RISK ANALYST
RISK ANALYST Jeddah, Saudi Arabia Working across business functions conducting risk assessments and monitoring business systems to identify potential threats. Mitigating potential risk and proposing appropriate solutions. Day-to-day working on identifying fraudulent transactions and patterns, preparing reports for risk management. Aiding in the overall high standards of the GRC Projects that focus on identifying key enterprise and process level risks. In addition, to governances’ projects that assess the existing control environment and support in business continuity. Review the organization policy and ensure it is followed and embedded in the organization daily work. Key Responsibilities of Risk Analyst will include:  Analyze fraudulent account behaviour / transactions perform analysis on customer account to identify potential fraudulent rings and report this to the Risk Management.  Identify valid or fraudulent transactions.  Daily monitoring for the risk rules.  Handling and document chargebacks.  Analyze existing policy and process gaps and develop solutions to close them.  Update the risk register and follow up the opened risk.  Work closely with Accounting, Business, and Customer Service on fraud/risk related issues.  Assist in developing and implementing policies, procedures, and training materials.  Provide advice and support business functions as they identify, assess, manage, mitigate, and monitor risks.  Consult and coordinate with other control-related functions (eg Finance & Tech).  Ability to benchmark and analyse various business risks.  Performing incident triage to determine urgency, and potential impact, identifying the specific vulnerability, and making recommendations that enable expeditious remediation.  Perform other duties as assigned. Requirements:  3+ year experience in Risk Analysis, Fraud Prevention, Investigation & Detection.  Ability to assist the day-to-day operations of the department.  Ability to multitask.  Solid analytical, interpretive, and problem-solving skills.  Must be able to meet strict deadlines.  Must possess strong internet research skills along with the ability to navigate multiple systems at once.  Ability to learn, grow and take on expanded duties as business needs evolve.  English Fluency required; Arabic is required.
NETWORK SECURITY ENGINEER
NETWORK SECURITY ENGINEER Manchester Up to £60,000 Salary + Bonus + Benefits An exciting Network Security Engineer position has been mandated to Secure Recruitment by a nationally recognised Blue Chip Client based out of the South Manchester Region as they grow & develop their Security Function. This is a hands-on technical position, requiring a detailed understanding of evolving Security Threats & Trends. You’ll have the technical ability to Implement, Configure Existing Toolsets and Implement New Security Solutions. Key Responsibilities of the Network Security Engineer include: Develop, Document & Maintain Security Procedures. Design, Installation & Support of Security Tools. Patching & Server Hardening. Ensure Compliance of Audits & Logs. Security Incident Response. Threat Hunting & Malware Analysis. Review & Assess Vulnerability Assessments. Manage Assess External Threat Trends. Desired Skills / Experience: Network Security Knowledge: Remote Access, VPN, Network Monitoring, Intrusion Detection, Server, Wireless Security, Vulnerability Scanning, Anti-Malware, DLP etc. Experience in IT Security, including Security Tools. Hands on experience of Firewall Administration & Design. Ideally (but not essential) Experience of some of the following: Splunk, Web & Email Gateways, Identity Management, Cloud Security, Checkpoint, Darktrace. Searches: Network Engineer / Network Security Engineer / Network & Security Engineer / Cyber Security / Information Security / Infrastructure
INFORMATION SECURITY MANAGER
INFORMATION SECURITY MANAGER £85,000 + Excellent Staff Benefits Full Time Remote Manchester & London Based Offices Our Client is an Award Winning Data Science based organisation now looking for Information Security Manager to work alongside the Head of Information / Cyber Security and Cyber Security Team Key Responsibilities of Information Security Manager role would include: Undertaking Security Assessments & Data Protection Maintaining Related Documentation including Security Controls Framework (SCF); Undertaking Validation of Supplier Management Responses; Liaising with Users to Enable Improved Supplier Management Response Monitoring All Security Incidents & Vulnerabilities & work with Security Teams Undertaking Review of ISO Standards & Best Practices Conduct Risk Assessments by Monitoring Threat Landscape & Advising on Business Impact & Change Arising from Threats Conduct Procurement Exercise for Annual Risk Assessment Key Skills & Experience of Information Security Manager will included: Technical Knowledge of Information Security Compliance (ISO 27001), Information Management & Security Commercial Experience Undertaking ISO 27001 Internal & External Audits; Delivery of Information Assurance & Security Services Able to Build Strong Relationships with Key Internal & External Stakeholders. Understanding of other Information Security Standards & Frameworks. Possess Technical Knowledge of IT Systems & Network Security, with Hands On exposure to various Security Products. Reviewing User Assessment Reports & Management Responses; Understanding & Working of ISO Standards Ideally have ISO 27001 Lead Auditor / Implementer Qualification Searches: Information Security Manager / ISO 27001 / Senior Information Assurance / GRC / Lead In formation Security Analyst / Information Security Compliance / Security Consultant / Senior Information Security
INFORMATION SECURITY ANALYST
INFORMATION SECURITY ANALYST €65K – €85K Berlin, Germany Our client’s mission is to provide clarity and orientation in the area of occupational safety, environmental, quality and sustainability management (HSEQ) and to create digital solutions. In Berlin, their Client’s Team consists of over 200 Employees, 70 of whom work in the Software Development, Software Testing, UX Design & Technical Documentation Departments. Our Client is looking for you to support their Information Security Department in Berlin. Key Responsibilities of Information Security Analyst will include: Create Guidelines & Policies for Information Security, Data Protection & IT. Conducting Internal Audits for Information Security & IT Compliance Supporting recertifications, especially TISAX, ISO 27001, taking into account changed Framework Conditions & Requirements Checking new software tools, service providers and software tools for information – Data Protection & IT Compliance Answering information security enquiries from our customers Conducting and designing internal training Support with and management of security incidents Your Prospects A structured induction as well as responsible projects, design and development opportunities Flat hierarchies with open doors in a relaxed but professional working atmosphere Use of state-of-the-art technologies An additional day off on your birthday Regular team events and a special focus on work-life balance (flexible working hours, gym membership, home office, BVG company ticket, etc.) Key Skills & Experience of the role: Completed studies in Business Informatics, Informatics or Cyber Security equivalent First relevant work experience in the area of Information Security and / or IT Ideally first experience in Project Management / Stakeholder Management A detail-oriented approach to work, strong communication skills, a sense of responsibility and a confident manner Great IT affinity and technical understanding Fluent German & English
HEAD OF SECURITY OPERATIONS
HEAD OF SECURITY OPERATIONS London Salary – £85,000 – £90,000 Our Global Fortune 500 Client currently have an exciting opportunity for a Hands-On Head of Security Operations to join their team. Working closely with the CISO, the successful individual is required to protect esure’s Information Systems & Networks from security breaches and cyber threats. The role involves leading a team of Security analysts and specialists responsible for responding to security events, conducting investigations, and improving a portfolio of cybersecurity tools, with that team management experience is required for the role. The Head of Security Operations will also get the opportunity to lead on various projects and be involved in vendor selections. Key Responsibilities of the Head of Security Operations will include: Operational Oversight: Lead daily operations of the Security Operations Team, including detection, response, and resolution of security incidents. Team Leadership: Lead, train, and mentor and develop the team. Investigations: Coordinate the management and escalation of security incidents, coordinating responses with internal and external partners, including Legal, DPO, and Fraud teams. Vendor Management: Manage relationships with external vendors to ensure the receipt of high-quality and timely services. Policy Enforcement: Ensure that all security operations are conducted in accordance with company policies and regulations. Reporting: Regularly update the CISO and other senior leaders on the status of ongoing security operations initiatives and the current risk posture. Provide security operations metrics for monthly KPI and KRI indicators. Monitoring and Analysis: Continuously supervise security systems, analyse potential threats and vulnerabilities, and use security and network tools to identify and categorize incidents. Incident Response: Take timely action in the case of a security breach Security Tooling: Maintain and update security operation tools to improve threat detection. Threat Intelligence: Stay up to date with the latest intelligence on cybersecurity threats, including malware, ransomware, and phishing tactics, to pre-empt potential attacks. Runbook and Policy Development: Develop security policies and runbooks and assist in conducting regular audits to ensure compliance. Training and Education: Provide advice and training to staff to raise awareness of InfoSec and promote good security practices. Standby & Callout: Provide out-of-hours support as part of a standby rota for high-priority alerts and incidents outside of business hours. Continuous Improvement: Recommend and implement new cyber initiatives to evolve esure’s cyber capability. Key Skills & Experience: Proven Experience within Cyber Security environments Certifications such as CISSP, CISM, or other relevant credentials are helpful. Experience leading security incidents in an enterprise setting. Experience with fraud and financial crime investigations is desirable. In-depth understanding of information security concepts, cyber risk management, and various security technologies, including EDR, DLP, SWG, ZTNA, SIEM, Email Gateway, and Firewalls. Strong leadership skills and being dedicated to mentoring and upskilling multi-disciplinary teams. Hands-on experience with Active Directory, AWS, and Azure cloud platforms, as well as Windows and Linux operating systems.
CYBER SECURITY MANAGER
CYBER SECURITY MANAGER Up to £100,000 Basic Salary + 25% Bonus + Excellent Staff Benefits Central London This Fast Growth Award Winning Organisation with a High Quality International Client Base is now offering a highly unique Career Proposition to its Highly Skilled Workforce, and looking for a Cyber Security Manager to work closely with their recently appointed Head of Cyber Security and be an integral part of their growth and drive forward the InfoSec / CyberSec Function managing several Cyber Security Analysts. Key Responsibilities of Cyber Security Manager role: Ownership & Accountability for Designing & Implementing Best In Class Security Framework; Identifying Security Risks across Organisation, Recommending Remediations Provide Design Advice on New Systems & Projects to ensure Information Security is Culturally “Front & Centre” Vulnerability Scanning & Penetration Testing and Ensure Organisation is aware of All New Vulnerabilities. Co-ordinate Responses to Dealing with Critical Vulnerabilities Work closely with Engineering Team to embed Technology Risk Identification, Measurement & Control Disciplines Conduct Access Control Reviews & Execution of Ongoing Management and Oversee & Enforce Access Control across the business Develop In-House Incident Security Monitoring & Response Procedures, Assist in Designing Secure Development Processes & Procure Supporting Technologies; Implement & Configure Security Information & Event Monitoring (SIEM) Solutions & Other Tools Working within ISO 27001 Management System Information Security Risk Register & Subsequent Controls, and Customer Data Security Governance; Providing relevant MI to Senior Management & Report regularly about ongoing Security Efforts & Initiatives Key Skills & Requirements of Cyber Security Manager role would include: Good Problem Management & People Support Management with Good Technical Hands-On Experience in the security space across On-Premises & Cloud Control Solutions across Azure, O365….& (ideally) AWS (but not essential) Security Manager Experience, along with Knowledge & Experience in Security Governance, Risk & Compliance such as ISO27001….& (ideally) SOC2 Certified (not essential) experience Strong Documentation Skills around Security Policies, Standard & Procedure Writing Possess sound Technical Knowledge of ideally some of the following CIS, NIST, OWASP Excellent Articulation & Communication Skills with Project Management Skills Excellent Communication Skills to both Technical & Non-Technical Stakeholders Ability to Manage Multiple Projects Used to Working in Fast Paced, High Growth Environments with Sensitive Customer Data Experience within both Mid-Range & Larger Scale Corporate Environments Searches: Cyber Security Manager, Lead Cyber Security Analyst, Senior Cyber Security Analyst, CISO, Information Security Manager, Head of InfoSec, Chief Information Security Officer, Head of Cyber Security, Cyber Security Programme Managerse
CYBER SECURITY ENGINEER
CYBER SECURITY ENGINEER €42,500 Per Annum Madrid We are looking for an experienced and highly skilled Senior Cyber Security Engineer, with strong knowledge in different areas of Cybersecurity within an global company. The ideal candidate will have a deep understanding of cyber security Compliance, Tactics Techniques and Procedures (TTPs), Indicators of Compromise (IOC), Indicators of Attack (IoA), Risks and Trending Threats. and will use their experience to respond to those threats, elevate the security posture of our company, and possess excellent analytical, communication, and leadership skills. As a Senior Cyber Security Engineer, you will be responsible for overseeing Incident Handling, Security Assessments, Threat Hunting and Cybersecurity tool management. ROLE RESPONSIBILITIES: Evaluate, recommend, implement, manage, and maintain Global Security Platforms Collaborate and consult with peers and colleagues to resolve issues and achieve goals Provide technical guidance to less experienced staff Manage and participate in computer security incident response activities and the technical investigations of security-related incidents Conduct technical investigation of security related incidents and digital forensics to identify causes and recommend future mitigation strategies Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives (Red / Blue / Purple Team experience) Review, analyse and correlate Security Logs as well as improve SIEM solution. Strong knowledge in Security Cloud Support for AWS and Azure. Develop and maintain incident response playbooks and procedures CANDIDATE PROFILE: Degree in Computer Science or related technical field 5+ Years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, education 5+ years of experience with SOC, Endpoint Security, Security Threat Vectors & Cloud Security, Incident Handling in complex or critical incidents 3+ Years of Security Network Administration, hardening and analysis experience. Relevant Security Certifications such as: CySA, CEH, GPEN, CIHE, GCFA, MS500, AZ500, AWS Languages: English is required
CYBER SECURITY ANALYST
CYBER SECURITY ANALYST Florida, USA, Hybrid Remote $100,000 – $140,000 per Annum As the Cyber Security Analyst, you will work with our customers, developers, and researchers to evolve, automate, and enhance cyber security capabilities in defence of federal agencies. This is an opportunity to contribute to an important project from its beginning, work with the latest and emerging technologies. Key Responsibilities of Cyber Security Analyst role will include the following: Augment Operational Cyber Analysts and act as a consultant for detection and/or threat-hunting Advise on data preparation, implementation of techniques, visualizations, and employment of analytics and customer partners Assess current use of cyber tools by analysts and assess whether efficiencies can be made via alternate use of current or adoption of alternate tools Problem-solve by identifying potential tools/processes to support needs by capturing areas of improvement that can be translated into functional requirements for future planning Provide ad-hoc training to cyber analyst teams on tools that support or enhance current processes Identify areas of technical training gaps and proposed approaches to methods (hands-on, online modules, etc.) to improve the use of tools and data in support of the cybersecurity mission. Participate in post-engagement review Effectively communicate with leadership to ensure awareness of progress and/or challenges Key Skills & Experience Required will include: Active high-level security clearance required as part of client contract requirement Bachelor’s or Master’s Degree in IT, Cyber, or a related field 3 or more years of IT & IA security experience 3 or more years of Cyber Security experience (eg Threat Hunt, Incident Response, Investigations, Technical Reporting, etc) 3 or more years of experience using Network Security Analysis / IDS tools 3 or more years of experience analysing packet capture and NetFlow data with an understanding of current cyber threats and trends derived from multiple sources (e.g., open-source, intelligence products, etc.) 3 or more years of experience with different types of Malware including detection methods, attack vectors, and vulnerabilities used Experience with query languages (eg SQL, KQL, etc.) Experience developing advanced dashboards (eg Kibana, Splunk, etc.) Experience with different Cyber Security Frameworks and knowledge bases to identify tactics, techniques, and procedures of known actors Excellent written and verbal communication skills Preferred Qualifications: Interpersonal skills and the ability to communicate effectively with various clients in order to explain and elaborate on technical details Practical experience with different scripting languages (eg Python, JavaScript, etc.) Experience with system vulnerability management Knowledge of Linux/Unix and Windows operating systems security Knowledge of computer programming and scripting languages Scaled Agile Framework (SAFe) experience CompTIA Security+ or higher certification level preferred
