Job Responsibilities
- Undertake efficient, effective and proactive day-to-day cybersecurity operations to minimise the risk of a security incident, enabling the firm to do business.
- Maintain the capability to react and respond to incidents in an effective and timely manner, minimising their impact to the firm.
- Undertake routine monitoring of security alerts generated by systems and consumed by the cybersecurity team, investigating, analysing and responding to them as required.
- Co-ordinate and undertake regular reviews of security tools to ensure they are maintained in a fully operational state across all in scope assets and are tuned to incorporate new features or changes to the operational environment.
- Co-ordinate and undertake threat modelling to identify and analyse potential security threats, and ensure the necessary controls are in place to manage the threat and associated risks.
- Co-ordinate and undertake regular threat hunting, analysing logs and event data across the firms' systems, and procuring threat intelligence to inform the hunts.
- Conduct risk assessments and recommend security improvements.
- Manage penetration testing activities conducted by third party testers and any remediation activities required.
- Oversee and drive vulnerability management activities with the technical systems owners.
Skills Required
- 5+ years' experience in cybersecurity within a legal or professional services environment.
- Strong understanding of network and end point security, incident response, threat intelligence, and vulnerability management.
- Experienced with security tools such as SIEM platforms, EDR/XDR solutions, firewalls, IDS/IPS.
- Strong knowledge of Microsoft Azure cloud security technologies and concepts.
- Familiar with cybersecurity frameworks such as NIST CSF, ISO27001, CIS Controls.
- Knowledgeable on security and data protection legislations and regulations, and the security requirements resulting from them.
This role offers hybrid working - 2 days WFH weekly.