Cyber Security Analyst, Linux

The Cyber Security Analyst – Linux Estate will be responsible for ensuring the secure configuration, design, and operation of the organisation’s Linux infrastructure. As a key member of the Cyber Security Team, the individual will work closely with Linux platform teams and broader IT stakeholders to embed secure-by-design principles into the Linux estate, ensuring alignment with cyber security best practices, regulatory compliance, and risk management strategies.

This role offers the opportunity to make a significant impact on the organisation's security posture across the extensive Linux estate. 

Principal Accountabilities

• Collaborate with Linux platform and infrastructure teams to guide secure architecture, implementation, and configuration of Linux-based systems.
• Validate and audit Linux server builds, ensuring adherence to security baselines and industry benchmarks.
• Provide expert cyber security advice for the Linux estate and contribute to the secure design of enterprise services.
• Champion secure-by-design principles within the Linux server estate.
• Review and improve existing security configurations and controls across the Linux environment.
• Contribute to the development of Linux-specific security policies, standards, and procedures.
• Monitor compliance with internal controls and external regulations relevant to Linux environments.
• Support security incident response and investigations where Linux infrastructure is involved.
• Develop and maintain effective relationships with technical and non-technical stakeholders.

Experience:

• Minimum of 3 years of hands-on experience in cyber security or system administration focused on Linux environments.
• Practical experience in securing Linux server platforms (e.g., Red Hat, Ubuntu, CentOS, Debian).
• Strong familiarity with common Linux vulnerabilities, hardening techniques, and compliance standards.
• Experience working in collaborative, cross-functional IT environment.
• Strong verbal and written communication skills; able to explain technical issues clearly to diverse audiences
•  

Essential Skills:

• In-depth understanding of Linux security controls, access management, and audit capabilities.
• Familiarity with secure configuration frameworks (e.g., CIS Benchmarks, DISA STIGs).
• Proficiency in shell scripting (Bash, Python) for automation of security and audit tasks.
• Knowledge of logging, monitoring, and intrusion detection tools for Linux environments (e.g., auditd, SELinux, OSSEC, Splunk).

Desirable Skills:

• Experience with container security (e.g., Docker, Podman) and Linux orchestration platforms (e.g., Kubernetes).
• Exposure to infrastructure as code (e.g., Ansible, Terraform) with a focus on secure deployments.
• Knowledge of Identity and Access Management (IAM) principles as applied to Linux systems.
• Familiarity with public cloud Linux deployments and securing hybrid/cloud-native Linux estates.
• Degree in Cyber Security, Computer Science, Information Technology or equivalent experience.

Education:

Industry certifications desirable (e.g., CompTIA Linux+, Red Hat Certified Engineer, GIAC Certified Unix Security Administrator (GCUX), CISSP, or similar).