Information Security Analyst

To be part of PA Group Systems Security Operations Centre team, providing in-depth analysis of internal security intelligence and external security view

The Information Security Analyst will:

• Review daily security system logs and alerts - Firewall/Intrusion Detection System/Data Leak Prevention/Endpoint Detection and Response – and identify security issues.
• Provide insight into the countermeasures PA should adopt and generate key performance indicator metrics for the security board
• Works as a technical resource in security related projects
• Perform forensic analysis as required
• Working with operational teams, ensure vulnerabilities are resolved
• Review security bulletins for threats. Liaise with key security firms reviewing threat reports.
• Provide out of hours On-Call availability and response to high severity incidents (usually 1 week per month – paid)

Accountabilities and Measures of Success

50%

Accountability:
Review daily security system logs, maintain logging system policies, and resolve incidents.

Measure of Success:
Security issues are dealt with quickly and PA’s threats are managed effectively.

25%

Accountability:
Input into PA IT security controls/countermeasures and generate key performance indicators.

Measure of Success:
Controls are more aligned with PA’s risk and help consultants be more effective.

10%

Accountability:
Work as a technical resource within identified security projects.

Measure of Success:
Timely recommendation of security technology that works for PA.

10%

Accountability:
Review bulletins from key suppliers and take appropriate action. Review leading security company threat reports.

Measure of Success:

• PA is informed of the latest threats.
• Operational teams are informed of any actions needed, with follow-up to ensure coverage.
• Key stakeholders are aware of relevant security threats and controls are made appropriate.

5%

Accountability:
Manage external penetration testing results and, working with operational teams, ensure vulnerabilities are resolved.

Measure of Success:

• Operational teams are informed quickly of vulnerabilities and their resolution priority.
• Senior managers are informed of the status.

Additional Responsibilities

• Work closely with the SOC Manager and Director of Cyber Security.
• Work with GS operational staff who require assistance with technical security issues.
• Interface with the rest of Group Systems on new projects/support functions undertaken.
• Liaise with the Head of Security.
• Liaise with consultants and other corporate functions.
• Provide clear messages around security to different levels of stakeholders, from technical staff through to senior managers.
• Apply investigative and intelligence analysis to security information and alerts from different sources, and provide convincing answers to IT security-related issues.
• Use experience to provide 4th line support with the ability to increase knowledge across GS and PA.