Cyber Security Analyst Advertisement

The Westcoast is looking for a Cyber Security Analyst to join their Security Team. Established in 1984, Westcoast Ltd is a part of the ALSO Holding AG international Group that distributes leading IT brands such as HP, HPE, Microsoft, Lenovo, Apple and many others to a broad range of resellers, retailers and office product dealers in the UK and beyond. the group employs more than 1,200 people across several locations in the UK, Ireland and Europe. Our revenues current to grow reaching £3.7 billion in last year.

The Job Role

Reporting to the Director of Cyber Security you will work on security operations and risk activities with external and internal stakeholders continually improving the risk and compliance posture. Additional you will support a security transformation program play as essential role in delivering initiatives.  We are looking for someone who can drive effective change and has at least 3 years’ experience in a security role whether it be Security Operations. Security Engineering or GRC Our ideal candidate will have a focus on improvement, a passion security and strong technical skills.

The security role whilst primarily technical in nature, will at times require you to contribute to the implementation of security policies and procedures designed to help Westcoast; oversee and monitor security controls, protect the brand and reputation of the Group, comply with laws, regulations and professional standards, and minimise the risk of financial claims against the group.

Regular travel to UK based offices is required in this role. You must be able to achieve UKSV Security Clearance.

In return we can offer a market appropriate salary, opportunity for growth and development and flexibility in working.

Your Day-to-Day Responsibilities Will Include:

• Identifying, gathering and analysing the data required to assure compliance with IT and Security controls requirements, including the management of any security incidents. Assist with investigation and remedial actions as a result of any incidents.
• Collate data and publish security stats, including monthly security checks and dashboards, to provide management with assurance of the integrity of the operational IT security controls.
• Oversee the monitoring and response to System Security alerts through reporting tools (e.g. SCCM, SIEM etc.)
• Monitor and scan the Westcoast group network for vulnerabilities using security toolsets and manage all remediation action plans. Oversee Penetration testing across the Westcoast group and manage the preparation and remediation of these test outcomes.
• Take responsibility for anti-virus and malware management reporting, and rapidly assist the BAU teams to remediate threats where required. On a continual basis, carry out a regular system audit, server events analysis, sanity check the patch management and risk assessment process.
• Work with Project Management to ensure that projects have met all Security requirements and acceptance criteria prior to implementation. Where required work alongside the Group IT Infrastructure team and wider IT teams to implement new security projects.
• Contribute to the maintenance and development of policy and governance, including the adherence to ISO27001, Cyber Essentials, CIS Controls, NIST Cyber Security Frameworks and PCI standards.
• Complete information security assessment questionnaires during the Bids & Tender phase of new customer projects and on-going annual customer security questionnaires.
• Respond to all customer security queries related to any new security services being offered within a project & attend customer scoping calls when requested
• Provide end to end security engagement on a wide range of customer projects ensuring that Compliance and Security requirements are built into every aspect of the solution
• Ensure that these requirements/security deliverables are fulfilled prior to the project going into service (e.g. writing policies, ISMS, risk documents, security management plans etc.)
• Attend customer Security Program/Project meetings prior to projects going live and fully represent Westcoast Information Security, giving customers advice as required.
• Liaise with the Internal Service Delivery Team & Project Managers and ensure that fully joined up security deliverables are included in the overall customer solution
• Ensure the all relevant security technology standards (ISO 27001, PCI-DSS, CIS Controls, NIST Cyber Security Frameworks, HMG Security Standards etc.) are applied to specific projects before signing off on these for all customer projects
• Where requested on secure contracts - Provide end to end assurance of compliance with existing Information Security policies and standards (attend regular meetings with customers etc.).
• Maintain the confidentiality, integrity, availability, accountability and relevant compliance of information systems

Is this the role for you?

To be successful in this role you will have some of the following skills and experience and the desire to develop in other areas:

• A Degree or equivalent in Computer Science and/or an Information Security discipline
• SSCP, CompTIA Security+ Certified, CEH or an equivalent professional security qualification would be preferable
• Previous experience and knowledge of ISO27001, NIST, CIS Controls and PCI-DSS compliance
• An understanding of HMG security standards (e.g. Cyber Security Model etc.).
• Solid security, Infrastructure, support or helpdesk background experience (at least 2-3 yrs)
• Experience of Microsoft Active Directory configuration and maintenance
• Experience of server monitoring and management toolsets (Intune, SCCM, etc.)
• Experience of security products, e.g. firewalls, web filtering, anti-virus etc.
• Some knowledge of specialised security tools would be highly desirable (e.g. vulnerability management or SIEM tools). Qualys, Zscaler, Sentinel, Defender knowledge would be very beneficial
• Cloud Computing experience from multiple vendors (Azure, AWS, O365 etc.)
• Able to prioritise requests and understand technical faults and their resolution in order to estimate time required to fix
• Works through tasks accurately, thoroughly and methodically
• Inquisitive by nature, committed to on-going personal development and increasing security knowledge and capability
• Ability to take direction or act independently and exercise good judgment
• May need to successfully go through the UK Security Clearance process

What’s in It for You?

This is a fantastic opportunity to immerse yourself in the IT industry, build lasting relationships, and grow with a Sunday Times Top Track 100 company.

• Growth Opportunities: We offer training and development opportunities to help you reach your full potential. Whether it’s funded apprenticeships, work-based studies, or professional qualifications, we’ve got you covered.

• Generous Benefits Package: Enjoy 25 days of holiday, employee referral bonuses, perks and discounts. (Theale only – New fully equipped gym available 24/7).
• Wellbeing Support: Access to Westcoast Wellbeing services including mental health counselling, virtual GP services, physiotherapy, life insurance, eye care schemes, and more.
• Community & Connection: Our teams enjoy social and charitable events throughout the year, fostering a strong sense of belonging.

What’s Next?
If you’re ready to join a company that values its people and rewards success, click apply to start the quick application process (5-6 mins).

Please note: Due to the high volume of applications, we may not be able to provide individual feedback for every candidate. If you don’t hear from us within 14 working days, we’ve moved forward with other applicants for this role, but we encourage you to explore future opportunities with us.