Network Security Analyst

Herbert Smith Freehills
South East England
19 Jul 2017
15 Aug 2017
Contract Type
Innovative, efficient and effective IT systems are essential to the successful operation of a global law firm like Herbert Smith Freehills. The information technology team keeps our global team of lawyers and Business Services staff connected, whether we're in the office or on the move.Information technology is responsible for everything information systems-related. That includes:Technical support: IT helpdesks, asset management (including laptops and mobile devices) and technical trainingInfrastructure: networks and systems, servers (real and virtualised), disaster recovery, business continuity and IT securityInnovation and technology: driving the increasingly important adoption of technology in new waysDevelopment: designing and acquiring business applications.While the roles within the division may vary, all involve providing the very best services and systems. You may also have the opportunity to work on challenging projects across the firm.THE ROLE & KEY PERFORMANCE INDICATORSAbility to understand and take responsibility for a broad spectrum of security technologies across infrastructure and applicationsAdept at influencing resources across operational and project activities and making the most effective and efficient use of those resourcesEngages with security vendors and suppliers, attending and contributing towards security initiatives and driving improvement plansTake responsibility for the efficient and effective delivery of all in-scope security across Infrastructure and application services across the estate?Takes ownership of serious and major security related incidents, focuses on restoration of service and removing security vulnerabilitiesTakes a proactive approach to security management using all available monitoring sources for exposing vulnerabilities addressing and eliminating known and potential threatsProvides key liaison between Production Support, IT Security and Information Security teams, tracking and managing security risks and vulnerabilitiesAbility to foster good working relationships with and across teams, working in a collaborative an inclusive manner to improve team communicationsHands on security activities across networking and infrastructure environmentsKEY RESPONSIBILITIESRepresents networks in operational and project activities across networking infrastructure, including LAN, WAN, routers, switches, F5, firewalls etc.Escalation point for all network related operational security incidents, threats and vulnerabilities, managing tasks and driving through resolutionsMonitoring & reporting, ensuring environment is regularly and comprehensively monitored, concerns and security risks mitigated, regular and ad hoc reports produced as required.Ensuring environment is patched and protected from security threats, undertake regular reviews, identify and eliminate security risks.Participate in operational technology checks and controls, identify anomalies working with various teams to mitigate and reduce risksWork closely with the IT Security Management team to contribute to the development of the longer term IT security strategyRegularly attend the Change Advisory Board (CAB) ensuring all changes and admin tasks met the specified processesBecome recognised as the SME for all operational security, initiatives, threats and vulnerability management within 6-12 monthsQUALIFICATIONS, SKILLS & EXPERIENCEExtensive network security background with at least 5 years in a complex, multisite, global organisation, delivering and supporting network security appliancesDedicated hands-on security role in large corporate enterprise with responsibilities for a broad range of security devices, applications, tools and servicesPrevious management experience of DMZ devices and tools, including firewalls, proxy servers, IDS, rule-base management etc.Comprehensive understanding of certificate and encryption technologies, anti-virus software and content filteringKnowledge of current and emerging technologies and protocols in security and networking areas including tools and cyber threat managementSOC/SIEM experience, with good experience in threat and vulnerability remediation & incident management responseWorking knowledge of the following technologies, TCP/IP, inc IP classes, subnets, multicast, NAT, WINS.DNS,DHCPGood understanding of MS OS & server technologies including patch management technologies and processesKnowledge of risk assessment tools, technologies and methodsStrong understanding of endpoint security solutions, to include file integrity monitoring and data loss prevention.Ability to work with network management tools, traffic analysis, including packet capture, netflow etc.Able to deliver outstanding service in a high-pressure environment working in a large organisationAble to analyse business and system security threats and issues and communicate them effectively at all levels of the firmProven ability to interpret complex information and provide informed analysisExcellent interpersonal skills, including effective verbal and written communication, and strong influencing and networking skillsPositive attitude towards customer service, and demonstrates clear business focus and desire to workCan do attitude, focused on meeting deadlines on high quality deliverablesCCNA qualified, working towards CISSP SSCP desired