Security Analyst (Infrastructure)

Company Description

Job Description

The Security Analyst is responsible for ensuring the security and integrity of the organization's IT infrastructure by managing patching and vulnerability remediation for both physical and virtual environments. This role involves the proactive identification, assessment, and mitigation of security vulnerabilities across Windows servers, endpoints, and Azure environments. The Security Analyst will work closely with Architecture and Infrastructure teams to implement effective security controls, deploy critical patches, and maintain compliance with industry standards, while minimizing risks to business operations and ensuring continuous system protection.

Responsibilities:

1. Plan, test, and deploy patches to Windows servers and endpoints to address known vulnerabilities and ensure compliance with security policies. Manage patching windows and downtime coordination with various business units to minimize disruption during updates.
2. Monitor patch management systems to ensure all systems are up to date and protected from security threats.
3. Collaborate with Cyber and Infrastructure teams to apply security hardening to Windows systems, both physical and virtual.
4. Develop and enforce security policies related to patching, endpoint security, and vulnerability management. Ensuring compliance with industry standards such as ISO, NIST, CIS.
5. Investigate and resolve vulnerabilities identified during routine scans or incidents, implementing remediation plans.
6. Maintain accurate documentation of remediation activities and patching schedules for audit and compliance purposes.
7. Assist in incident response by applying emergency patches and remediations to affected systems when necessary.
8. Contribute to disaster recovery and business continuity plans by ensuring systems are protected and vulnerabilities are mitigated.
9. From time to time the Security Analyst will be expected to be available outside normal UK working hours to support IT emergencies.
10. From time to time the Security Analyst will be expected to take on other duties that are congruent with the responsibilities of the role.

Qualifications

1. Strong knowledge of Windows server and endpoint management including patching processes, configurations, and security hardening.
2. Experience with vulnerability management tools (e.g., Nessus, Qualys) for conducting vulnerability assessments and prioritizing remediation efforts.
3. Hands-on experience in patch management systems (e.g., SCCM, WSUS, and Azure Update Management) for deploying patches in both on-premises and Azure environments.
4. Proficiency in cloud security (particularly Azure), including managing Azure Security Center, NSGs, firewalls, and automated patching processes using Infrastructure as Code (IaC).
5. Solid understanding of network security concepts, including firewalls, routers, and network device hardening.
6. Experience with security frameworks and best practices such as NIST, ISO, or CIS for ensuring compliance in patching and vulnerability management.
7. Incident response and remediation skills, particularly in applying emergency patches and resolving vulnerabilities quickly and effectively.
8. Automation and scripting capabilities (e.g., PowerShell, Python) to streamline patching, vulnerability scans, and remediation tasks.
9. Strong analytical and problem-solving skills to assess and mitigate security risks across both physical and virtual environments.
10. Ability to develop and maintain technical documentation, including patching schedules, remediation plans, and compliance reports.
11. Aligned to Rotork's values and promotes an inclusive approach.
12. Excellent written English skills.

Additional Information

Rotork is the market-leading global flow control and instrumentation company, helping our customers manage the flow or liquids, gases and powders across many industries worldwide.

Our purpose is Keeping the World Flowing for Future Generations.

For over sixty years, the world has relied on us to create the things that keep everything moving. From oil and gas to water and shipping, pharmaceuticals and food- these are the flows on which our modern world depends.

Today we're respected and admired for our people, performance and products. Our success flows from our commitment to engineering excellence, and that's what we will always pursue, safely and sustainably.

Rotork is going through an exciting period of change and growth, building on our existing market success. It's a great time to join us and make an impact in shaping the future of our business.

#LI-Hybrid