Senior Cyber Security Analyst

INTRODUCTION

At Burberry, we believe creativity opens spaces. Our purpose is to unlock the power of imagination to push boundaries and open new possibilities for our people, our customers and our communities. This is the core belief that has guided Burberry since it was founded in 1856 and is central to how we operate as a company today.  

We aim to provide an environment for creative minds from different backgrounds to thrive, bringing a wide range of skills and experiences to everything we do. As a purposeful, values-driven brand, we are committed to being a force for good in the world as well, creating the next generation of sustainable luxury for customers, driving industry change and championing our communities.

JOB PURPOSE

The Burberry Cyber Security Operations team is globally responsible for Security Monitoring, Incident Response, Vulnerability Management and Attack Surface Management.  The Senior Cyber Security Analyst, reporting to Cyber Security Operations Manager, will be responsible for providing security monitoring, threat hunting, security automation and incident response services.

RESPONSIBILITIES

The Senior Cyber Security Analyst will be responsible for:

• Identifying and developing security monitoring and automation use cases.
• Performing security alert analysis, threat hunting and investigation activities across multiple technologies to ensure that security incidents are identified in a timely manner.
• Carrying out assessment of security incidents.
• Supporting security incident response activities.
• Identification and research of external security threats.
• Providing continuous service improvement and development.
• Supporting and developing automated security reporting.
• Providing assurance of changes to security systems.
• Identification of security system status or security changes that are not in line with process.
• Working on projects focused on improving security improvements.
• Participation in a 24x7 security incident response on-call rotation.

PERSONAL PROFILE

• Bachelors or Master's Degree in relevant Technology/IT Security subject.
• Relevant academic or industry certification relevant qualifications such as CISSP, CEH, GIAC-GCIA.
• Passionate about security - keeps up to date on the latest news, trends and threats.

Mandatory:

• Experience with the use of EDR, SIEM, SOAR tools to monitor and investigate attacks and other security events.
• Security monitoring and incident response within a Cloud environment.
• Experience with Malware Analysis and Virtualized Malware Environments.
• Scripting knowledge (PowerShell, Python, VB, YARA, etc.).
• Excellent analytical and problem-solving capabilities.
• High attention to detail.
• Strong verbal & written communication skills.
• Uses discretion in identifying and resolving complex problems and assignments.
• Determines when issues should be escalated to a higher level.

Desirable:

• Experience with Google SecOps, Tanium, Defender.
• Incident Management (CSIRT) Experience.
• SOC (Security Operations Centre) Experience.
• Security knowledge in one or more of following areas: Windows (server and desktop), Unix (multiple flavours), macOS, Office 365, Azure, AWS.
• Security Automation Experience along with Python and YARA
• Web Application Security knowledge (web-based attacks).
• Malware analysis.
• Retail sector experience.

Burberry is an Equal Opportunities Employer and as such, treats all applications equally and recruits purely on the basis of skills and experience.