Home
Jobs
Reed
Information Security Officer

Information Security Officer

Hybrid

Newport, United Kingdom

£ 47,500 / year

Full Time

04-12-2024

Share this job:

Score my CV

Job Specifications

Information Security Officer
Location: Newport, South Wales
Job Type: 37 hours Monday to Friday
Salary: Starting at £41,446 rising to £47,365
We are seeking an Information Security Officer to assist with the coordination and support of security duties across IT and Cyber project initiatives. This role is crucial in ensuring that IT projects adhere to security policies, secure architecture principles, and regulatory cyber assessment frameworks. The ideal candidate will provide expert advice and manage information security risks effectively.
Day-to-day of the role:
Support Information Security activities across all non-CAF based IT projects.
Deliver security artifact requirements for each IT Project quality gate.
Document and log security assessments, including arranging penetration tests and code reviews for ongoing and new projects.
Report on all security incidents and risks identified within IT projects.
Evaluate and coordinate tickets assigned to the security team within the IT ticketing system.
Log and manage any control defects or failures identified via the SecOps ticket tracking system.
Provide security support to other projects and ongoing programmes of work, both planned and ad hoc.
Support the review and improvement of existing systems’ security operations capabilities.
Required Skills & Qualifications:
Passionate about information security with a proactive approach to improving security posture.
Strong understanding of cloud concepts, especially hybrid cloud environments. Experience with VMWare and Microsoft Azure is essential.
Familiarity with project management methodologies such as Waterfall, Agile, and PRINCE2.
Knowledge of cyber attack modelling, endpoint detection, threat management products, and network security.
Strong commercial acumen and the ability to translate between technical and business language.
Knowledge of information security control and compliance standards such as NCSC CAF, ISO27002, IEC17789, CIS CSC, and NIST CSF.
Understanding of CSIRT and incident response processes. Experience with Microsoft Defender products and Microsoft Sentinel is advantageous.
Qualifications:
CISMP (Essential)
SC-900, AZ-900 (Essential)
CISM (Advantageous but not essential)
SC-200, SC-300, SC-400, and AZ-500 (Advantageous but not essential

About the Company

Reed is the largest family-run recruitment business in the world and we’ve been improving lives through work since 1960. We have the UK's largest candidate database, expertise in 20 specialist sectors and offer the longest guarantees on the market. We’re a pioneer of specialist recruitment services and our experts work with more than 30,000 organisations in the UK to fill their temporary, permanent and interim positions. For more information on our services, jobs and industry insight, visit Reed.com Know more

Related Jobs

Company Name: Inspired Thinking Group (ITG)
Job Title: Security Analyst
Job Description: We are looking for an enthusiastic and detail-oriented entry-level Security Analyst to join our growing information security and data protection team. This is an ideal opportunity for someone starting their career in information security and data protection. The Security Analyst will perform fundamental security and data protection tasks under the supervision of more experienced team members. You will assist in conducting security and data protection assessments, supporting vulnerability management, reviewing security configurations, and contributing to the development of security and data protection policies. The ideal candidate is eager to learn and grow within the information security and data protection fields while contributing to the team's efforts to protect our organisation's data and IT infrastructure. This is a full-time position. Occasional after-hours work may be required for incident response or urgent security tasks. Successful candidates will be enrolled on a fully funded Level 4 Cyber Security Risk Analyst apprenticeship and will be provided with mentoring support to help you grow and learn. Upon successful completion of the level 4 qualification, it is anticipated that you will be able to progress to a Senior Analyst role and continue on to a fully funded level 6 Cyber Security Risk Analyst apprenticeship. Responsibilities: 1. Support in KPI Reporting & Metrics: Assist in gathering data and preparing reports on security and data protection KPIs. Help track trends and assist in identifying security and data protection issues based on metrics. 2. Assist with Security Assessments: Support senior analysts in conducting risk assessments, managing vulnerability scan results, and other security and data protection assessments Help document findings and provide input into the risk mitigation process. 3. Contribute to Policy & Standards Development: Assist in researching and drafting security and data protection policies, procedures, standards, and guidance. Help review and update existing policies under the guidance of senior team members. 4. Configuration Reviews Support: Help review system configurations to ensure alignment with security and data protection best practices. Assist in documenting configuration settings and potential security and data protection concerns. 5. Vulnerability Remediation Assistance: Support the vulnerability remediation process by tracking open vulnerabilities and following up on remediation progress. Help maintain records of vulnerabilities and remediation activities 6. Incident Response Support the incident management leads, helping to coordinates the response to security incidents, including data breaches, system compromises, or attacks 7. Application Security Work with development teams to embed secure coding practices Conduct regular security assessments of the company's software, including the proprietary products sold to clients. 8. Collaboration & Communication: Help internal teams with security and data protection inquiries and guidance under supervision. Participate in ongoing security and data protection awareness and training initiatives Requirements Level 3 qualification in Information Technology or a related field, or equivalent experience 0-2 years of experience in cyber security or a related IT role CompTIA Security+, Cisco CCNA, CISMP, or other entry-level certifications are preferred, but not essential Familiarity with basic security concepts, tools, and technologies (e.g., SIEM, firewalls, vulnerability scanners) Basic understanding of network security and operating systems Willingness to learn and grow in the cybersecurity field. Ability to work autonomously and manage multiple tasks simultaneously Strong analytical, investigative, and problem-solving abilities The adaptability to do a range of work, sometimes complex and non-routine, in different environments The ability to work under direction, use discretion, and determine when to escalate issues Strong written and verbal communication skills, with the ability to interact effectively with both technical and non-technical stakeholders Benefits Work's a treat! On top of a competitive salary, you can expect a whole load of perks: 25 days' holiday + bank holidays - we understand the importance of you getting some down time. Annual Wellbeing Day - enjoy an additional day on us to look after your physical and mental wellbeing. Pension Scheme - helping you save towards your retirement home in the sun! Corporate Medical Cash Plan - claim back the cost of your medical treatments. Smart Working Options - spend up to 40% of your working week from home. So many savings - through our online community platform, you can access dozens of daily deals, from money off top brands to discounts on days out. Employee Assistance Programme - our people are at the heart of everything we do, so if you're happy, we're happy. Cycle to Work Scheme - save on the cost of biking to work. Monthly Employee Awards - Employee of the Month programme with £250 bonus Raising money for charity including a paid Volunteer Day - we're all about giving back... and having lots of fun in the process! Referral scheme - know the perfect person to join the team? You could bag £1,500 for a putting a good word in. Wellbeing Programme - giving you the opportunity to join regular, interactive Wellbeing Workshops or join our 30 plus Wellbeing Champions. Enhanced Family Friendly Leave - support for you and your family to help you navigate through the craziness of family life We Value Diversity We champion and welcome diversity in our workforce and ensure all job applicants receive equal and fair treatment, regardless of age, race, gender or gender identity, religion, sexual orientation, disability, or nationality. We are not only committed to increasing the visibility and recognition of talent from under-represented groups within our organisation, but the wider industry too. At the end of the day, we make sure we take time to look after ourselves, each other, and the planet, because we're always stronger together. ITG have a number of community groups (ERGs) available to employees which offer a safe space for like-minded colleagues, with shared interests to connect, socialise and check in with each other. These include Black ITGers Together, LGBTQ+ Together, Mens Health Together, Muslims Together, Neurodiversity Together, Working Parents and Carers Together and Women In Tech Together. What next? If you found yourself interested in knowing more, drop us your application and someone from our team will be in touch.

Birmingham, United Kingdom

On site

Full Time

24-12-2024

Company Name: Exalto Consulting
Job Title: Cyber Security Analyst
Job Description: Cyber Security Analyst - Manchester Do you thrive in a fast-paced environment, protecting critical IT infrastructure against the ever-evolving threat of cyberattacks? Are you eager to make a real difference in safeguarding digital systems, data, and processes? If so, we invite you to join our innovative and proactive team, committed to delivering the highest standards of cybersecurity. About the Role As a Cyber Security IT Analyst, you will take a central role in securing a complex and evolving digital landscape. You will utilize cutting-edge technologies to monitor, analyse, and respond to potential threats while proactively identifying and mitigating risks to ensure robust digital defences. This role demands a combination of technical expertise, strategic thinking, and effective communication to protect sensitive information and systems. What You'll Be Doing Monitoring and Incident Response: Use advanced tools, such as SIEM platforms, Firewalls, and intrusion detection systems, to detect and respond to threats in Real Time. Risk and Vulnerability Management: Conduct comprehensive vulnerability assessments and coordinate external penetration testing to identify and address potential weaknesses. Incident Investigation: Lead forensic investigations into security breaches, analysing malware, logs, and network activity to uncover root causes and prevent future incidents. Policy Development: Create, refine, and implement cybersecurity policies, standards, and procedures in alignment with best practices and industry regulations. Collaboration: Work closely with IT teams and stakeholders to design and implement security solutions, ensuring alignment with organizational goals and compliance standards. Education and Awareness: Deliver training and guidance to colleagues, fostering a culture of security awareness and resilience across the organization. Continuous Improvement: Stay ahead of the curve by researching emerging threats, tools, and technologies to strengthen defences and enhance the organization's security posture. Who We're Looking For We're seeking an analytical thinker and problem solver with a strong understanding of cybersecurity technologies and practices. You'll need the technical expertise to handle complex challenges, combined with the communication skills to explain technical concepts to non-technical audiences. Essential Skills and Experience: Demonstrable experience in a cybersecurity role, particularly as a Security Analyst or Incident Responder. Proficiency with Microsoft security tools (Sentinel, Defender, Compliance Centre) and expertise in log analysis. Comprehensive knowledge of cybersecurity frameworks (eg, NIST, ISO 27001, CIS Controls). Strong understanding of network protocols, including TCP/IP, DNS, HTTP(S), and SMTP, as well as threat actor techniques like phishing, port scanning, and web application attacks. Familiarity with tools and methods for malware analysis, intrusion detection, and endpoint protection. Desirable Certifications: Certified Information Systems Security Professional (CISSP) Certified Ethical Hacker (CEH) Certified Information Security Manager (CISM) Additional Requirements A valid UK driving license and access to a vehicle for occasional travel. Willingness to travel to various locations as required. This role requires a higher level of security vetting.

Manchester, United Kingdom

On site

Full Time

23-12-2024

Company Name: Project People
Job Title: Site Assurance & Security Manager - Telecoms
Job Description: Great role working for a high profile telecoms company that have great benefits which include a bonus scheme and very generous holiday allowance. The role will be leading and managing all Physical security and site access assurance for this companies passive estate. Provision of site-level security management, including overseeing the use of additional security measures such as addition of smart locks, provision of keys and BAU lock management. Management of the digital access permit system, along with strategic governance, is specifically targeted at areas of supplier delivery and operational management to ensure business objective delivery and compliance. Work as part of a team to provide support to ensure the timely and accurate updating of access records and ensure accessissues are resolved within SLA's and in accordance with OLA's, to ensure maximize service availability and qualityand Site Provider issues are professionally managed to mutual resolution. Experience needed: Telcoms Network infrastructure experience Health and safety experience and the understanding of the links to the access system Access management and Security Experience Strong planning and organisational ability to prepare and anticipate well in the face of change Knowledge of digital access permit systems Project People is acting as an Employment Agency in relation to this vacancy.

Reading, United Kingdom

On site

Full Time

20-12-2024

Company Name: Dynamic Search Solutions
Job Title: Network Operations Center Engineer
Job Description: 1st Line Network Engineer – Exciting Opportunity in Software-Defined Networking Must be within commutable distance to Leeds and eligible to live and work in the UK Position: 1st Line Network Engineer Location: Leeds Shift Pattern: 24/7 NOC – 4 days on, 4 days off, 4 nights on, 4 days off Career Growth: Exceptional opportunities for career progression and professional development Are you passionate about networking and eager to advance your career in cutting-edge technologies? Work for a leading IT Service provider as a 1st Line Network Engineer, where you'll play a pivotal role in monitoring, supporting, and maintaining network services in a fast-paced, 24/7 Network Operations Center (NOC) environment. Why Join Us? Exposure to Software-Defined Networking (SDN): Learn and work with the latest SDN technologies and gain valuable hands-on experience. Career Progression: We’re committed to your growth. Our clear career path will help you advance into 2nd and 3rd line roles, specializing in areas like cloud networking, network security, and software defined networking. Continuous Learning: Access to training, certifications, and mentorship programs to enhance your technical expertise and accelerate your professional development. Your Role: As a 1st Line Network Engineer, you’ll: Monitor and manage network performance to ensure uptime and reliability of network environments Troubleshoot and resolve first-line technical issues efficiently. Escalate complex issues to higher-tier support teams when necessary. Collaborate with other engineers to deploy and support SDN solutions. Maintain detailed documentation of incidents and actions taken. Provide outstanding support to our clients while working in a 24/7 shift rotation. What We’re Looking For: Eagerness to Learn: You have a passion for networking and a drive to expand your technical skills. Team Player: You thrive in a collaborative environment and can communicate effectively with colleagues and clients. Technical Aptitude: Basic understanding of networking fundamentals (e.g., TCP/IP, DNS, VPNs) is required; certifications such as CCNA or CompTIA Network+ are a plus. Adaptability: Comfortable working in a 24/7 shift pattern and able to handle varying workloads. Growth Mindset: You’re ambitious, proactive, and ready to seize opportunities to advance your career. What We Offer: Competitive salary with shift allowances. Comprehensive benefits package, including healthcare and pension. A supportive and inclusive workplace culture. Structured career path with access to certifications and training like CCNA, CCNP, SD-WAN, and cloud technologies. Work on innovative projects with cutting-edge networking solutions. Career progression into more technical positions or leadership

Leeds, United Kingdom

On site

Full Time

19-12-2024