with knowledge of just one standard, we will train and upskill you to be able to audit against others What you’ll need to be successful You will have practical workplace experience in information technology and information security. Ideal candidates may have worked in roles such as IT Systems Architect, Cloud Systems Engineer, Network Engineer, Cyber Intelligence Specialist, Digital Forensics Analyst or similar positions. However, we are open to considering candidates with relevant experience beyond these specific roles. Your expertise in the field is essential for this role. As this role will involve regional and national travel, you should be comfortable with overnight stays and have a full driving licence. As you will be working with several industries, you should be a confident communicator both verbally and written and have positive influencing skills. As we pride ourselves on our integrity and technical expertise, thorough and concise report-writing experience is essential to this role. What you'll get in return Alcumus has a hybrid workplace policy, where you will work from the office 3 days per week. We want you to be able to do your best work here. We emphasize providing many ways to support our team to do their best work and below are some of the perks and benefits we offer: Personal Health & Wellbeing / Benefits Enhanced Parental Leave Generous annual leave Healthcare Plan Annual Giving Day – an extra day to give back to yourself or your community Car Allowance (role specific) Cycle-to-work Scheme Future Planning Pension scheme with employer contributions Life Assurance – 3X base salary Rewards Program – access to discounts and cashback LinkedIn Learning License for upskilling & development Interested but don’t feel you meet all the requirements? Our recruitment team assesses and reviews all applications against the role and business needs. We believe in people having transferable and soft skills and want you to know that we do consider where an individual might not meet all the criteria, but have the aptitude and capability, nonetheless. Our priority is to ensure we set people up for success. We will make a final call based on our determining whether we can offer the necessary support to upskill or provide the developmental support needed for you to get the best out of this opportunity with us! Bring Your Whole Self To Work. Alcumus is proudly an equal-opportunity employer. We are committed to ensuring that no candidate is discriminated against because of gender identity and expression, race, disability, ethnicity, sexual orientation, age, colour, region, creed, national origin, or sex. We are dedicated to growing a diverse team while continuing to create an inclusive environment where everyone feels safe and empowered to be themselves. What you can expect if you apply: A response to your application within 15 working days An interview process consisting of: An initial discovery call with the recruiter A first-stage interview via Microsoft Teams We’re keen to ensure our hiring process allows you to be at your best, so if you need us to make any adjustments, please just let us know.
- Company Name
- Paragon Alpha - Hedge Fund Talent Business
- Job Title
- Senior Product Security Engineer - Systematic Hedge Fund - £250k
- Job Description
- I'm working with a tech driven hedge fund famous for their investment in technology, culture and collaboration. They hire people from tech as commonly as from within finance, and they need a Senior Product Security Engineer to join their growing London office. The company is running a plethora of applications ranging from AWS platforms, C++ low latency systems, and data heavy systems in Python. They need a Security Engineer to join and help automate security processes, influence the architecture, and partner with Cloud and Data teams. They need someone with 6+ years experience, who has diverse experience across threat modelling, product security and system architecture. Stack: Python, AWS, Linux, SAST This company has a modern culture with evangelizes collaboration and research, and as an engineer you are the driving force of the company and not an afterthought. This culture is coupled with market leading salaries and also two days a week remote. If this sounds of interest, please do apply.