Job Title: Cyber Security Analyst
Location: London
Department: Technology
Permanent
Department overview:
Our Technology Infrastructure team operates globally and is responsible for every aspect of the firm's platforms. This ranges from our EUC/Office environments to Trading and Core service Co-Location Data Centres, and extends to Public Cloud, delivering top-tier technology services to a dynamic and demanding Trading organisation.
In addition to meeting the round-the-clock operational demands of the platforms, we continuously evolve and transform our platforms to maintain a competitive edge that our business requires. We innovate to provide valuable solutions and leverage our skilled Technology teams to deliver against rapidly changing business requirements.
Role overview:
The role is a unique opportunity working for a strong candidate to join a best in class Cyber program. This role requires working with and supporting stakeholders located globally in a dynamic environment where business and priorities will react to market requirements and trading priorities. Risk assessment, operational effectiveness and a strategic mindset are key whilst maintaining a pragmatic approach to balance security and operational priorities.
Threat Detection and Response: Manage and monitor security systems, investigate alerts, and conduct threat hunting/root cause analysis to identify and respond to threats.
Security Assessments and Compliance: Support on vulnerability assessments, penetration testing, and security audits to ensure compliance and mitigate risks.
Security Engineering and Architecture: Assist with the implementation of security solutions and review security architectures to improve overall security posture.
Security Awareness and Training: Develop and deliver security awareness programs to promote a security-conscious culture. Acting as a key point of contact for training and advice for staff.
Incident Response: Develop and maintain incident response plans to effectively handle security incidents.
Third-Party Risk Management: Assess and manage risks associated with third-party vendors to protect the organization.
Experience required:
Technical Knowledge:
- SIEM: Experience with SIEM & SOAR systems (e.g., Palo Alto Cortex, Microsoft Sentinel) for log monitoring and analysis.
- Incident Response: Knowledge of incident response processes, including containment, eradication, and recovery.
- Incident Remediation: Basic skills in digital forensics and malware analysis to analyse security incidents deeply and gather critical information.
- Threat Hunting: Proficient in detecting, analyzing, and responding to threats, vulnerabilities, and incidents.
- Vulnerability Management: Strong understanding of vulnerability assessment tools (e.g., Nessus, Cortex XDR) and experience in vulnerability identifying, prioritizing, and mitigate vulnerabilities.
Industry Knowledge:
- Framework: Familiarity with cybersecurity frameworks and standards (e.g., NIST, CIS, and MITRE ATT&CK).
- Automation: Basic knowledge of scripting languages (e.g., Python, Bash, PowerShell) for automation tasks and data analysis.
- Foundational: Expertise in fundamental network and system protocols.
BlueCrest is committed to providing an inclusive environment for its workforce. As an employer, we provide equal opportunities to all people regardless of their gender, marital or civil partnership status, race, religion or ethnicity, disability, age, sexual orientation or nationality.
