• Ms Amlin
  • $79,300.00 -158,550.00/year*
  • Chelmsford , MA
  • Information Technology
  • Full-Time
  • 74 Acton Rd

Senior IT Security Analyst

Division : Group Operations

Department : Infrastructure and IT Security

Reports To : IT Security Manager

Location : Chelmsford

1. Purpose

This person provides assurance on the operations of IT Security and support on change / security review activities and projects as directed by the IT Security Manager.

The primary responsibility will be the implementation and development of security services and solutions to make sure the appropriate level of protection to MS Amlin information and systems is in place.

2. Dimensions

Total Group headcount: 1800

IT budget: The current operational budget is approximately ?30m pa

Staff: No direct reports, however will be expected to provide direction to the Security Analyst and the various third party security services that MS Amlin contract. Any candidate will be expected to demonstrate leadership qualities.?

3. Key Result Areas .

  • Manage the output from our Vulnerability Management solution and red team exercises. Remediate findings with our 3rd parties taking a risk based approach across multiple domains and operating systems.
  • Manage Pen Tests and Remediate findings with our 3rd parties taking a risk based approach across multiple domains and operating systems.
  • Devise controls in line with company policy and regulatory requirements across multiple domains and multiple operating systems. Then train the IT Security analyst to manage the controls.
  • Assist the IT Security analyst where needed in managing controls
  • Manage specific IT Security products such as NIPS across multiple domains and operating systems.
  • Assist with project work requirements, design reviews and acceptance into live across multiple domains and operating systems.
  • Assist in the Monitoring of the organization?s networks for security breaches across multiple domains and operating systems.
  • Assist in investigations in the event of a security breach and perform root-cause analysis based on the results across multiple domains and operating systems.
  • Assist in managing the patching schedule with MS Amlin 3rd party suppliers
  • Managing MS Amlin IT Security third party relationships and their products across multiple domains and operating systems.
  • Review and Manage Security Exceptions across multiple domains and operating systems.
  • Assist in monthly metrics to make sure they are completed on time and challenge any metrics that are not within tolerance across multiple domains and operating systems.
  • Assist in managing the patching schedule with MS Amlin 3rd party suppliers across multiple domains and operating systems.
  • Research the latest information technology (IT) security trends.
  • Recommend security enhancements to management or senior IT staff.
  • Provide assistance and mentoring to the IT Security Analysts.
  • Cover for the IT Security Manager when needed
  • 4. The Operating Environment and Context of the Job

  • Support the planning and delivery of the information security strategy including the development of, and agreement to, the strategy itself and the associated delivery roadmap.
  • Developing relationships with key stakeholders including business teams at ?head Of? level, the IT Security manager and strategic suppliers and other member of the internal technology teams such as CTO and Information Security.
  • The senior Security analyst is expected to influence IT Security thinking across the MS Amlin group.
  • 5. Cultural Behaviours:

    The behaviours/competencies that the job holder must exhibit for desired cultural fit.

    Drive

    Being resilient, delivering results, demonstrating confidence and courage, sharing success, raising standards, taking personal accountability

    Judgement

    Strategic thinking, integrity, problem solving, decision making, agile and innovative thinking

    Leadership

    Empowering others, engaging and inspiring each other, building capability, being visible, enabling change

    Commercial Acumen

    Creating value for clients, understanding the external environment, international breadth, negotiating, managing risk, disciplined execution

    Partnership

    Building relationships, leveraging collective efforts and collaboration, creating an inclusive environment, influencing, communicating effectively

    Client Service

    Being accessible and proactive, building trusted relationships, developing client insight, ensuring fair outcomes

    6. Job Specific Competencies:

    Identify the key 5-6 competencies specific for the job.

    Delivering Results

    Able to demonstrate an understanding of managing the trade-offs that may be necessary between concept and delivery.

    Technical knowledge

    Should have experience with auditing and risk management.

    Must have a solid understanding of information technology and information security, with an emphasis on security architectures.

    Effective management

    Able to demonstrate bringing together and lead a design group to solve problems and create strategies.

    Problem solving, change and conflict management

    Demonstrated experience in managing and negotiating changes and challenges.

    Diplomatic

    Able to work with all levels of staff. Bringing people together with different viewpoints for common objectives.

    Produce effective documentation

    Able to produce and review appropriate documents that articulate the vision / solutions in an accessible and business friendly manner.

    Influencing senior business and IT stakeholders

    Listening to, and understanding business priorities; negotiating changes with projects & programmes; being seen as a point of expertise and trusted advisor to the business, Information Security, Business change, audit, risk, compliance and IT staff.

    7. Key Interfaces:

    Internal: SBU and Function management teams below ?C? level and the technology and change teams within MS Amlin IT and Business Change

    External: 3rd party suppliers to MS Amlin


    Associated topics: attack, cybersecurity, identity access management, idm, information assurance, information security, information technology security, leak, malicious, security analyst

    * The salary listed in the header is an estimate based on salary data for similar jobs in the same area. Salary or compensation data found in the job description is accurate.

    Launch your career - Upload your resume now!

    Upload your resume

    Loading some great jobs for you...