IT Security & Risk Analyst

There’s never been a more exciting time to join Homebase. With our new owners, Bunnings, we’re changing how we do things and shifting up a gear. By joining us at the beginning, you’ll be able to help us create the best home improvement and garden business in the UK. And, because we understand that it’s you who will make this happen, you can be sure you’ll be working in a culture that’s geared to helping you give your best.

About the role:

This role is responsible for carrying out tasks within the information security & risk function and provides backup within the ITS Security & Risk team. These tasks include system access and identity management, assessing the level of computer and network systems security risks, conducting information security audits, assisting business units in developing their information security requirements, and ensuring the protection of our information system assets in a rapidly changing technology environment. Customer Service is a must in this role.

You will be required to use your initiative, research and problem solving skills to resolve problems and issues and create written documentation where required. The position requires a good grounding in computer systems and network security, and requires the ability to adapt to new technologies, learn new procedures and determine the source of problems.

You will be responsible for:

Review incidents logged by our security monitoring partners and advise on the next steps as well as understanding how to fine tune the service.
Investigate reports of SPAM, Phishing and Malware from our team members and take or recommend appropriate action.
Perform security assessment on new projects, initiatives including recommendation on what safeguard should be put in place before on-boarding any services.
Review internal and third party access request based on corporate policy and grant appropriate access in Active Directory or Oracle.
Review firewall changes request, provide impact assessment and recommendation on if the change should be approved.
Analyse security landscape with a view to generate a corporate security risk register
Part of a on call rota for responding to high impact security incident
Advise and manage any PEN tests
Internal vulnerability tests using tools (Qualys preferably) and manage remedial actions
User admin where appropriate

Person specification:

Relevant tertiary qualification / equivalent experience
At least 3 years general computing experience
Familiarity with some of the components in our existing technical environment
UNIX, AD, Linux, Oracle and MySQL skills
Strong organisational skills with the ability to plan and coordinate daily tasks and track them effectively
An ability to work independently, when necessary, to solve problems with minimal supervision
Consideration will be given to candidates who lack some of the key requirements but whose professionalism and track record indicate their ability to meet the set criteria within a short period.

What we offer:

24 days’ holiday
Discretionary Bonus
Life Assurance
20 % discount
Flexible working
Great team dynamics

Apply now