Junior Cyber Security Analyst

Lockton Companies

Sep 11

Applications are closed

Internship
Full-time
Off-cycle Internship
Software Engineering
IT & Cybersecurity
London

Requirements

Essentials
Basic to fair understanding of endpoints, servers, infrastructure, and networking technologies
Exposure of user environment management, including desktops/laptops, profile management, access control methodologies
Excellent verbal, written communication, and inter-personal skills
Knowledge / experience of Information Security principles, standards, tools, processes, procedures, and common frameworks such as ISO27001, NIST, ITIL, Cyber Essentials Plus
Proactive approach in staying up to date in cyber security news
IT Security experience
Willingness to learn and attain relevant qualifications/ certifications as career progresses
Desirable
Experience of security systems platforms such as vulnerability management, SIEM, DLP, SOAR, EDR solution, Network Firewalls etc
Experience of asset vulnerability/inventory programs using tools such as Tenable/Nessus and patch management tools such as ManageEngine
Knowledge of EDR solutions such as CrowdStrike Falcon or Microsoft Defender for Endpoint technologies and industry technology trends
Knowledge of networks, application, and system vulnerabilities
Working in regulated environments such as financial services
Experience of information security and data protection practice in financial services
Knowledge of IT and information security policies and practices
Incident management, investigations, and response experience.

Responsibilities

Respond to Information Security related queries and incidents for the UK, Europe, and Nordics
Monitoring and resolution of security incidents within established policies and playbooks, partnering with the correct resources and vendors
Perform daily operational real-time monitoring and analysis of security events from multiple sources including but not limited to events from Security Information Monitoring tools, network and host-based intrusion detection systems, firewall logs, system logs (Unix & Windows), applications, and databases
Monitor and analyse attempted efforts to compromise security protocols. Investigate activities, conduct, and provide analyses regarding results
Assist the organisation in due diligence responses completing security questionnaires and RFI/RFP as they arise
Conduct due diligence on 3rd parties and tenders, new solutions / systems / tools, and partner with the Data Protection Manager as necessary
Conduct regular audit of our internal user accounts, and review and respond to Internal Audit findings where required
Build and maintain relationships within the Cyber Security team, the Technology team and business partners as opportunities arise
Engage with potential penetration test partners and manage annual schedule
Support annual reviews of Cyber Security policies and procedures as applicable
Support efficient remediation of security vulnerabilities, as appropriate including but not limited to tracking patch management and partnering with the correct resources, vendors on any identified gaps, patch failures etc.
Develop security awareness by providing orientation, educational programs, and on-going communication

FAQs

What qualifications are required for the Junior Cyber Security Analyst role?

A basic to fair understanding of endpoints, servers, infrastructure, and networking technologies is essential. Additionally, exposure to user environment management, knowledge of Information Security principles, and a proactive approach to staying updated in cybersecurity news are required.

Is prior experience in IT Security necessary for this position?

While IT Security experience is preferred, this is an entry-level role, and training/support will be provided.

Are there any specific cybersecurity certifications that are recommended for career progression?

Yes, a willingness to learn and attain relevant qualifications/certifications as your career progresses is encouraged.

What types of tools and systems will I be exposed to in this role?

You may encounter security systems platforms such as vulnerability management tools, SIEM, DLP, SOAR, and EDR solutions, as well as network firewalls.

What is the structure of the Cyber Security team?

You would be joining a small team of 2 colleagues in the Cyber Security Analyst role, supporting each other as you develop your skills and experience.

Will I have the opportunity to engage with external partners?

Yes, you will engage with potential penetration test partners and manage the annual testing schedule as part of your responsibilities.

What are the main duties I will carry out on a daily basis?

Your daily responsibilities will include responding to security incidents, monitoring and analyzing security events, assisting with due diligence responses, conducting audits, and supporting security awareness initiatives.

Is experience in regulated environments required for this position?

Experience in regulated environments is desirable but not mandatory for candidates applying for this position.

How does this role contribute to the organization’s IT Security?

This role supports the Cyber Security team by assisting in incident response, monitoring security protocols, and helping to maintain security policies and procedures as the organization continues to grow and modernize.

What is the focus of the training provided for this role?

The training will focus on developing your understanding of cybersecurity principles, tools, processes, and procedures while supporting your growth in handling real-world security incidents.

Lockton Companies

Finance

Industry

10,001+

Employees

1966

Founded Year

Mission & Purpose

What makes Lockton stand apart is also what makes us better: independence. Lockton's private ownership empowers its 10,750+ Associates doing business in over 140+ countries to focus solely on clients' risk and insurance needs. With expertise that reaches around the globe, Lockton delivers the deep understanding needed to accomplish remarkable results.