Security Analyst
London, England, United Kingdom
Applications have closed
Smart Pension Ltd
Our mission is to transform retirement, savings and financial well-being, across all generations, around the world.Smart is a rapidly growing fintech company transforming the retirement industry for the better. Using our award-winning platform, we build digital products to help people plan for their financial future globally. We’ve gone from a small start-up to a global industry leader with over £2bn in assets under management.
At Smart, we're a diverse team spanning across four continents. We’ve grown to a team of over 600 talented people, all dedicated to creating the best experience for our customers and an inclusive workplace for our colleagues. Recently we made it onto Great Places to Work at No.22 and at No.6 for Best Workplaces in Tech 2021 for large companies!
Join us to transform retirement, savings and financial well-being, across all generations, around the world.
Responsibilities
Security:
- Safeguards information system assets by detecting/identifying security problems, and addressing false positives or solving potential issues.
- Escalates incidents to senior management where necessary, with short descriptions, and acts as a point of contact throughout the investigation.
- Recommends and implements detection criteria, new patterns, new signatures, rules and tunes existing configuration.
- Manages security incident responses, acts directly upon SIEM alerts and generates incident reports (Maintains and manages SIEM technologies) and works with our Security Operations Centre (SOC) Performs detailed analysis of the data captured by monitoring systems.
- Undertakes forensic analysis for investigations, including writing reports and securing evidence.
- Liaises with architects in relation to security issues and provides future recommendations.
- Handles client security queries end to end and plans vulnerability remediation in a timely fashion.
- Assist QA and Security Bug Fix Teams to verify clean and efficient code based on OWASP security best practices specifications.
Business Analyst:
- Managing client relationships, organising, conducting and running workshops
- To clearly define and document business requirements, thereby providing a strong foundation from which technical specifications can be derived.
- Directly lead business analysis including the discovery of information and evidence and the identification of problems and opportunities. Ensuring that recommendations fit with strategic business objectives.
- Actively manage senior stakeholders and create a compelling case for change, as well as using your own methods to identify the most suitable approach with regards to requirements capture and analysis.
- Work closely with third party vendors/partners/internal stakeholders involved in the delivery of security initiatives.
Requirements
We know how challenging it can be to tick every box.
Here are a few skills that we feel would make you successful in the role, but please do not be put off from applying if you do not have every single one of them:
- Strong knowledge of AWS fundamentals.
- Cloud Access Management and Authentication.
- Ability to handle multiple digital product development conflicts.
- Strong knowledge of cyber threats, adversary activities and developing security orchestration, automation and response (SOAR) platforms.
- Strong knowledge of security operation centres and incident response platforms.
- Understanding of security standards such as ISO27001, SOC2, CIS, NIST.
- Previous experience of conducting static code reviews.
- Previous experience of working in an agile environment.
- Exceptional stakeholder management and client-communication skills.
Benefits
We offer competitive salaries, great colleagues and excellent benefits, including:
- 25 days holiday per year, plus bank holidays. One extra day holiday after two years and then every year up to 30 days holiday
- Pension scheme using salary sacrifice, Smart will match your contributions up to 5% of your salary
- £500 personal training budget every year to spend on courses or conferences or training materials
- Health insurance with Equipsme, including Dental, Eyecare and EAP
- Death in service with Unum (4xbase salary)
- Access to PerkBox and Smart Rewards
- Enhanced maternity and paternity (maternity – 6 months fully paid/paternity – 3 weeks fully paid)
- Five-week sabbatical after five years of employment
- Season ticket loans
- Cycle2Work scheme
- Free snacks, fruit and drinks
Smart is committed to crafting an inclusive work environment with a diverse workforce. You will receive consideration for employment without regard to race, religion, gender, sexual orientation, national origin, disability or age.
Our Recruitment Data Policy is here. Please click on the link if you have any questions about how we store your data or to know your rights.
If you’d like to learn more about life at Smart, feel free to check out our Careers page and Glassdoor* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Automation AWS Cloud FinTech Incident response ISO 27001 Monitoring NIST OWASP SIEM SOAR SOC 2
Perks/benefits: Career development Competitive pay Conferences Health care Insurance Paid sabbatical Parental leave Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open SaaS-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open CI/CD-related jobs