Technical Security Analyst

Purpose of the Technical Security Analyst Role: The role of the Technical Security Analyst is to assist the Information Security Manager to ensure the confidentiality, integrity and availability of Stonegate Group information assets and systems. They will be a technical resource that will assess security policies and controls for effectiveness and suitability against the security risk profile. They will have experience in Cyber Security and information security and either hold a professional qualification or willing to do whatever is required to become trained and qualified. They will work as a part of the IT Operations team to ensure business is protected from Cyber threats , is able to respond to and recovers from incidents , and operates within an appropriate cyber security management framework. Protection of digital assets from unauthorised access will be paramount, documenting risk mitigation before a data breach occurs. As a security professional, they will research and organise ethical hacking to expose weaknesses in the on-site infrastructure. Technical Security Analyst Key Responsibilities – Duties and Responsibilities: * Using the information security risk assessment methodology to provide expert advice and guidance. * Conduct threat assessments for infrastructure and applications to ensure adequate technical and non-technical effective controls are in place. * Documentation of information security risk assessments to identify any issues or risks that need to be articulated to senior management for remediation and/or to follow formal risk acceptance governance processes. * Supporting delivery of projects with security risk assessment/mitigation and ensuring that they align to the appropriate technology change framework and that solutions meet relevant security principles. * Responsible for the identification of security gaps and advising on design of new controls and processes to be implemented by IT, Business and third parties. * Support the Information Security Manager in developing any penetration testing requirements, engaging with third parties, managing security engineering and the business to remediate any risk/issues identified before go-live. * Interpreting and developing the Stonegate Group security policies, standards and baselines and liaising with the project teams to ensure solutions are delivered securely. * Perform periodic internal reviews of systems and identifying compliance gaps that should be escalated. * Contribute to the creation of detailed metrics and reports based on information security risk analysis to reduce and mitigate risk. * Engaging with the business to highlight information security risks to ensure they are making informed decisions around technology and implementation choices. Technical Security Analyst Skills, Experience & Qualifications: Essential: * Deep technical knowledge of cloud platform security technologies, including but not limited to Microsoft Defender, Azure Sentinel and Endpoint. * Knowledge of email and Web gateway's * Understanding of wider general infrastructure with Windows and Microsoft. * Delivery of security-based projects to set deadlines. * Knowledge and use of vulnerability scanning tools, for example, Qualys, Tenable, Nessus * Proficient in working with Service-Now tool. * Strong documentation skills, for example delivery of technical reports, process documents * Ability to work independently * Must be an excellent communicator and speaker both in front of large groups of team members and in written interactions * Knowledge of infrastructure solutions, firewalls, routers * GDPR / Data Protection regulation knowledge * Knowledge of Cyber Security frameworks, for example, NIST, ISO27001, CIS * Ability to work in UK without sponsorship is essential. * Ability to influence at senior levels on matters relating to security and information risk. Desirable: * Hospitality/retail experience highly desirable (but not essential) * PCI DSS awareness * Educated to degree standard or equivalent (or appropriate practical experience) * Relevant security qualifications * Governance, Risk and Compliance knowledge What's in it for theTechnical Security Analyst? * 25 days annual leave * Annual Leave Purchase Scheme * Pension * Vitality Healthcare * Opt in dental insurance programme * Annual bonus scheme * The Stonegate discount card offering discounts across our managed estate * Online benefits portal offering discounts across the High Street and other retailers At Stonegate Group, we're proud to be the biggest operator of pubs, bars, and late-night venues in the United Kingdom. Our leading brands are diverse and well-known, including names like Slug & Lettuce, Be At One and Popworld. If you have a disability as outlined by the Equality Act 2010 and require reasonable adjustments to be made during the recruitment process, please let us know in advance so that any support, aids or adaptations can be put in place to assist you