IT Security Analyst

Job title: IT Security Analyst

Division / Team: IT

Location: London

About Withersworldwide:

Withersworldwide has been acting for successful individuals, businesses and institutions for 125 years. We advise clients on their business, personal and philanthropic needs both at home and abroad. In this fast moving and increasingly regulated world the need for integrated and timely advice has never been more urgent.

We are recognised as the leading international law firm for successful people. With offices in Europe, Asia, the United States and the Caribbean we provide coverage across the world that other law firms focussed on the individual cannot. We have represented 70% of the Top-100 ‘Sunday Times Rich List’, as well as a significant number of people listed in the US (Forbes) and Asian (Hurun) Rich Lists.

The firm consists of three global legal Divisions: Business; Dispute Resolution and Private Client & Tax. Each Division is headed by a Divisional CEO and Divisional Operating Officer, working with the CEO of the global firm.

What are we looking for?

We are looking for an experienced IT Security Analyst who has strong experience analysing the security of business data to identify and investigate security events or abnormal behaviours from various applications. Along with the day to day responsibilities, the position is also expected to support the increasing due diligence responses which has recently seen a sharp increase. You will also need to be able to provide support around the clock 365 days a year, in support of increased testing capacity and addressing external and internal vulnerabilities in connection with the application patching and support. You will need to be self-sufficient within your daily duties and be comfortable working with senior members of the firm, IT system team and 3rd party vendors.

This role requires experience of working in a medium to large multi-site professional services organisation and broad experience of legal industry applications.  Strong written and verbal communication skills are required with the ability to work with a wide range of people including vendors, project managers, technologists, legal staff, partners, secretaries and other support staff.

A very high level of personal organisation and professionalism is required, together with a 'can-do' attitude and an ability to work to tight deadlines and under pressure.  This person must inspire a positive work environment and help champion quality, innovation, teamwork and service to the business.

Technical experience required

• 4+ years of experience in information/cyber security or related technology areas.
• Cyber security knowledge, with a focus on one or more of the following operational security areas; Security monitoring and alerting, vulnerability management, detection and response or incident response.
• Hands on experience with security tooling such as cloud protection, end point protection, SIEM and behavioural analysis solutions (monitoring, Use Case development and content creation, upgrades and troubleshooting).
• Knowledge, understanding and application of cyber-attack frameworks e.g. MITRE ATT&CK.
• Some understanding of cyber security standards and frameworks would be useful
• Knowledge in one or more of the following is desirable:
  • ·       Digital Investigations
  • ·       Threat Intelligence
  • ·       Malware Engineering
  • ·       Incident Response/Incident Management
• Qualifications such as CISSP, CEH, OSCP or from GIAC, CREST, CompTIA or equivalent are desirable.
• Most important is having a desire to learn and develop your skills while helping our clients be secure, performant and resilient

Areas of focus and responsibilities

• Plan, identify and implement security measures and controls
• Protect digital files and information systems against unauthorized access, modification or destruction through business project interaction and support
• Maintain data protection and monitor security access
• Manage intrusion detection and prevention systems and other related security applications
• Analyse security breaches and alerts to determine their root cause
• Assist with vendor due diligence in the area of security
• Assist in representing security at the change advisory board meetings
• Write documentation in support of gaps identified in internal policy and process
• Input on security in disaster recovery and business continuity processes
• Respond to internal queries
• Assist with internal security and awareness including support of internal phishing activity
• Perform audits to ensure IT compliance with security controls, policy or procedure
• Provide advisory input on security in connection with project management office programme activities
• Ensure that the housekeeping and administration of systems are carried out in accordance with the firm's policies and procedures
• Ensure security is maintained in line with the Firm’s security standards
• Assist with support on GDPR, in particular with support on Subject Access Requests
• Establish and maintain contact with colleagues in all offices to ensure that a consistent approach is being adopted across the firm
• Continually maintain and expand strong working knowledge of current Firm-supported and future technologies to provide technically accurate security solutions

This list of duties and responsibilities is not exhaustive.  It is intended to describe the general content and requirements for the performance of this job and, as such, the role may include the undertaking of additional tasks as required.

The Essentials

• 9.30am to 5.30pm but out-of-hours flexibility is a must to provide round the clock support as part of the security team. This includes being contactable out-of-hours if needed for incident investigation and response
• 12 week probation period
• 12 week notice period
• Flexible benefit package including pension, private medical insurance, dental plan, season ticket loan, subsidised gym memberships, lifestyle discount scheme, the ability to buy and sell holidays, flu jabs, doctors consultation service, cycle to work scheme, on site café plus more

Information for Recruitment Agencies

We endeavour to recruit and fill vacancies directly. However, when we do need to engage with agencies, we operate a preferred supplier list ('PSL') and will not be accepting unsolicited applications from non-PSL agencies for this role.

Equal Opportunities Employment Statement

It is our policy to provide equal opportunities for all employees/prospective employees in relation to recruitment, training and promotion.  Decisions in these areas will be made only by reference to the requirements of the job and shall not be influenced by any consideration of ethnic origin, religion, sex, age, sexual orientation or disability.