Cyber Security Specialist

The Cyber Security Specialist 3 ensures the deployment, operations and continuous improvement of security tools, technologies and processes that protect Global Relay as well as ensures advanced response to security threats and vulnerabilities. This is a highly technical role with an individual who must have direct experience in the following Information Security areas, access control, endpoint security, vulnerability management and cryptography. This individual acts as an escalation resource for technical issues associated with the analysis of event logs, system logs, and other data sources and for the determination of root cause and resolution of security events. The role includes incident response, driving threat intelligence capabilities and ensuring alignment with business and regulatory expectations. As well as evaluation of security systems and processes and working closely with but not limited to management, operations/DevOps, and development teams on security related matters.

Your responsibilities:

• Adhere at all times to separation of duties between your role as a member of the security team that monitors the activities of privileged users, and privileged network and Operations/DevOps team members that use their privileges to resolve incidents and fulfil requests in the production environment
• Design and implement Global Relay’s cybersecurity solutions and ensure it aligns with business goals, Global Relay standards and industry best practices.
• Implement, manage, and monitor security technologies, including but not limited to Web Application Firewall (WAF), Threat Intelligence Platform, Security Information and Event Management (SIEM) solutions, Hardware Security Modules (HSM), Endpoint Detection and Response (EDR) platforms, Vulnerability Management Platforms.
• Act as the escalation point for security incidents and service requests in a timely manner
• Review, assess, and prioritise escalated security related events based on severity and criticality
• Ensure compliance with relevant security standards, regulations (e.g., NIST, ISO 27001, SOC 2, GDPR), and internal policies. Develop and enforce security policies, standards, and procedures across the organization.
• Stay up-to-date with the latest cybersecurity threats, trends, and technologies. Interpret threat intelligence and other data to develop new security use cases and defensive strategies.

• Ensure timely detection, analysis, containment and remediation of security threats and incidents
• Monitor security tools and systems to identify and respond to potential threats in real time

• Use scripting and programming languages (e.g., Python, PowerShell) to automate security tasks, improve efficiency, and develop custom security tools.
• Act as a subject matter expert, providing guidance and mentorship to junior and mid-level cybersecurity team members and other IT staff.
• Effectively communicate complex security concepts and risks to both technical and non-technical audiences, including senior management.
• Act as a security resource in the design and deployment of Global Relay initiatives, both internal and for Global Relay’s products
• Design, approve, and implement device rule changes, patches, and updates aligned with the change management process
• Research and deploy security solutions, including evaluation, selection, and installation, to ensure best of class monitoring and protection of systems and applications
• Develop, maintain and review process documentation
• Lead the creation and management of audit content for Global Relay security audits
• Provide leadership in the enforcement of security policies
• Participate in security awareness initiatives

About you:

• 5-7+ years hands-on experience working with core information security systems such as firewalls, intrusion detection and prevention implementations, antivirus and anti-malware solutions, SIEM solutions, two-factor and biometric authentication solutions, and server and network device hardening
• 5-7+ years of hands-on experience working with core infrastructure and networking components such as Windows and Linux servers, L2-L3 network switches and routers
• Excellent knowledge and understanding of cryptography and cryptographic technologies
• Proven experience as an escalation point for analysis of security events to determine root cause and provide resolution
• Information Security certifications are critical for demonstrating advanced knowledge and skills. Desirable credentials include: CISSP (Certified Information Systems Security Professional)
• Expert understanding of a wide variety of Network communication protocols such as TCP/IP, DNS, SMTP/SMTPS, HTTP/HTTPS and email authentication protocols such as DKIM and DMARC
• Experience using an internal and external ticketing system for ITIL-based incident, problem and change management
• Previous experience in troubleshooting day-to-day operational processes such as report generation, data verification, data correlation, etc.
• Excellent verbal, written and documentation skills
• Methodical and creative approach to problem-solving
• Superior time management and prioritizing ability

Global Relay is unable to offer visa sponsorship for this position. Candidates must have the right to work in the UK at the time of application.