Information Security Specialist – Edinburgh or Glasgow – up to £72K plus benefits (Hybrid working)

This is an exciting and challenging permanent role with a leading global law firm in the UK.  The successful candidate will be part of the team that focuses on technical operational security and works to develop actionable information security and risk policies, processes, standards, plans, guidelines, controls, and frameworks to ensure people, processes and technology architectures within the firm are consistent, usable, and risk-managed. This role also actively engages in information/data protection and risk mitigation activities, in coordination with other teams, where information security expertise is required.

 

Key Responsibilities:

 

  • To configure and optimise security and threat detection products and services providing data loss prevention (DLP), security information and event management (SIEM), advanced email protection, endpoint detection and response (EDR), antivirus, cloud security products, intrusion detection/prevention systems, and other industry standard security technologies.
  • Detect and respond to information security threats or incidents on cloud systems, SaaS, workstations, portable devices, servers, and networks. Respond to alerts from various security capabilities such as SIEM, CrowdStrike, Trustwave, Firewall, DLP, alerts from 3rd parties etc, creating executable actions to minimise impact of such alerts to the firm.
  • Analyses the reports from security tools to identify unusual behaviour, trends and patterns ensuring that potential security events are anticipated and avoided where possible and reporting on those trends and patterns. Proactively identifies vulnerabilities through scans and assessment reports, penetration tests, targeted network traffic analysis and other methodologies.

 

  • Plans and recommends changes to increase the security of the network, computer hardware and operating systems, business and peripheral applications.
  • Supports the firm’s information security incident management processes; leads, or participates in, assigned information security incident responses.
  • Support an on-call schedule to provide follow the sun cyber capabilities.
  • Performs information security administrative and technical controls analysis to ensure implemented controls are effectively meeting defined information security and risk policies, standards, plans, etc.
  • Work to design effective and efficient Threat Intelligence programs embracing internal and external threat sources, producing management insight into the threats the firm faces.
  • Production of a library of threat scenarios and creation and execution of runbooks and threat drills.
  • Support investigations in a threat intelligence capacity including malware detection and analysis, providing timely and relevant updates to appropriate stakeholders and decision makers.
  • Build relationships with supporting IT functions including but not limited to Infrastructure, Enterprise Applications and Data Teams, to ensure identified vulnerabilities are addressed promptly, and to develop Security Information and Event Management (SIEM) use cases and alerting rules.
  • Assesses and recommend information security tools and services that best meet the firm’s current and future strategies and needs.

 

Essential Skills & Experience:

 

  • Proven experience of working in an Information Security / Cyber Security role within a fast-paced environment. Experience within the legal industry is ideal, but not essential.

 

  • Knowledge of SIEM (LogRhythm / MS Sentinel), Endpoint Detection & Response (CrowdStrike / MS Defender), Trustwave, Vulnerability Management (Outpost24 / InsightVM), Firewalls, and industry standard security tools.

 

  • Experience working with the Azure / MS365 E5 security suite (Defender (Various), Security Centre, CA Policies, CASB, AIP etc)
  • Strong organisational skills and the ability to handle multiple conflicting priorities.
  • Able to work to very tight deadlines under pressure and to assimilate information quickly.
  • Strong interpersonal skills including confidence, positivity, diplomacy and the ability to gain credibility quickly.
  • Excellent verbal and written communication skills, with the ability to explain technical terms in a way that non-technical persons would understand.
  • Demonstrates attention to detail with a high level of accuracy.
  • Positive and tenacious with the ability to pro-actively drive initiatives forward and motivate resources within and outside their team to perform.

 

 

This role is urgent in nature so please email your updated CV to Mitesh Fatnani

  • Date Added: Monday, 30th October 2023
  • Closing Date: Monday, 27th November 2023
  • Job Code: 134435
  • Contact: Mitesh Fatnani