Senior Security Analyst

This job is brought to you by Jobs/Redefined, the UK's leading over-50s age inclusive jobs board.

The Oversight Board makes binding and independent decisions about the most challenging content issues on Facebook and Instagram. Members of the Board include Helle Thorning-Schmidt, former Prime Minister of Denmark, Tawakkol Karman, Nobel Peace Prize winner, Michael McConnell, Director of Stanford's Constitutional Law Center, and many other diverse leaders and thinkers from around the world. The Board issued its first decisions in January 2021.

The Oversight Board Administration is the team who support Board Members in carrying out their duties. The Administration has a presence in London, San Francisco and Washington, D.C., and operates with a global scope.

You can learn more about the Board at www.oversightboard.com.

Joining the Oversight Board Administration is a chance to be part of an organisation which is leading on some of the most prominent and challenging issues facing the tech industry and society.

Reporting to the Chief Security Officer, the Senior Security Analyst will be responsible for:

1. Support the delivery of the Third-Party Risk / Vendor Management process including managing assessments and tooling.
2. Play a key role in supporting the Cyber Intelligence, Threat Detection, Crisis Preparedness and Response, Penetration Testing and Vulnerability Management efforts at the OSB.
3. Support operational workflows by performing risk-based security reviews of operational systems, applications and third-party integrations.
4. Engage with Technology colleagues and relevant partners to realise the full potential of the OSB's Security Operations capabilities.
5. Leverage a mix of technologies (detection and prevention), processes and human capital to ensure emerging, new, and existing cyber security threats to the organisation are managed appropriately.

1. Monitor external intelligence sources to research and evaluate emerging cyber security and technology developments, threats and vulnerabilities of relevance to the OSB, and determine how to manage them adequately and effectively.
2. Plan for disaster recovery and create response and contingency plans in the event of security incidents.
3. Test and evaluate security solutions and advise on how they can be leveraged to address security challenges.
4. Coordinate penetration testing and ethical hacking efforts for the OSB and ensure the delivery of actionable contextualised reports.
5. Perform security assessments of applications, systems, and networks, to identify potential weaknesses and ensure adequate defence against exploits of applicable vulnerabilities.
6. Monitor identity and access management, including monitoring for abuse of permissions by authorised system users.
7. Generate customised reports for both technical and non-technical staff and stakeholders on new threats or vulnerabilities driven by analysis, incidents, and adversary engagement.
8. Maintain an information security risk register and assist with internal and external audits relating to information security.
9. Assist with the creation, maintenance and delivery of a cyber security awareness programme for colleagues and other stakeholders.

1. Demonstrable experience in a cyber security position (5 - 8 years)
2. CRISC, CISM Qualifications or equivalent preferred
3. Strong technical background in security controls / operations, system, network security and security frameworks such as SOC, NIST, ISO27002, CIS.
4. Expert understanding of the elements of cyber malware-space. Specifically, key threat actors and their motivations, attack types, routes of attack, services, and tools.
5. Extensive experience of Threat Intelligence, Anomaly Detection and Response, Data Leakage Prevention, Intrusion Analysis and SIEM solutions.
6. Experienced working with, and enabling organisations heavily invested / investing in cloud-based technologies.
7. Previous relevant experience of working within an international and complex professional services, start-up or highly regulated industry would be an advantage.
8. Strong analytical and problem-solving skills with ability to balance multiple priorities and meet deadlines, adjust to changing priorities.
9. Identify and drive opportunities to further enhance the security posture of the OSB.
10. Experience of working in a Security Operations Centre or partnering with / working for a Managed Security Service Provider would be an advantage.
11. A hands-on, forward thinker, with a flexible mindset and ability to work in a fast-moving environment that embraces autonomy and is accountable for results.

As well as a competitive annual salary of circa £100,000 pa, we also offer an excellent market leading benefits package, covering a variety of areas, both professional and personal. These benefits include:

1. A generous 9% pension employer contribution with no requirement for you to contribute;
2. Progressive family friendly benefits including a robust paid parental leave policy;
3. An extensive health support package, including comprehensive healthcare and dental coverage for both you and your family members;
4. Comprehensive life assurance, income protection and business travel insurance packages providing financial support in events of ill health, injury etc;
5. A generous lifestyle subsidy to provide financial support for eligible childcare and wellbeing costs;
6. A generous home working and commuting allowance to provide financial support for remote and/or office working;
7. A training allowance to support both your continuous professional development and professional membership;
8. 5 study leave days per calendar year to support professional development;
9. 25 days of annual leave (in addition to bank holidays), with the opportunity to carry up to 5 unused days to the next year;
10. 2 'recharge' paid vacation days per calendar year;
11. 2 'personal' paid vacation days per calendar year;
12. Festive season time off (between Christmas and New Years).

Oversight Board is committed to promoting equal opportunities in employment. You will receive equal treatment regardless of age, mental or physical disability, gender, gender expression or gender identity (including transgender status), gender reassignment, marital or civil partner status, pregnancy (including childbirth and related medical conditions) or maternity, race, colour, creed, nationality, ancestry, citizenship status, ethnic or national origin, religion or belief, sex, sexual orientation, military and veteran status, protected medical condition as defined by applicable state or local law, genetic information, and any other characteristic protected by applicable federal, state, or local laws and ordinances.

We welcome all applications for this role, however you will only be contacted if you have been shortlisted for this position by Adecco. We work with Adecco on all recruitment initiatives. Please see our privacy notice here.

If you would like to keep updated with the work of the Oversight Board and future opportunities, please follow us on our LinkedIn page.