IT Security Specialist

Level:
Manager, Other
Job Term:
Permanent
Location:
London
Position/Type:
Legal IT/Systems
Salary Description:
Competitive
Posted:
15/05/2017
Recruiter:
Milbank
Job Ref:
ISS_17

Job duties:

The firm is committed to ensuring security is maintained 24/7 and are therefore investing in expanding the team around the globe who will support the Director of Information Security in New York.  This a new role for the London office and the candidate will join a team of 5, working alongside that team with a reporting line to both the Director of Information Security on a strategic level and to the IT Manager in London on a day to day basis.

This is a technical position where the candidate will manage, provide technical support, implement, maintain and troubleshoot all security products used by the Firm. The candidate must have significant hands on experience with security technologies and solutions. The candidate will also perform daily investigation of security incidents, security assessments and audits. The job duties includes:

  • Manage Intruder Detection sensors, firewalls, Anti-Virus, Web Filtering Solutions, DLP, IPS/IDS,  application white listing solutions, endpoint detection and response solutions.
  • Manage Security Incident and Event Management systems (SIEM).
  • Manage privilege account management systems.
  • Manage security and investigate all security events until resolution.
  • Conduct technical security audits and perform risk assessments.
  • Conduct firewall, network and systems configuration audits.
  • Perform vulnerability scans on networks, servers, systems and applications.
  • Create weekly security reports including keeping track of information security metrics.
  • Interact with engineering groups to deliver secure, stable and scalable solutions.
  • Work with consultants and third party vendors as it relates to security services they provide.
  • Participate in project reviews of information security architectures associated with each initiative.
  • Conduct malware analysis and research for new exploit techniques used by cyber criminals.
  • Research and test new security technologies.
Education and experience

  • 5-7+ Years’ experience in IT Security
  • Bachelor Degree in Computer Science or Information System or significant work experience
  • Must have the following certifications: CEH or GIAC GSEC certification.
  • Very strong analytical approach to problem solving and solution development.
  • Must be passionate about security and strive to ensure the Firm is protected against evolving cyber threats.
  • Must be creative and able to balance security with business objectives.
  • Must be able to think outside of the box and go beyond traditional security.
  • Must be able to work well in teams.
  • Ability to manage multiple projects and support functions.
  • Ability to work in a fast paced and dynamic environment.
  • Ability to travel when necessary.
  • Must be available to report for work on regularly scheduled days and off hours when required.
  • Strong analytical, communication and interpersonal skills.
  • Must be able to quickly identify root causes specially during security incident investigation.
  • Excellent documentation skills and capable of creating security architecture diagrams.
  • Able to fully perform the job function with minimum supervision.

  • Must have hands on experience with following technologies:
    • Cisco network devices
    • Cisco ASA
    • In depth experience with Palo Alto firewalls with all the features available in the product.
    • SIEM products such as Logrhythm or others
    • IDS & IPS (Snort, Suricata, Alienvault or others).
    • Endpoint security products - Symantec, Sophos or others.
    • Vulnerability scans and penetration test using Nessus, Rapid7 Nexpose or others..
    • Open source security tools (Kali Linux, Metasploit, Nmap, Powershell Empire, Kerberoast, TrustedSec SET and others) and network traffic analysis.
    • Vulnerability management with Nessus, Rapid7 Nexpose, Qualys or others.
    • Experience with Windows operating systems, Active Directory, DNS, DHCP, Microsoft SQL.
    • Experience with Linux operating systems.
    • Experience with Windows Security.
    • Experience with scripts (python, VB, Powershell and others) 
  • Experience with following technologies are plus:
    • Windows 10 Security (Credentials Guard, Application Guard and others).
    • Endpoint Detection and Response such as CrowdStrike, Sentinel, Carbon Black.
    • Authentic8 Silo and other isolating browsers.
    • E-mail protection solutions such as Mimecast and Proofpoint.
    • Cisco Fireamp.
    • DLP products.
    • User Behavior Analytics - Rapid7 Insight IDR.
    • Privilege account management solution - CyberArk Privilege Server and Privilege Session Manager, Secret Server or others.
    • Application White Listing – Bit9
    • Forensics analysis using Guidance Encase platform or open source tools. 

How to apply

Please send your covering letter and CV following the Apply for Job button below. 

Closing Date:
11/06/2017

You may return to your current search results by clicking here.

Latest Job Listings