This job might no longer be available.

Information Security Analyst - Legal Team

At Improbable, we believe that the next revolution in entertainment and society will come from massive virtual worlds. They will create new economies and opportunities globally, changing not just how we play, but how we work and relate to each other. That’s why we’ve made it our mission to build the next generation of technologies for online multi-user games and simulations. At Improbable, you are surrounded by people who want to improve everything and everyone around them, and who compel you to improve yourself. We’re motivated by the fulfilment of solving hard problems to achieve something profound and transformative.

You will be supporting a newly formed security assurance team to help support security activities across the business. Your strong data analytics skills and organisational capacity will help ensure that we have a good understanding of where risk is in our system. You will support security assurance activities such as audits through diligent work to identify sources of information and working to ensure these are meaningful to others and meet set requirements.

Your Opportunity:

• Day to day monitoring and management of known risks, ensuring that information held is accurate and updated promptly by stakeholders as systems and context evolves;
• Ensuring good data quality in risk and vulnerability management systems, identifying potential errors and either correcting directly or escalating as appropriate;
• Use data to support processes such as risk and vulnerability management, ensuring key items such as those nearing their review date or SLA - are identified and surfaced to the appropriate stakeholders;
• Assisting in the running of a range of security processes, identifying any weaknesses or gaps and working with stakeholders to improve to these processes;
• Identifying weaknesses in existing processes and supporting to improve them;
• Assisting in the audit and review of systems by ensuring that system owners are identified and accurate information is held;
• Supporting information security reporting tasks by gathering and maintaining good quality data, helping others to understand what data is available and what meaningful metrics may be produced;Assisting with internal and external audits by gathering necessary data and helping to ensure it is presented to auditors clearly;Working to support other teams in documenting controls to meet audit standards, supporting and facilitating the regular review of control descriptions to ensure that these are accurate;Considering how data may be gathered, held and updated such that the audit process is easier to manage and requires less human intervention;Using office tools and internal systems to improve and automate security reporting processes;

Why You’re Made for This:

• Strong technical knowledge of cloud computing (SaaS, PaaS and IaaS), virtualisation, web applications, networking infrastructure, desktop and mobile devices and the security issues associated with them
• Experience in cyber threat and security monitoringExperience in configuring and operating Security Incident and Event Management (SIEM) systems, intrusion detection/prevention systems and Advanced Threat protection.
• Demonstrable experience of analysing and interpreting system, security and application logs in order to diagnose faults and spot abnormal behaviours
• A sound knowledge of IT security best practice
• Detailed knowledge of system security vulnerabilities and common attack types and detection / prevention methods
• Interest in working towards or currently holding appropriate security-related qualifications such as CISSP, CISM, CREST, CCP, GIAC, etc. (or working towards one)
• Bachelor’s degree in a relevant subject (e.g. engineering, computer science, information security) or equivalent working experience
• Experience of incident management in response to large-scale attacks
• Good verbal and written communications skills
• Ability to rapidly pick up new skills and knowledge through self-learning and on the job training
• Excellent analytical skills and solutions oriented approach
• Ability to read and interpret data including security, system, application and device specific logs
• Ability to innovate and stay current on security technologies
• Work well both independently and within a team environment

Everyone brings different experiences, perspective, knowledge and skills that makes each one of us brilliant. You don't have to meet all the requirements and experiences on this job advert to apply for and be successful in this role.

LI-DD1

About Us

Improbable is determined to foster an environment where people can do their best work and feel like they belong. We believe a healthy culture, strong values and contribution from a diverse range of individuals will help us to achieve success.

We do not discriminate based on race, ethnicity, gender, ancestry, national origin, religion, sex, sexual orientation, gender identity, age disability, veteran status, genetic information, marital status or any other legally protected status.