Home
Jobs
JCB
Information Security Analyst

Information Security Analyst

On site

Rocester, United Kingdom

Full Time

15-04-2025

Share this job:

Score my CV Apply

Job Specifications

Salary: Competitive Salary

Contract Type: Full Time

Working Pattern: Permanent

The Opportunity - Information Security Analyst

Click here for our Careers & Life at JCB pages

About the role:

The Information Security team is responsible for ensuring that JCB has the correct level of security integrity to protect our systems, information, personal data and people from cyber-attacks and unauthorised access.

You will work with the Information Security Team, IT colleagues, internal stakeholders and third parties to ensure that all JCB information and systems are secure, fit for purpose and protected to an optimal level.

You will play a crucial role as a security lead. You will be the sign-off for security assessments and new projects as well as business as usual in this varied role. This role gives the opportunity for exposure on a global scale.

You will be responsible for driving the security scrutiny, culture, awareness and adoption across the JCB organisation.

What does this role involve day to day?

Day-to-day running and monitoring of Information Security systems - analyse and interpret outputs to identify security weaknesses and recommend continuous improvements.
Be a key participant in or leader of large IT and business projects.
Respond to Security Incidents, reports and alerts ensuring prompt containment and recovery.
Plan and oversee regular security penetration testing against new and existing services to identify weaknesses and formulate plans and processes to minimise current and future risk.
Conduct regular security risk reviews and manage security remediation activity, internally on new IT/Business projects and with third parties.
Be the technical sign-off for all BAU Change Requests.
Promote culture of ‘secure by design’ and facilitate appropriate activities to support and improve Information Security Awareness.
Articulate risk in technical and non-technical terminology so that it can be interpreted by Group IT and business stakeholders.
Seek out and exploit opportunities for improvement to the group’s overall security posture.
Passionate about cyber security and keeping up with the latest trends, threats and mitigations.

This will be suited to you if

You are adaptable – whilst this role requires some use of Security Toolsets and a Technical Mindset, you’re not expected or required to be an expert in all areas but expected to have a solid understanding and grounding in security principals to adapt to the varied requirements.
You have the ability to manage and use a wide variety of security software, systems, services and toolsets such as E-mail Security, EDR, NAC, IT/OT Segmentation, 365 etc along with an understanding of malware prevention, emerging threats, attacks and vulnerability management.
Understanding of Information Security best practice for elements including workstations, servers, cloud, networking, architecture, common protocols and application security.
You have the ability to confidently perform security audits, both internal and external (e.g., third party and supplier assurance) and ensure recommendations are followed for continuous improvement.
You have strong Project Management skills - able to independently manage multiple projects, manage own workload, prioritise and meet tight deadlines.
Strong Incident Response Management skills including threat and vulnerability analysis.
The ability to communicate business and technical risk to all levels of audience.
Understanding of IT Service Management principles ideally ITIL.

What happens next?

Ordinarily, our Resourcing Team reviews and shortlists CVs. If shortlisted, you’ll speak to one of our Recruiters to discuss the role further. Our interview process usually consists of an initial teams interview followed by an in-person interview. We’ll keep in touch throughout the process but if you have any questions, please get in touch at recruitment@jcb.com

What’s in it for you?

This is your chance to join a company that values expertise not only in rewards but also in real employee care. At JCB you don’t just get a competitive salary, 33 days’ holiday and access to our company pension—you can also use our onsite gym, in-house doctor, dentist and visiting optician. We have an ULEV car scheme available for our employees too. Then there’s the JCB Rewards Hub, which gives you discounts with high street retailers. Feel like biking to work? There’s our Cycle to Work Scheme.

We value diversity and welcome applications from candidates from all backgrounds.

We’re committed to ensuring our recruitment process is fair and inclusive. If you face any accessibility challenges with your online application and require additional support, you have the option of speaking to a member of our Recruitment Team who can support you to complete an application in an alternative format. If you would benefit from this support, please email recruitment@jcb.com, and a member of the team will be in touch.

Recruitment Agencies: JCB does not accept any speculative approaches to present candidates for advertised vacancies.

About the Company

JCB is one of the largest privately owned engineering and manufacturing companies in the UK and the World's third largest manufacturer of construction machinery. With a global presence and manufacturing facilities on 4 continents, we employ over 15,000 people worldwide and produce over 300 different products. With a trusted brand that is synonymous with world class innovation. Our team design and build machines for hard work and reliability, using only the most advanced technology and techniques. We produce a broad spectrum... Know more

Related Jobs

Company Name: Lloyds Banking Group
Job Title: Software Engineer - Cyber Security Configuration Assurance
Job Description: JOB TITLE: Software Engineer - Cyber Security Configuration Assurance SALARY: £70,929 - £78,810 LOCATION(S): Manchester, Leeds, Bristol. HOURS: Full-time WORKING PATTERN: Our work style is hybrid, which involves spending at least two days per week, or 40% of our time, at our locations noted above. About this Opportunity At Lloyds Banking Group we're building the bank of the future, and we want your help to ensure we do that with security at the heart of all our change. With over 26 million customers, we're the UK's largest Retail and Digital Bank, and with 100,000 colleagues, the scale of services, customers, and colleagues you can help protect is EPIC. Cyber Security Configuration Assurance enables Platforms and Infrastructure (hardware, software and/ or firmware) across LBG, to achieve the Security Relevant Configuration (SRC) compliance objectives. We are a centre of excellence service and achieve this for our customers by assuring SRC in a defined static configuration artefact or within dynamic code stored in an integrated repository (CI/ CD pipeline). Sounds an exciting prospect, right? Are you someone who wants to be in at the heart of this change, working in an agile way, being resilient and scalable to meet the needs of our business and the pace of our growth. Your key responsibilities as a Software Engineer will include: Understand vulnerabilities scanning - management of scan and outcomes Manage Power platform solutions & enhancements Manage relational database solutions & enhancements GitHub backend and front-end pages development Using DevOps tools to automate the review and approval of security artefacts Understanding the impact of changes to technology roadmaps and any impacts to existing or new security artefacts (e.g. patterns) Development, maintenance and enhancement of key Cyber Security Services including procedures, processes and associated templates and documentation Why Lloyds Banking Group We're on an exciting journey to transform our Group and the way we're shaping finance for good. We're focusing on the future, investing in our technologies, workplaces, and colleagues to make our Group a great place for everyone. Including you. What you'll need The ideal candidate is someone who has a strong technical knowledge including the following: Previous Software Engineer experience Familiarity in scripting languages i.e. harness pipeline, Python script, JavaScript, Jekyll, Liquid, PowerShell Hands on technical experience and ability to write, trouble shoot and fix code A level of understanding across Cyber Security domains and Cloud Security (GCP, Azure) Outcome focussed, able to deliver the end goal whilst ensuring the detail meets the outcomes needs Deliver a secure-by-design and secure throughout the lifecycle across LBG Passionate about automating repetitive tasks Clear understanding of software containerisation and respective technologies About working for us Our focus is to ensure we're inclusive every day, building an organisation that reflects modern society and celebrates diversity in all its forms. We want our people to feel that they belong and can be their best, regardless of background, identity, or culture. We were one of the first major organisations to set goals on diversity in senior roles, create a menopause health package, and a dedicated Working with Cancer initiative. And it's why we especially welcome applications from under-represented groups. We're disability confident. So, if you'd like reasonable adjustments to be made to our recruitment processes, just let us know We also offer a wide-ranging benefits package, which includes A generous pension contribution of up to 15% An annual performance-related bonus Share schemes including free shares. Benefits you can adapt to your lifestyle, such as discounted shopping. 30 days' holiday, with bank holidays on top A range of wellbeing initiatives and generous parental leave policies Want to do amazing work, that's interesting and makes a difference to millions of people? Join our journey.

Manchester, United Kingdom

On site

Full Time

12-05-2025

Company Name: Free-Work UK
Job Title: IT Officer (Cybersecurity)
Job Description: Providing IT security standards compliance through best practices This industrial software company develops software products used in the energy sector. They have clients across the world ranging from multinational corporations and small consultancies. Their Guildford office is looking to hire an IT Officer to provide cybersecurity experience and expertise to their team. The role would involve developing and implementing security policies, conduct risk assessments and respond to security incidents. This will be through security audits, penetrations tests, proposing new technologies, training employees, and preparing security reports. Requirements Degree qualified in Computer Science or similar. Extensive relevant experience in cybersecurity including knowledge of: frameworks and standards (ISO27001, NIST); security tools and technologies (firewalls, IDS/IPS); regulatory requirements (GDPR, HIPAA); cloud and general internet security. Good communication skills and ability to work well within a team environment are expected. Problems may require working with non-technical stakeholders so good interpersonal skills are needed. On offer is an excellent remunerations package including a wide range of benefits. The role is based full-time at their offices in Guildford. Note, only applicants with full rights to work in the UK will be considered (no company sponsorship). Keywords: IT, Cybersecurity, Documentation, Standards, Policies, Cloud, Audits, Penetration Tests, Training, Report Writing, Onsite Another top job from ECM, the high-tech recruitment experts. Even if this job's not quite right, do contact us now - we may well have the ideal job for you. To discuss your requirements call [Telephone number removed] or email your CV. We will always ask before forwarding your CV. Please apply (quoting ref: TJ27380) only if you are eligible to live and work in the UK. By submitting your details you certify that the information you provide is accurate.

Surrey, United Kingdom

On site

Full Time

12-05-2025

Company Name: Morrisons
Job Title: Technology Manager - Security Architecture
Job Description: We are looking for a skilled Security Architect to join our Technology Architecture team. In this role, you will lead IT Security planning, design, governance, and assurance initiatives, ensuring alignment with the Security Reference Architecture. You will develop security product and application roadmaps, define long-term strategies, and design and govern Security Architecture for key programmes with a high strategic impact. As a Security Architect, you will collaborate with stakeholders across the organisation, attend Architecture and Technical Review boards, and provide expert guidance to ensure robust security solutions are in place. Responsibilities Planning and Design Activities • Define and maintain security architecture processes aligned with business, technology, and threat drivers. • Develop security strategy plans, roadmaps, and architecture artefacts, including models, templates, and standards. • Establish baseline security standards for operating systems, network segmentation, and identity and access management. • Contribute to standards for data encryption and tokenization based on data classification criteria. • Draft security procedures and standards for executive review and approval. • Establish a taxonomy of indicators of compromise (IOCs) and share insights with security teams. • Continuously monitor developments in digital business and threat environments to refine security strategies and artefacts. Assurance • Validate IT infrastructure and reference architectures for security best practices and recommend improvements. • Ensure proper security configurations for infrastructure tools such as firewalls, IPSs, WAFs, and endpoint protection systems. • Facilitate threat modelling for services and applications tied to organisational risks. • Maintain accurate inventories of systems and applications logged in the SIEM. • Collaborate with DevOps to ensure secure coding practices and escalate risks as necessary. • Document sensitive data flows and recommend security controls, including encryption and tokenization. • Review network segmentation and ensure least privilege for network access (Zero Trust). • Support testing and validation of internal security controls and assess emerging security technologies. Collaboration • Partner with vendor management to conduct security assessments of vendors, including SaaS, IaaS, MSPs, and payroll providers, ensuring adequate protections in contracts and SOWs. • Coordinate with operational and facility management teams to assess the security of operational technology (OT) and IoT systems. • Liaise with architects and practitioners to share best practices and insights. • Work with the business continuity management (BCM) team to validate security practices during failover operations. • Participate in application and infrastructure projects to provide security-planning guidance. • Collaborate with the internal audit team to evaluate the design and effectiveness of security-related controls. Role-specific knowledge, skills & experience: Educated to degree level or equivalent Five to ten years experience in IT Security roles Experience of working in similar enterprises to Morrisons with large technological footprints Proven experience working and defining Security Reference Architectures and within large programmes Experience driving Security Strategies and Initiatives in large enterprise Experience working with cloud vendors (AWS, GCP, Azure) and driving security policies and guide rails Experience working within a structured governance framework IT Security Qualification such as CISA/CISSP or BCS and PCI/ISA qualification Industry and Regulatory Experience The security architect is expected to have documented experience with the following: Regulations, Standards and Frameworks Payment Card Industry Data Security Standard (PCI-DSS) General Data Protection Regulation (GDPR) and Privacy Practices ISO 27001/2 Knowledge of OWASP 10 NIST Cybersecurity Framework (CSF) CIS and Benchmarking By joining Morrisons, you not only become an essential asset to our success but also open doors to a future where your professional journey aligns with the scale and diversity of our thriving business. It's not just a job; it's a pathway to a fulfilling and progressive career within one of the UK's leading retailers. We want all colleagues to be able to bring their best selves to work, you can expect to enjoy (Just to name a few): 4 and half day work week Flexible remote working options 15% colleague discount in stores and online, plus an additional 10% card for a friend or family member Annual bonus scheme Generous holiday entitlement Company pension contributions Private healthcare Perks with over 850 retailers Free onsite parking If you're interested, please apply with your CV or alternatively contact me directly on jessica.2.kaur@morrisonsplc.o.uk

Bradford, United Kingdom

On site

Full Time

12-05-2025

Company Name: Perenco
Job Title: Network Technician
Job Description: This is an exciting opportunity to join our IT Department based in Norwich. This is an essential support position providing an active and practical resource providing support for 24/7 onshore and offshore operations for a UK Operator. The role will manage and support a variety of systems, working daily to troubleshoot, monitoring your environment, installing, configuring, cabling and labelling, seeing jobs through from start to finish. Strong practical network skills rooted in IP are essential, along with hands-on firewall, security and VoIP experience. You will need to be flexible in your approach, seek opportunities for continual improvement and think outside of the box to comply with all relevant cybersecurity guidance and regulation. The role will work with and support members of the Group Network Team based in Paris and support from various UK sites. This is a full-time role based out of Norwich with frequent travel to UK Operational sites including offshore assets. You may be called on for out-of-hours business critical events and form part of an on-call rota. Key Responsibilities Include: • Assist in the design, implementation, and management of network infrastructure to ensure optimal performance and security. • Use the Perenco IT Helpdesk system to receive requests and carry out troubleshooting and changes to the network in line with Perenco Group methodology. • Configure and maintain network devices such as routers and switches • Monitor network performance and troubleshoot issues to ensure minimal downtime. • Liaise with Group Network and IT department for 3rd line escalation. • Liaise with WAN service providers for installations and issues. • Ensuring assets are recorded correctly in our Equipment database. • Managing backups and spares. • Testing and performing recovery. • Maintain accurate documentation of network configurations, changes, and procedures. • Supporting the offshore Telecoms team with equipment failures and replacement preparations. • Preparing equipment for shipping offshore. • Liaise with Telecoms team regarding radio links between sites which carry the network. • Provide technical support and guidance to end-users and other IT staff. Requirements: Qualifications: • Cisco CCNA or higher Experience: • Proven experience as a Network Technician or similar role. • Strong knowledge of network protocols, routing, and switching. • Experience with network security practices and technologies. • Proficiency in configuring and managing Cisco network devices. • Excellent analytical and problem-solving skills. • Strong communication and interpersonal skills. • Ability to work independently and as part of a team. Personal Attributes: The ideal candidate will be self-motivated, have an excellent work ethic, be focused and meticulous. Flexibility is essential, an ability to think out of the box and push their ideas forward. They need to love what they do, be curious with each issue and strive to find the best solution. This a very practical role, the more hands on the better! Benefits: At Perenco we value and reward our people, offering competitive salaries and a wide range of benefits including: • Discretionary Bonus • Private Medical Insurance & Dental Cover • Flexible Benefit Allowance • Life Assurance • Excellent Pension Provision • 25 days holiday + bank holidays • Flex Days • Profit ‘Units’ Sharing Scheme

Norwich, United Kingdom

On site

Full Time

09-05-2025