Description

Purpose of role:

Small World's technology ecosystem is evolving; from a bespoke local core, more and more services are being provided by third party vendors, either hosted or provided as a service. As we select and integrate these solutions, it is essential that we maintain a cybersecurity environment that allows us to secure and monitor these new solutions so that we can continue to provide excellent service to customers.

The Cyber Operations Analyst has three main responsibilities: (1) Assist the cybersecurity team in identifying, managing and mitigating security vulnerabilities. (2) Assist in security incident response. (3) Assist the cybersecurity team in BAU activities.

The incumbent will be expected to take a leadership role in collaborating with the entire Technology team to perform risk analysis to identify potential vulnerabilities, propose solutions to mitigate those vulnerabilities, and design controls to ensure the ongoing security of the solution. He/she is a cybersecurity champion and will need to influence design thinking to ensure solutions are secure throughout their lifecycle.

Role details:
• Perform risk analysis with project teams to identify cybersecurity risks and threats, and define mitigation solutions and controls for these risks.
• Ensure the definition of all security controls, so that their technical implementation can be properly monitored and measured.
• Actively monitor security status; issue event and incident alarms as appropriate; run "Level 1" playbooks to identify and isolate threats.
• Assume an incident management role to coordinate response to security issues requiring Level 2 and above assistance. "Lead the incident through to resolution, managing communication with key stakeholders throughout the process.
• Performing BAU tasks
• Design of security automations

Person Specification
• A strong technologist, with deep experience cyber-security and risk management
• Confident and able to take a leadership position when pulling together ad-hoc teams to address incidents
• Calm under pressure and able to work with focus and clarity in times of stress
• A strong communicator, able to work at a detailed level but also communicate effectively with senior stakeholders
• Team player, the position requires collaboration with all Small World technology departments.

Technical requirements
• Basic knowledge of network:
• IP
• Protocols (TCP, UDP, HTTP/S…)
• OSI Layer Framework
• Firewalls
• Switches
• VPN
• Basic Knowledge of Application security:
• SCA/SAST/DAST/IAST/RASP
• OWASP Top 10
• Knowledge of endpoint protection:
• Good practices
• Identities management
• EDR
• DLP
• Experience in conducting forensic analysis
• Experience in vulnerabilities management
• Experienced with both hosted environments and public cloud