Senior Cyber Security Operations Analyst

McGregor Boyall are currently seeking to recruit a Senior Security Operations Analyst for our financial services client based in Edinburgh.

This is a permanent role and our client offers a great deal of hybrid working flexibility, not only that they will support you as you grow, develop and progress within your career.

This position is an integral part of the security operations team with the objective of continually testing and improving the security posture of the business.

This is a technical role and the purpose of the role is to provide continuous operational security improvements by coordinating penetration testing, issue remediation and day to day security posture upgrade.

The role will take a threat based approach and provide an attackers viewpoint by demonstrating weaknesses in security controls. The ability to clearly communicate these risks to stakeholders is essential.

Reporting directly to the Cyber Security Operations Manager, you will work together with the Leads in the Threat, Response & Defence capabilities as well as inputting in to the Engineering function.

Your key responsibilities will include (not limited to):

• Supporting incident response, as part of the CSIRT team for major incident
• Participating in change control processes, providing an SME guidance on operational changes to ensure BAU change does not reduce security posture
• Contributing to the security transformation programme and taking ownership of security issues requiring immediate remediation
• Working within governance forums such as ITIL change control or cyber security governance committee

To be considered for the role we would love you to have a mixture of the following skills and experience:

• Passion for security and self–development to keep up to date with the evolving threat and vulnerability landscape, new technologies and service improvements
• Understanding of cloud security principles, hands–on experience with Azure Security Centre and AWS Guard Duty is beneficial
• Industry recognised certifications, eg CEH, OSCP, CISSP or equivalent experience
• Experience managing enterprise penetration testing programs.
• Experience with security tools, such as SIEM, IDS/IPS, vulnerability scanners, AV, web and email filtering, webapp Firewalls and DDoS protections, host based protections and malware analysis
• Familiarity with common enterprise technologies eg Microsoft, Linux, VMWare, Citrix, etc.
• Able to work in an international Matrix organisation with complex and dynamic drivers and constraints

If this sounds like you and you want to work for a business that genuinely supports career progression, please get in touch for a confidential chat.

Sponsorship is not available with this role.

McGregor Boyall is acting as an Employment Agency in relation to this vacancy.