Cyber Security Analyst

Position Name : Cyber Security Analyst

Overview :

All WAYSTONE employees are expected to demonstrate our core competencies as outlined below. The role of Cyber Security Analyst has unique requirements and duties; however, these responsibilities are to be executed within the organisations framework of core values. WAYSTONE expects all employees to be high performing, self-motivated, learners and leaders.

Summary :

Reporting to the Information Security Officer, the Cyber Security Analyst will be an integral part of the teams success.

Essential Duties and Responsibilities :

- Incident Response : Monitor network traffic, security alerts, and logs for suspicious activity, potential threats, and vulnerabilities. Work with the Security Operations Centre (SOC) to investigate security incidents to determine scope, impact, and remediation steps.

- Risk Management : Identify, assess, and prioritise security risks & vulnerabilities. Work closely with the risk management team to ensure that cybersecurity risks are effectively communicated to key stakeholders and mitigated.

- Compliance and Audits : Ensure security compliance with industry regulations (GDPR, DORA, ISO27001, NIS 2, SOC 2) to ensure adherence to security policies and frameworks.

- Collaborate with EUC, Cloud, Infrastructure and development teams to integrate security controls into systems, applications, and networks. Provide security guidance for new projects and system implementations.

- Security Awareness & Training : Assist in the development and delivery of cybersecurity awareness programs for employees to enhance organisational resilience against cyber threats.

- Reporting : Prepare and present detailed security reports, vulnerability assessments, Cyber Risk KRIs and incident response summaries to the Director of Info Sec & Cyber Ops.

- Security Protocols & Policy Enforcement : Develop, maintain, and enforce security policies, standards, and procedures that adhere to industry best practices and regulatory requirements for financial services.

Requirements :

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Experience :

- 2+ years of experience in cybersecurity, with a focus on financial services or similarly regulated industries.

- Proven experience in conducting vulnerability assessments, threat analysis, incident response, and risk management.

- Experience with security tools such as SIEM platforms (i.e. CS NG-SIEM, Splunk), Tenable/Nessus, email security gateways, firewalls, antivirus, IDS/IPS, and endpoint detection systems.

- Familiarity with industry standards and regulatory frameworks (i.e. GDPR, DORA, ISO27001, NIS 2, SOC 2).

Education :

The candidate will ideally have 1 or more of the following :

- Third-Level Degree in Computer Science.

- CompTIA Certification or similar (Security+, Cloud+, CySA+).

- CISSP (Certified Information Systems Security Professional).

Communication :

- Must have strong written and verbal communication as the role requires documentation and reporting.

Threat Analysis and Intelligence :

- Candidate must be able to looks at security/alert/log trends and make advisory communications to myself, within other teams within IT and occasionally to non-technical stakeholders.

- Candidate must be able to use threat intelligence, apply it to Waystone and analyse if threats are relevant to the organisation, again this needs to be communicated to multiple stakeholders.

Vulnerability Management :

- Candidate must be able to understand vulnerabilities, CVE/CVSS, criticality and how it may apply to any given server, network, application. This requires a broad knowledge (but not expert) of multiple disciplines within IT.

- Candidate must be able to gather statistics, analysis and advise the relevant teams as to actions to be taken.

Security Assessment :

- Candidate will be expected to undertake firewall policy reviews with networking team, analyse and perform advisory communications to technical stakeholders.

- Candidate must be able to demonstrate access and authentication review process (non-platform specific), and will be expected to document and report on findings.

- Candidate will also be expected to lead and perform scheduled application authentication reviews and make recommendations.

Reporting & Documentation :

- Candidate will be expected to manage Info Sec Dashboard, requiring PowerBI Awareness, understanding source data, translating the data into reportable format including :

- Phishing Simulation test results, targeted training.

- Vulnerabilities and criticalities, SLAs

- Endpoint and Server Compliance for Anti-Virus

- Candidate will be expected to assist with Governance documentation (procedure, standard, play books etc.)