Senior Information Security Analyst

Senior Information Security Analyst required Microsoft for implementation project. The role will be focused on technical Azure Cloud and M365 security assurance.

Key Job Responsibilities:

• Provide security SME expertise in the areas of cloud security on Azure and Microsoft 365, including both security and compliance controls and general input to the security architecture across the cloud estate.
• Perform technical security risk assessments, followed by initiating and managing appropriate remedial action, to ensure that IT infrastructure and application systems are adequately protected.
• Provide SME expertise in the integration of information security operations into the wider IT service management model, enabling timely and effective collaboration that facilitates delivery of an effective SecOps model.
• Identify technical risk management approaches for cloud-based and managed services.
• Undertake the initial remediation of security exposures, escalating unresolved exposures or non-compliance to management.
• Manage stakeholder queries with a trustworthy, methodical, and timely approach.
• Lead  technical risk assessment on projects and other formal workgroups, making recommendations for security design and mitigation of risk to ensure that IT and information security is considered in the design of new services or changes to existing services.
• Act as a subject matter expert in the use of security tooling to identify, mitigate, and contain information security incidents.
• Ensure that processes and guidance reflect industry best practice and developments and balances risk management with operational effectiveness.
• Assist with the management of ISMS, coordinating the updates to and approval of policies and standards.
• Support the Information Security Manager in completing all tasks necessary to meet regulatory, legislative and audit requirements such as PCI-DSS, GDPR, Swift, FCA/PRA etc.
• Support the information security team in day-to-day activities including security monitoring and incident management activities.

We seek individuals from a diverse talent pool and encourage applicants from underrepresented groups to apply to our vacancies. Our commitment to fair recruitment processes means that we welcome applicants from all backgrounds, regardless of their lived experience or personal characteristics. We also invite applicants who meet most of the listed requirements, even if not all, to apply. If you require any adjustments to the application process, please let us know.

Barclay Simpson acts as an Employment Agency for permanent positions and an Employment Business for temporary/contract engagements.