Cyber Security Analyst

A career at Arup offers you the chance to make a positive difference in the world. Independently owned and independently minded, we attract a diverse mix of people to work on ground-breaking global projects. We have an ambitious commitment to be the digital leader in the built environment and have digital teams and experts all over the world, who collaborate on world-leading software, data and technology projects and products. Being a global team means we value people with diverse experiences, backgrounds, specialisms and skills.

Our Digital Technology team are proud winners of the IT Team of the Year for 2021 at the Chartered Institute of IT’s UK IT Industry Awards.

**The role**

We are looking for cyber security analysts for our growing global cyber security operations team, and have a vacancy to be based from one of our offices in Toronto, Melbourne or Singapore. You will help protect Arup’s digital infrastructure and data from cyber attack. You will monitor networks and systems, detect security threats ('events'), analyse and assess alarms, and report on threats, intrusion attempts and false alarms, either resolving them or escalating them, depending on the severity.

The security operations team is a team of seven people distributed globally. The cyber security analyst role reports to the security operations service leader.
- “Being a graduate and starting in a new team can be intimidating, but from my very first day with the Cyber Security team I felt welcome. Across varying skill levels, ranging from juniors to top industry professionals, the team goes above and beyond to support each other, find solutions, and build companywide awareness of the importance of cyber security. Your perspective is always considered and appreciated, which really makes you feel like you’re making a difference to Arup and to our people's security.”_

**_Yana, UK_**
- You are interested in cyber security, and have a solid foundation in technology
- You have an analytical mind and enjoy solving problems
- You enjoy learning new skills and sharing your knowledge with others

**Responsibilities of the role include**
- Researching and evaluating emerging cyber security threats and ways to manage them
- Conducting risk and vulnerability assessments
- Monitoring for attacks, intrusions and unusual, unauthorised or illegal activity. Investigating security alerts and provide incident response
- Using advanced analytic tools to determine emerging threat patterns and vulnerabilities
- Engaging in ethical hacking, for example, simulating security breaches
- Identifying potential weaknesses and implementing measures, such as firewalls and encryption
- Playing an active part in our cyber security team: helping to build an inclusive environment, sharing your knowledge, and promoting development best practices with colleagues within the team and across Arup
- Providing out-of-hours support on a rota basis

Please don’t be discouraged if you don’t meet every point below - if you meet most, and are strongly motivated by the role, and willing to learn, we are still interested in hearing from you.

**Requirements and skills**

**Essential skills and knowledge**:

- Analytical and problem-solving skills to identify and assess risks, threats, patterns and trends
- Significant experience in security incident analysis and response, preferably in a security operations centre environment
- Strong communication skills and the ability to accommodate different points of view of various stakeholders to find a common solution, particularly at times of pressure or threat
- Excellent emotional intelligence to foster openness and transparency within the team
- Excellent technical knowledge of mainstream operating systems and a wide range of security technologies, such as network security appliances, identity and access management (IAM) systems, anti-malware solutions, automated policy compliance tools, and desktop security tools
- Some technical expertise in threat hunting, system security vulnerabilities and remediation techniques, network and web-related protocols (for example TCP/IP, UDP, IPSEC, HTTP)

**Bear in mind that**:

- You may need to participate in an out-of-hours support rota
- Sometimes you’ll need to travel to other offices

**Required behaviours**:

- A passion for diversity, recognizing the innovation and competitive edge that comes from a diverse highly skilled team where equal opportunities are truly valued
- The ability to empower others to succeed, giving staff the confidence and support to thrive, develop and excel at what they do
- Excellent written/verbal communication skills with both non-technical as well as technical audiences managing successful communications with governance boards and stakeholders
- Open-minded collaborative approach to problem solving, improvement and leadership with an empathy for the needs of clients and customers
- Ability to influence others to consider your point of view and gain suppo