We currently have a fantastic opportunity for a Security Analyst to join our dedicated team!
The main purpose of this role is to protect esure's information systems and networks from security breaches and cyber threats by responding to security events, conducting improvements and assessments.
What will my role entail?
- Monitoring and Analysis: Continuously monitor security systems and analyse potential threats and vulnerabilities to the organisation’s information systems. Use security and network tools to identify and categorise incidents.
- Incident Response: Take timely action in the case of a security breach. Work within the SecOps Team to contain and remediate security incidents and conduct post-incident analysis to identify root causes and recommend preventive measures.
- Security Tooling: Maintain and update security operation tooling to improve threat detection
- Threat Intelligence: Keep up to date with the latest intelligence on cybersecurity threats, including malware, ransomware, and phishing tactics, to pre-empt potential attacks.
- Reporting: Build reports detailing incidents, trends, and the overall security health of the organisation.
- Runbook and Policy Development: Contribute to developing security policies and runbooks, and assist in conducting regular audits to ensure compliance.
- Collaboration: Work closely with service providers and other departments to ensure network, system, and data security.
- Training and Education: Provide advice and training to staff to raise awareness of information security and promote good security practices.
- Supplier Assurance: Evaluate the posture of esure suppliers by evaluating the responses to third-party security questionnaires.
- Standby and Callout: Provide out-of-hours support as part of a standby rota for high-priority alerts and incidents outside of business hours.
- Continuous Improvement: Recommend and implement new cyber initiatives to evolve Esure's cyber capability.
You are a good fit for the role if you possess the following…
- Experience working in a Security Operations team handling security incidents and associated tooling plus prior extensive experience in IT support or related roles
- A passion for cyber security and technology
- Knowledge of various security methodologies, processes, and technical security solutions (Crowdstrike, Netskope, Zscaler, SIEM, Mimecast, O365).
- Knowledge of TCP/IP Protocols, network analysis, and network/security applications.
- Solid understanding of the threat landscape, with knowledge of threat actors, TTPs (Tactics, Techniques, and Procedures), and threat intelligence sources.
- Experience managing security incidents
- Strong analytical and problem-solving skills
- Excellent communication skills, both written and oral, with the ability to communicate security-related concepts to a broad variety of technical and non-technical staff.
- Hands-on experience with AWS, Azure, plus Windows and Linux operating systems
- CompTIA Security+ qualification or similar
We also strongly encourage you to apply if you have:
- Familiarity Data Leakage Prevention strategies
- Exposure to at least one programming/scripting language e.g. Python
- We’ll help you gain…
- Professional growth and progression opportunities include roles such as Security Operations Lead, Security Engineer.
- Further education, certifications, and experience will open up opportunities as a DevSecOps Engineer and Security architect
This is your opportunity to shape our game-changing journey and be part of something truly special! And to top it off, here are some perks to life at esure…
- A competitive salary that recognises your skills and potential
- A bonus scheme that celebrates your contribution to esure’s success
- Discounts on our insurance products, for you and your family
- 25 days annual leave, plus 8 flex days to be taken as and when suits you
- Benefits just for you: our hub – My Benefits Box – is loaded with perks to choose from, so you can build a personal toolkit to support your health, wellbeing, lifestyle, and finances.
- Grow your career with us: whatever your goals, we’ll support you with hands-on training, mentoring, a LinkedIn Learning licence, access to our exclusive Academies, regular career conversations, and expert partner resources from the likes of Women in Data and Women in Tech.
- Join our communities: our networks give you the chance to connect, learn and share with like-minded colleagues across the business – for work and play. So, it’s no surprise our people consistently rate ‘making friends at work’ one of the highest scorers in our colleague engagement survey
- Live a healthy lifestyle: we offer lots of support, so you feel like the best version of yourself – like specialist advice through our employee assistance programme, wellbeing classes, access to the My Health Advantage app, our Big Team Challenge, and learning sessions on topics like menopause.
- A helping hand to do your bit for a greener and safer world: driving good in the world couldn’t be more important to us. That’s why we encourage colleagues to use volunteering days to support their local communities and have lots of initiatives to help you live a greener lifestyle.
- Everyday appreciation: praise from your colleagues means the world! Our social recognition tool makes it easy to give colleagues the praise they deserve, and you could even be shortlisted for a company-wide ACE Award.
We understand some people may not apply for jobs unless they tick every box. If you are excited about joining us and think you have some of what we are looking for, even if you’re not 100% sure we would love to hear from you.