Security Analyst

Job Title: Security Analyst

Job Location: London, UK

Contract Duration: 12 Months FTC

Work Mode: Hybrid.

The Security Analyst will support the project by analyzing security data, identifying vulnerabilities, and assisting in the implementation of remediation measures. The analyst will work closely with the security team to monitor threats and ensure the effectiveness of security controls.

Key Responsibilities:

Leverage log data available in Azure Log Analytics and audit existing configurations to understand the current landscape with regards to lateral movement and areas where risks can be reduced.

Monitor and analyze network traffic to identify potential security threats and lateral movement activities.

Conduct vulnerability assessments and penetration testing to identify weaknesses in the network.

Assist in the development and implementation of security controls to mitigate risks associated with lateral movement protocols.

Collaborate with the security team to investigate and respond to security incidents.

Maintain and update security documentation, including policies, procedures, and incident reports.

Stay informed about the latest security threats, vulnerabilities, and mitigation techniques.

Qualifications:

Bachelor's degree in Cybersecurity, Information Technology, or a related field.

At least 3 years of experience in information security, with a focus on network security and analysis.

Strong knowledge of malicious lateral movement techniques and mitigation strategies.

Experience with security tools and technologies (e.g., SIEM, IDS/IPS, vulnerability scanners, host-based firewalls).

Excellent analytical and problem-solving skills.

Relevant certifications such as CEH, CompTIA Security+, or GIAC are highly desirable.

Previous job roles that may indicate success include Network Security Analyst, SOC Analyst, and Penetration Tester.

Skills Required:

Windows administration skills.

Experience with Azure Log Analytics, KQL, and Azure Alerts.

Python, Shell, and PowerShell scripting.

Protocol analysis.

Firewall/IPS/IDS engineering.

Knowledge of Active Directory and Azure AD.

Familiarity with SQL Server security and Linux systems