Security Analyst, AVP

Join us as a Security Analyst

• We ll look to you to assess, triage, and respond proactively and effectively to security related threats, incidents, requests, and events
• The work you do will be vital in defending our assets, information, and systems from unauthorised access, use, disclosure, disruption, modification, perusal, inspection, recording, or destruction
• Collaborating with internal and external stakeholders including third party suppliers, you ll ensure activities relating to incident response, user access, alert monitoring, root cause analysis, and scenario planning are completed in line with standard operating procedures and to a high standard
• This role is available at associate vice president level

What you ll do

Working with an array of domains, stakeholders, and specialists, you ll take a proactive role to anticipate and identify security events, incidents, and trends that could adversely impact the bank, our customers, employees, or assets.

You ll contribute to security operations including production support, incident response, and on-call rota, and you ll carry out and contribute to root cause analysis on security incidents and events, conduct training and scenario planning to prepare for and anticipate future events. As such, you ll minimise future reoccurrence, and prepare reports and briefings as needed and to a high quality. You ll also develop and maintain response plans, procedures, and playbooks to increase consistency and effectiveness of response capability.

As well as this, you ll:

• Proactively identify and effectively manage risks to deliver key security related customer and compliance outcomes, escalating and driving actions as necessary
• Actively contribute to security operations such as production support, incident response and on-call rota
• Maintain the end-to-end security response as directed, and ensure that security related services are delivered in line with expectations and that process change is implemented smoothly
• Act with pace when responding to customer queries and complaints and when responding to security events, make sure that feedback loops are in place to learn how to improve service and response
• Interrogate and interpret large volumes of data and analyse and assess data to understand trends and causal factors

The skills you ll need

We re looking for someone with a passion for cloud security and automation using Agile and DevOps methodologies, as well as promoting shift-left culture, which integrates security analysis into each CI/CD stage. You ll have experience with Azure Cloud and security stack including Defender, Azure Sentinel and Azure Security Centre. You ll also have expertise in automated security assessments and familiarity with third-party security tools integration such as Qualys and Tenable and compliance standards like PCI-DSS.

In addition to this, you ll demonstrate:

• Experience and knowledge of security controls
• The ability to communicate technical issues in business terms to range of stakeholders
• Experience in penetration testing and vulnerability management
• An understanding of Agile methodologies with experience of working in an Agile team

Hours

Job Posting Closing Date: