Cyber Security Analyst - UK - Drax Group
Like any other company, cyber security is something that we take very seriously. Although at Drax there is one key difference, we are not ‘any other’ company. We are working at the forefront of the energy industry, enabling a zero-carbon future with a focus on our people. We have some pretty big ambitions and we are looking for a Cyber Security Analyst to join us in Northampton at our Opus Energy office, ensuring that as we grow, we are secure as a business.
This is a varied and stimulating role with a broad scope, and ideal for someone looking to develop their career and skills in a supportive environment. You may be looking to move into an analyst role or have experience in a 2nd or 3rd line role with a desire to specialise.
With this role you’ll be getting involved with all aspects of cyber security at Drax. You will be identifying cyber threats and network attacks from internal and external sources while also utilising processes and technologies to detect and prevent malicious attacks. You’ll be responding to security events, from detection, analysis to closure as well as engineering and monitoring security appliances, spam filters, secure remote access solutions, VPN’s and other external gateways. Alongside this you’ll also be pro-actively monitoring the security of our networks, identifying and remedying vulnerabilities, assisting with business continuity planning and ensuring IT Disaster recovery is designed, planned and tested for all security services. We did say it’s varied…
We are looking for someone who can work collaboratively with the wider IT Operations team. You’ll also have wide variety of stakeholders and you’ll be driving the right security behaviours within Drax, so you’ll need to have strong communication and influencing skills. On the more technical side you’ll need a good understanding of network security technologies and processes including and understanding of current and emerging security threats and an awareness of systems and methods to counter them, knowledge of TCP/IP including common ports and traffic types, enterprise and operational routing protocols, management protocols, IPSEC VPN’s, SSL.
You may also have experience or knowledge of, although don’t be dissuaded if you don’t, the following; security techniques and technologies including Intrusion Detection, Threat Analysis and Malware & Trojan Research, an understanding of insider threat landscape, knowledge and analysis of full packet capture technologies, knowledge of data pattern matching, correlation tools and SIEM technologies, LAN / WAN / VLAN / Cloud experience and experience of Windows system administration.