Join us as a Security Analyst

• We’ll look to you to provide an end-to-end security response, including triage, response, escalation, and coordination of events and incidents

• You’ll undertake a proactive role to anticipate and identify security events, incidents and trends that could adversely impact the bank, our customers, colleagues or assets

• Joining a collaborative team, you’ll be able to build and maintain a wide network of stakeholders of varying seniority

• This is an office first job, so you’ll be working on site at our Edinburgh office 5 days a week

What you'll do

As a Security Analyst, you’ll assess, triage and respond proactively and effectively to security related threats, incidents, requests and events to defend assets, information, and systems from unauthorised access, use, disclosure, disruption, modification, perusal, inspection, recording or destruction.

You’ll be collaborating with internal and external colleagues, specialists and stakeholders to make sure activities relating to incident response, user access, alert monitoring, root cause analysis and scenario planning are completed in line with standard operating procedures and to a high standard.

You’ll also be:

• Carrying out and contributing to root cause analysis on security incidents and events, and conducting training and scenario planning to prepare for and anticipate future events

• Providing assurance of security posture through monitoring security system status

• Monitoring security alerting and analysis service within the function

• Giving advice during an incident response and any subsequent reviews

• Identifying security incidents while helping to handle them in a timely manner, in accordance with security best practice

The skills you'll need

We’re looking for someone with security incident and event management experience, along with good knowledge of transmission control protocol and internet protocol.

You’ll also demonstrate:

• Network intrusion detection analysis experience

• Phishing campaign investigation knowledge

• Knowledge of networking protocols and routing

• Knowledge of malware analysis techniques