information security analyst

At polkadotfrog, we are looking for an individual who is passionate about information security and has the ability to assess threats, risks and vulnerabilities, highlighting and responding to those that are relevant to the business.

This Information Security Analyst, works within the IT services team which provides support to over 600 internal customers and also responsible for developing, installing and maintaining a wide range of services to support business systems and processes.

 

Responsibilities:

  • To research and maintain an up to date awareness of information security, focusing on new or revised security solutions, security processes and the development of attacks and threats
  • To assess threats, risks and vulnerabilities relating to emerging security issues and highlight those that are relevant to the business
  • To recommend information security solutions or improvements to existing security solutions to support continuous improvement
  • To conduct and coordinate perimeter and internal security assessments via in house and third-party penetration tests and vulnerability scanning, highlighting security threats
  • To handle security incidents, undertake root cause analysis and prepare security incident reports, escalating incidents and advising users as required
  • To contribute to IT projects, provide information security advice to colleagues throughout the business and carry out security reviews as required
  • To create and maintain security policies and procedures
  • To perform event and log monitoring and analysis to identify and highlight information security risks to the business
  • To maintain an up to date awareness of Apple iOS and Google Android OS releases, carry out security reviews and testing prior to enterprise wide adoption
  • To be responsible for the administration of anti-virus and web filter services
  • To assist with obtaining and maintaining ISO27001 and ISO22301

Requirements:

  • Educated to degree level 2:1 or higher (computer science or a related subject)
  • Proven experience of security, network or UNIX administration
  • Demonstrate the ability to understand security threats and determine business relevance
  • Experience of maintaining information security for on premise and cloud based services
  • Excellent technical knowledge and a passion towards technology
  • Capable of working to defined procedures
  • Willingness to support all areas of the IT services user base as required
  • Excellent communication, documentation and interpersonal skills
  • The ability to work well within a small team, with excellent organisational skills