Cyber Security Analyst

Cyber Security Analyst - Security Monitoring, Security Incident Response, Security ITSM, PAM, MS Sentinel, MS Defender (XDR/TVM), IDS/IPS, Cisco ISE, Windows (Desktop/Server), O365, InTune, VMWARE, Legal Applications; NIST. Law Firm/Professional Services. Permanent, London, £70k - £80k +Bonus + Benefits

Global Law Firm seeks technical, Cyber Security Analyst to join the IT Operations team and be responsible for security incident monitoring and response across all core aspects of the global enterprise - Network, Server, Desktop, Applications.

You will undertake both active and reactive processes including security incident monitoring and response, dealing with security incident tickets raised in the ITSM, reviewing issues and incidents raised by MS Defender and also identified using MS Sentinel. You will work closely with the MSSP (Managed Security Services Provider.

The Cyber Security Analyst will become involved in a wide range of activities including:

• Monitor and analyze network traffic, systems, and logs for signs of unusual or malicious activity.
• Conduct regular security assessments and audits to identify vulnerabilities, risks, and potential areas for improvement.
• Implement and maintain security tools and protocols, including Firewalls, intrusion detection systems, and endpoint protection.
• Investigate security incidents, respond to potential breaches, and document all relevant findings and actions.
• Collaborate with IT and legal teams to ensure compliance with industry regulations and firm-specific policies.
• Undertake small security focussed projects to improve security across Cisco Network, Windows Desktop/Server Environments, wider Wintel environment inc virtualised server environments VMWare/Citrix and legal applications such as iManage, in conjunction with the relevant teams.

We are searching for a technically minded Cyber Security Analyst/Cyber Security Engineer who has a broad understanding of business technology (Cisco, Windows O/S - Desktop, Server, VMWare, InTune, O365/Exchange, AD/GPo/Entra etc) and if possible legal applications -such as iManage, InTapp, Elite3e etc.

Aside from your technical understanding and skills you will be broadly experienced in Cyber Security with experience across:

• In-depth knowledge of cybersecurity frameworks (eg, NIST, ISO 27001)
• Proficiency with security tools such as SIEM, IDS/IPS, antivirus, and endpoint protection, MS Defender, MS Sentinel etc
• Strong analytical skills with a keen eye for detecting security threats and anomalies.
• Excellent problem-solving skills, with the ability to act quickly and effectively under pressure.
• Relevant certifications (eg, CompTIA Security+, CISSP, CISM) are a plus.
• Microsoft Accreditations inc SC-300, SC200 where possible and ideally ITIL Certification

You will have a combination of BAU security incident monitoring and response skills combined with security project experience and be able to engage with business users and a wide range of technical analysts in all relevant IT operational departments. Excellent organisation and communication skills are required.