Description
Security Consultant is required for a financial services organisation based in London for a 3-month initial contract.
The organisation is in the process of separation and require a Security Consultant to work on this.
Responsibilities/Experience:
Vulnerability and Threat Management (Tenable Nessus)
- Vulnerability assessment
- Vulnerability analysis
- Remediation coordination
- Reporting
Patch Management (WSUS, SCCM, Batch Patch)
- Coordination
- Reporting
Data discovery
- Log alerts (PII) - Splunk
- Remediation coordination
- Reporting
Log Management (NNT)
- Log review as part of daily check
Identity and Access Management
- User access approvals
- User reviews
- Daily log reviews (new accounts, privilege escalation)
Security Incident Management (Jira)
- Security event logging, investigation
- Security incident logging, investigation, containment, recovery, reporting
Security Operations
Security Daily Checks
- Cloudflare review - DDoS and WAF
- Fortinet/Fortianalyzer - Firewall and IPS
- ESET - anti-malware
- DLP - SQL alert triggers and O365
- Log review - authentication, privilege escalation, anomaly, watch lists
- Appgate - authentication, anomaly
Threat Intelligence
- Threat Intel - review of new vulnerabilities, threat actors, threat feeds, newsfeeds
Governance
- Change review approvals (security impacting) - access requests, architecture changes etc.
- Monthly reporting pack for ISSC (through TSA) and quarterly high-level reporting pack for Grant Thornton
- Security controls dashboard showing the effectiveness of controls based on all of the above
- Security event/incident reporting
- Risk reporting
- Vulnerability assessment trends reporting