IT Security Analyst overseeing internal audits, security assessments, and compliance for CMC’s IT operations. Engaging in risk management and policy development while collaborating with cross - functional teams.
About the role
- Entry-level Security Analyst in charge of supporting security and data protection initiatives. Assisting the team in assessments, policy development, and incident response tasks.
Responsibilities
- Assist in gathering data and preparing reports on security and data protection KPIs.
- Help track trends and assist in identifying security and data protection issues based on metrics.
- Support senior analysts in conducting risk assessments, managing vulnerability scan results, and other security and data protection assessments.
- Help document findings and provide input into the risk mitigation process.
- Assist in researching and drafting security and data protection policies, procedures, standards, and guidance.
- Help review and update existing policies under the guidance of senior team members.
- Help review system configurations to ensure alignment with security and data protection best practices.
- Assist in documenting configuration settings and potential security and data protection concerns.
- Support the vulnerability remediation process by tracking open vulnerabilities and following up on remediation progress.
- Help maintain records of vulnerabilities and remediation activities.
- Support the incident management leads, helping to coordinate the response to security incidents, including data breaches, system compromises, or attacks.
- Work with development teams to embed secure coding practices.
- Conduct regular security assessments of the company’s software, including the proprietary products sold to clients.
- Help internal teams with security and data protection inquiries and guidance under supervision.
- Participate in ongoing security and data protection awareness and training initiatives.
Requirements
- Level 3 qualification in Information Technology or a related field, or equivalent experience
- 0-2 years of experience in cyber security or a related IT role.
- CompTIA Security+, Cisco CCNA, CISMP, or other entry-level certifications are preferred, but not essential.
- Familiarity with basic security concepts, tools, and technologies (e.g., SIEM, firewalls, vulnerability scanners).
- Basic understanding of network security and operating systems.
Benefits
- 25 days’ holiday + bank holidays
- Annual Wellbeing Day – enjoy an additional day on us to look after your physical and mental wellbeing.
- Pension Scheme – helping you save towards your retirement home in the sun!
- Corporate Medical Cash Plan – claim back the cost of your medical treatments.
- Smart Working Options – spend up to 40% of your working week from home.
- So many savings – through our online community platform, you can access dozens of daily deals, from money off top brands to discounts on days out.
- Employee Assistance Programme – our people are at the heart of everything we do, so if you’re happy, we’re happy.
- Cycle to Work Scheme – save on the cost of biking to work.
- Monthly Employee Awards - Employee of the Month programme with £250 bonus
- Raising money for charity including a paid Volunteer Day – we’re all about giving back… and having lots of fun in the process!
- Referral scheme – know the perfect person to join the team? You could bag £1,500 for a putting a good word in.
- Wellbeing Programme – giving you the opportunity to join regular, interactive Wellbeing Workshops or join our 30 plus Wellbeing Champions.
- Enhanced Family Friendly Leave – support for you and your family to help you navigate through the craziness of family life.
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Specialist in PingFederate, PingDirectory and PingID for IAM infrastructure management. Collaborating with teams for stable operation and development in Cotia.
Cyber Security Analyst in the Core IP/DDoS Security team at Vodafone. Ensuring real - time threat mitigation and incident response for DDoS attacks.
Senior Security Analyst developing and implementing security strategies for logistics operations. Focus on risk assessment, staff training, and policy compliance.
Security Analyst managing vulnerability management for PostFinance. Overseeing patching and security issues to ensure system stability.
IT Security Analyst supporting the Supreme Court of Nevada in safeguarding judicial information systems. Implementing security controls, maintaining compliance, and conducting security assessments in a collaborative environment.
Information Security Analyst SME protecting information assets by designing and maintaining security policies. Ensuring compliance with security standards in a tech services company focused on digital transformation.
Vulnerability Analyst role in BGS supporting government clients. Conduct vulnerability assessments and enhance cybersecurity protocols for effective mitigation strategies.
Analyst of Information Security focusing on Governance and Project Risk Analysis in software development. Join a dynamic team collaborating on security in tech projects.
Cybersecurity Analyst responsible for protecting corporate environments and managing security incidents. Collaborating with IT teams and providing strategic security communications.