Information Security Assistant

United Kingdom
negotiable Expires in 4 months

JOB DETAIL

Contract Information

The first year of contract will be probationary with the possibility of further extension subject to satisfactory performance. This post is limited to local status* only. *Local status requires applicants to have unhindered permission to live and work in the UK.Our General Service positions are full-time and are only open to candidates with right to work in the UK. Please check your right to work before applying to this role

Salary Information

Approximately £40,487 net per annum, (subject to deductions), free of income tax in the UK. Excellent benefits including medical insurance and UN pension scheme

Purpose

The primary purpose of this role is to assess ICTS/information security risks, monitor security alerts and operations, and manage incident response processes. The incumbent will proactively work to minimize security incidents and ensure strict adherence to established procedures, policies, and protocols

Duties and Responsibilities

1. Take ownership of security incidents, using logic apps for automation and adding information to aid resolution; proactively monitor and analyze alerts from Microsoft 365 and endpoint solutions.2. Investigate and prioritize security incidents to determine severity and impact, implement mitigation measures, and coordinate with IT and cybersecurity teams for streamlined incident response.3. Maintain detailed records and generate regular reports on incident trends, resolution effectiveness, and security practice improvements.4. Manage security configurations in Active Directory, Azure Active Directory B2B/B2C, Office 365, and Intune, ensuring alignment with organizational objectives and security standards.5. Assist in the development and updating of security policies and procedures, manage backup security, and conduct tests and ethical hacks of the security architecture.6. Build scripts using PowerShell to automate tasks, review Azure DevOps security, and check network security and data connections.7. Provide technical support for security configurations and installations, regularly update system and software patches to guard against vulnerabilities.8. Keep technical knowledge current by continuing education and staying updated with latest security practices

Required Competencies

Knowledge of end point security, Microsoft Defender, Sentinel, and vulnerability managementKnowledge of Identity and Access management systemsKnowledge of endpoint management system with practical experience on Microsoft Intune.Strong technical experience across M365 and Azure Security tools, SIEM tools, vulnerability scanners, network devices (Firewall).Knowledge of security on Hybrid environment (Azure and on Premises)Knowledge of managing AWS environmentA solid understanding of the ISO 27001 standard for Information Security Management Systems. This includes familiarity with its principles, security controls, and compliance requirements

Experience

At least six years’ of work experience in an international environment managing endpoint and information security related issues, including security engineering and automationStrong Technical expertise in cybersecurity, including hands-on experience with Intune, SIEM (Security Information and Event Management) tools, and vulnerability scanners, will have a distinct advantage.Practical experience with supporting and operations of an information Security management system that is certified to ISO 27001 standards

Education

High school diploma or equivalent with up-to-date training in information security

Language Skills

Proficiency in English, knowledge of working languages an advantage

Others

Experienced in managing on-premises and Azure network security, including firewall configurations, access control lists, and network segmentation (VLAN/Subnet). Proficient in DNS and DHCP protocols

United Kingdom

location