Cyber Security Analyst

Venesky-Brown’s client, a public sector organisation in Glasgow, is currently looking to recruit a Cyber Security Analyst for a contract until end of March 2025 on a rate of £450-£500/day (inside IR35). This role is remote working with occasional on-site presence in Glasgow.Responsibilities: Stakeholder Communication: Communicate effectively with stakeholders, providing regular updates on security posture and incident status. Security Operations: Manage and resolve cybersecurity tickets, taking the lead on high-priority security incidents, managing associated investigations, and providing expert advice and reporting. SME Role: Act as a Subject Matter Expert specifically focused on security operation controls, defining, and automating technical security policies across the security tool set, and monitoring technologies (Cloud Discovery, Cloud Hosting Security Monitoring, CASB, DLP, and data analytics). Define and track KPIs and metrics to measure the effectiveness of security operations. Technology Support: Support and enhance deployed security technologies, continuously evaluate business requirements related to cyber threats with a focus on continuous improvement of security processes and technologies and make recommendations for any new requirements. Collaborate with team members to develop enhanced monitoring using applied threat intelligence and sensor enrichment. Threat Management: Proactively identify, analyse, and mitigate cybersecurity threats by conducting threat intelligence gathering, monitoring security alerts, performing threat hunting activities, and coordinating with internal and external stakeholders to ensure timely response and remediation. Vulnerability Management: Proactively monitor security tools to identify and manage vulnerabilities, triaging and prioritising critical and high vulnerabilities, and work with stakeholders to ensure the remediation of cybersecurity vulnerabilities within Cyber Essentials Plus timeframes. Risk Management: Manage and coordinate ISO 27001 reviews and risk assessments for EIS and partner systems, reporting and tracking mitigating actions. ISMS Development: Contribute to the Information Security Management System, ensuring that security policies, processes, and procedures are updated accordingly. Certifications: Manage annual Cyber Essentials Plus recertification. Auditing and Compliance: Conduct regular audits to ensure compliance with security policies and Cyber Essentials Plus requirements. Project Assurance: Collaborate with project teams, advising on cybersecurity requirements for new projects and services, ensuring alignment with the ISMS. Supplier Collaboration: Work collaboratively with suppliers to ensure security requirements are met and continuous improvements and enhancements are deployed to keep pace with the ever-changing threat landscape. Reporting: Provide reports to the Security Council and partner governance forums, documenting and updating security policies, processes, and procedures in line with EIS ISMS. Research & Development: Implement continuous professional development to stay current with relevant legislation and regulations, ensuring organisational compliance. Additionally, keep up to date with emerging threats and technologies to maintain pace with the evolving cybersecurity landscape and recommend necessary updates to security practices and tools.Essential Skills: Technical Security Operations: Extensive hands-on experience in technical security operations. Technical Expertise: Significant hands-on experience in: Security operations, threat intelligence and detection, security assurance. Distributed systems/cloud computing security, Cloud Access Security Broker. Data Security: Data loss prevention, data and application security, user and data privacy. Technical Skills: Protocols and network security, cryptography services, Identity and Access Management. Policy Implementation: Experience in identifying and implementing security policies and controls with technical security tools. Microsoft Security Tools: Experience with Microsoft Sentinel, Defender Suite, Entra ID, O365, Intune, Purview, and Forcepoint. Education: Demonstrable work experience equivalent to SCQF level 9 or a degree related to Cyber Security and/or industry-recognized qualification such as CISSP, CISM, or ISO27001 Lead Auditor. Excellent written and verbal communication skills. Subject matter expert in Cyber Security. Ability to understand complex scenarios and produce timely, effective solutions. Strong influencing skills at all levels. Good understanding of IT-related laws and regulations. Knowledge and experience in creating and reviewing security procedures. Hands-on experience with Microsoft security toolset. Excellent stakeholder management skills with internal, partner, and 3rd Party Managed Service Providers. Leadership skills in driving security controls against cyber threats. Good analytical and problem-solving skills. Excellent attention to detail. Ability to work under pressure in time-critical situations. Innovative mindset, especially in finding cost-effective solutions. Proactive planning and ability to meet objectives with minimal supervision. Strong partnership skills for working with multiple stakeholders. Effective communication skills to explain the complexities of Cyber Security at all levels. Customer-focused approach with the ability to understand and resolve technical issues.Desirable Skills: Industry-leading Security Certification (e.G., CISSP, SSCP, CompTIA Security+, CompTIA CySA+). Certification in Microsoft Security or equivalent. Experience in DevSecOps positions for a leading Cloud Service Provider. Experience in an outsourced or SIAM IT environment. Experience in a public-sector environment with exposure to government cyber security practices. Good understanding of risk management, including risk concepts, risk assessments, and risk reporting. Knowledge of, or experience in working with digital teams in a DevSecOps role.If you would like to hear more about this opportunity please get in touch.