Senior Security Analyst

Competitive Salary

View directions
Back to vacancies

As a Security Analyst in the SecOps team you will be responsible for operating and contributing to the design of and continuously improving the security controls aimed at reducing cyber and information risk to (CTM).

User Story

•       Work closely with CtM Platform & Operations (e.g. DevOPS, DBAs, Service Management, Project Management), Engineering (product), Solution Architecture, Group InfoSec, Risk and other teams to correctly identify and categorise cyber and information risks and to actively manage these risks, making use of the current tools, technical controls and policies, process and procedures

•       Contribute by reviewing technologies, security controls and solutions to reduce the risks to CTM and to its customers

•       Recommend and contribute to the security of our architecture, software applications & infrastructure

•       Share your success within CTM, regularly contributing to a wider audience than your immediate peers

•       Work closely with Engineering, Architecture, Data, Group InfoSec teams.

•       Can support 24x7 operations, e.g. by joining on-call rota

What will it take to be successful?

•       Have a good awareness of secure SDLC practices, code review and verification tools

•       Always demonstrate a professional demeanor and respect other opinions.  Have ability to stand firm when necessary and compromise when appropriate

•       Promote industry leading and best practices for security management (e.g. CIS Top 20, NIST, OWASP Top10, etc)

•       Operate specific CtM tools, security controls and systems, produce reports, regular and bespoke analysis and recommendations to improve CtM’s security posture

•       Embrace a culture of continuous service improvement and service excellence

•       Be an ambassador for the team by consistently demonstrating a ‘can-do’, analytical, flexible and pragmatic approach to tasks and by having a desire to always do a great job

•       Support security incident response as required

•       Team first, no ego - part of a great team, united around making a positive impact

•       Practical experience with cloud (AWS) and hybrid environments and of delivering security in them, backed up by demonstrable hands-on skills (e.g. scripting, Python or similar, Linux)

•       Some experience with cyber and information security in Agile environments

•       Minimum of 5 years experience (7-8 years for Senior) with information and cyber security

•       A strong work ethic with high levels of self-motivation & autonomy

•       Ability to assess and understand the current and planned security posture for platforms and applications, providing recommendations for improvement and risk reduction

•       Ability to assess and understand the current and planned security posture for platforms and applications, providing recommendations for improvement and risk reduction

•       Active learner, both within your technical and professional area of expertise, and taking control of your own career development

Why choose us?

You might already know us - we're the ones with the Meerkats! Compare the Market has helped revolutionise the insurance market and have been expanding rapidly since starting in 2006. The tech team is at the heart of Variety is the spice of life and through our cross-functional teams, our developers are encouraged to experience different parts of the business via different projects or products: there are no barriers! So if you’d like to make your mark in an exciting future for you’re in the right place.

Cool stuff for White Collar Factory

Roof Bar with fantastic terrace views, roof Running Track, Monthly Innovation and learning days, great work-life balance, MacBook Pros for all new starters, Pool Table, Table Tennis, Playstation, High End Coffee Machine, Regular Free Desk Massage, Regular MeetUps and Social evenings. Secure Bike Racks, Showers and Lockers, Free Fruit, Cereal & weekly team breakfasts




Scroll To Top