Information Security Specialist

Job Title: Information Security SpecialistContract Type: UK-PermanentSalary Range: £36,000 - £54,000Location: Eastleigh - hybridClosing Date: Wednesday 30th October

Information Security Specialist We have an exciting opportunity for an Information Security Specialist to join our Information Security team in our Eastleigh office, reporting directly to the Counter Threat Unit Manager.

As an Information Security Specialist, you will operate the day to day activities of the Counter Threat Unit (CTU ) and to implement security initiatives, controls  and governance processes that will protect customer, employee and company information from security risks and to ensure that the information security risk to the business is managed to an acceptable level. To proactively improve and tailor security defences to acquired Threat Intelligence. To monitor for any security breaches and support all incident response activities across the organisation.

Main Responsibilities as Information Security Specialist

• Collect, disseminate, contextualise and action threat intelligence. Process, collate and exploit data, taking into account its relevance and reliability to develop and maintain ‘situational awareness’..
• Define and implement processes to verify on-going conformance to security, legal and regulatory requirements.
• Monitor network and system activity to identify potential intrusion or other anomalous behaviour..
• Operate the vulnerability management processes and supporting patching procedures to reduce the risk exposure of the company..
• Lead on managing and investigating Information Security incidents. Ensure that the Information Security incident management processes are aligned with generic incident management and business continuity processes.  Advise on corporate response to an incident.
• Securely configure and maintain information security control equipment in accordance with relevant security policies, standards and guidelines. This includes the configuration of Information Security devices and protective monitoring tools (e.g. SIEM). Implement security policy (e.g. patching policies) and Security Operating Procedures in respect of system management.
• Support the CTU Manager in developing and delivering information security reporting processes and formats
• Support the CTU Manager in developing and delivering the information security strategy
• Create and Implement procedures as necessary to comply with the Group security policy
• Responsible for the production of management information, metrics and trends for Information Security
• Maintain security records and documentation in accordance with Security Operating Procedures. Monitor processes for violations of relevant security policies (e.g. acceptable use, security, etc.).
• Develop others through coaching, mentoring and advising colleagues. Provide support and feedback to encourage and develop colleagues.
• Proactively share good practice and expertise with colleagues.  Adapt communication style to suit audience, developing effective mechanisms to disseminate information to colleagues. 

Skills and experience you need as Information Security Specialist

• Solid technical understanding of security principles and underlying technologies regarding security operations, threat intelligence, security monitoring, incident response
• Good communication skills both verbally and in writing with good questioning and listening skills in order to identify customer requirements. Ability to explain complex IT concepts to all levels of customer.
• Ability to learn and develop skills in all areas of Information Security.
• Demonstratable evidence of personal development around Information Security in the past 12 months
• Degree or industry recognised qualification or minimum 2 years experience in either Information Security or Information Technology.  

Desirable Skills and Experience

• An in-depth understanding of one or more security operations areas, SIEM/SOC, Firewall Change, End Point Protection, Forensic Investigation, etc.
• Background in business or information security management.
• Background in ISO27001, CISM, CISSP, knowledge of Data Protection / GDPR, Information Security Forum, CiiSec is required.
• Demonstrable ability to follow security operations, procedures, policies and activities
• Experience working at similar work level for a minimum of three years in Information Security or a related subject area
• Experience managing incident response across an organization involving multiple business units
• Some experience of a busy IT or business environment.
• A general understanding of data protection processes, policies and tools.

Here are some of the benefits you can enjoy within the Information Security Specialist role:

At Ageas we offer a wide range of benefits to support you and your family inside and outside of work, which helped us achieve, Top Employer status in the UK.

 Flexible Working - Smart Working @ Ageasgives employees flexibility around location (as long as it’s within the UK) and, for many of our roles, flexibility within the working day to manage other commitments, such as school drop offs etc. We also offer all our vacancies part-time/job-shares . We also offer a minimum of 35 days holiday (inc. bank holidays) and you can buy and sell days.

 Supporting your Health – Dental Insurance Health Cash Plan, Health Screening, Will Writing, Voluntary Critical Illness, Mental Health First Aiders, Well Being Activities – Yoga, Mindfulness.

 Supporting your Wealth – Annual Bonus Schemes, Annual Salary Reviews, Competitive Pension, Employee Savings, Employee Loans.