Law Debenture logo

Cyber Security Analyst

Law Debenture
2 days ago
Full-time
On-site
London, London, City of, United Kingdom
Cybersecurity & Compliance

About Law Debenture 

Law Debenture is an Investment Trust supported by a wholly owned professional services business. LawDeb is an unusual and exciting proposition; on a day–to-day basis we are nimble, ambitious and small enough to know everyone by name, whilst also benefiting from the profile and credibility of a listed business. This is thanks to our 135-year-old FTSE250 investment trust and our fast-growing independent professional services business of over 300 colleagues across 6 business lines.


At LawDeb, doing work that has a positive impact is important to us. We need the very best people to be the custodians of our business for the next stage of our proud history and growth. We’re ambitious to innovate, collaborate and push forward in providing peace of mind and excellence for our clients and each other.


We’re on a journey to shape a culture we’re all proud to be part of. One where everyone feels trusted, supported and empowered to own their success. Working at LawDeb, you will have access to our enviable network of clients and innovative projects, as well as brilliant colleagues to learn from and collaborate with.


Essential Purpose of the role:



You will join the team as a Cyber Security Analyst, providing day-to-day operational security coverage across our toolset. Working closely with the Senior Cyber Security Engineer, you will maintain and administer our key security platforms, support client-facing security assurance activities, and help strengthen Law Debenture's security posture ahead of ISO 27001 certification. 

 
Main Responsibilities:

  • Implement, manage and actively monitor security controls across email, web, endpoint and cloud environments.
  • Monitor and respond to security incidents using advanced threat detection tools.
  • Day-to-day administration of Netskope web filtering platform including website unblocks and policy updates.
  • Day-to-day administration of Mimecast email filtering system including email review and release.
  • Day-to-day administration of CyberArk identity and privileged access management tooling.
  • Microsoft Purview administration including DLP policy monitoring, sensitivity labels, Discovery Searches and compliance alerts.
  • Maintain and respond to security-related DDQs, keeping the security evidence library current.
  • Assist with compliance activities and audits for ISO 27001, Cyber Essentials & Cyber Essentials Plus certification.
  • Provide technical expertise on security best practices and risk mitigation.
  • Collaborate with IT and business teams to ensure secure configuration and data protection.
  • Participating in the out-of-hours support rota to provide cover for critical cyber incidents.



General Duties:

  • Contribute to the development of the Technology team processes to ensure these are cohesive, efficient, and effective
  • Contribute to the Law Debenture culture positively, attend meetings as required, and carry out duties willingly and diligently
  • Where regulatory rules apply, abide by these in spirit and fact
  • Carry out such other tasks as you may be directed to do by your line manager and the senior management team from time to time
  • Undertake training and development as appropriate and engage fully in the performance management process
  • Willing to travel to other offices

Essential Knowledge, Skills, Experience:

  • Hands-on experience with Mimecast or similar email security platform
  • Hands-on experience with Netskope — web filtering, CASB and cloud security
  • Hands-on experience with CyberArk — identity and privileged access management
  • Microsoft Purview — data governance, DLP and compliance tooling
    Experience of responding to security DDQs and maintaining security evidence
    Experience supporting ISO 27001, Cyber Essentials and Cyber Essentials Plus
    Strong understanding of UK cyber security regulations and frameworks
    Experience working in an FCA-regulated or similarly governed environment

Preferred Knowledge, Skills, Experience:

  • Experience with Rapid7 InsightVM or InsightIDR for vulnerability management and SIEM
  • Experience with CrowdStrike or similar EDR platform
  • Experience with Microsoft Entra ID and identity governance
    Familiarity with Microsoft Azure and M365 E5 security features
  • Experience using Microsoft Copilot and AI security technologies
  • CISSP, CISM, CompTIA Security+ or equivalent certification


Your Reward

  • Competitive salary with performance bonus scheme
  • Generous pension contribution
  • Full healthcare cover
  • Health cash plan
  • Life assurance
  • Buy/sell annual leave scheme


Additional Information

People who thrive at LawDeb make the most of this foundation to grow themselves, help us improve and have fun playing their part in building the culture that’s fuelling our growth.

 

LawDeb hires people based on personal merit and qualifications regardless of age, disability, gender, gender identity, gender expression, race, religion or belief, sexual orientation, socioeconomic background or any other protected attribute. We celebrate the diversity of our colleagues and provide an inclusive environment so you can bring your true self to work. We recognise that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. If you feel that you require any reasonable adjustments to be able to participate in this recruitment process, please provide further details where prompted.


Please note that we have a thorough referencing process, which includes credit and criminal record checks. 


If you’d like to find out more about LawDeb and our open vacancies, please contact our careers team on careers@lawdeb.com.