Skip to main content

This job has expired

You will need to login before you can apply for a job.

Cyber Security Testing Analyst

Employer
RSA Group
Location
Horsham, West Sussex
Salary
Competitive
Closing date
4 Sep 2019

View more

Job Description

The Cyber Security Testing Analyst reports to the Cyber Security Testing Manager within the CISO (Chief Information Security Officer) function.

The Cyber Security Testing Analyst will be responsible for running RSA’s suite of security testing capabilities including SAST / DAST, penetration testing, red teaming and password auditing.You will be responsible for the security testing elements of the Systems Development Life Cycle (SDLC) and will work with the Delivery and Change community to ensure that security testing can be consumed by projects delivering new systems and solutions. 

You will also be responsible for running BAU security testing across all existing solutions and for ensuring that the testing approach and capabilities are in step with emerging cybersecurity threats and RSA’s risk appetite.In your role you will be responsible for the oversight of third parties delivering the testing capabilities and also for identifying testing activities that would be better run in-house.

As part of the Cyber Defence team within RSA you will also need to assist with managing zero-day threats and security incidents and represent the team in design, architectural and project delivery forums.

Role Requirements

• RSA Security Testing services are documented and kept up to date
• Security testing is fit for purpose and provides assurance that systems and solutions are secure
• Security testing activities are run in a regular and timely fashion
• Security testing outputs are consumable by all levels of the organisation across senior management, business stakeholders and technical teams
• Security testing outputs provide a regular, consistent view of risk across RSA systems and solutions and steps to remediation are clear

Responsibilities

• Maintaining RSA’s security testing capability
• Providing a consumable security testing service to the technical and business communities
• Maintaining and championing the security testing elements of the SDLC
• Deliver a security testing programme covering penetration testing and red teaming to RSA UK each year 
• Track the progress of remediation and act as the customer for projects delivering remediation activity
• Review emerging cyber threats and industry trends to ensure that RSA’s security testing capability remains effective and relevant

The Individual

You will have:

• Good knowledge of penetration testing approaches and techniques
• Good knowledge of red teaming approaches and techniques
• Experience in managing third party suppliers
• Ability to communicate technical risk information in business terms and contexts
• Relevant security qualifications or experience, for example CISMP, CISSP

About Us

RSA is one of the world's leading FTSE 100 general insurers with a proud heritage dating back over 300 years. We provide high quality, innovative insurance products and services for some 20 million customers in over 100 countries, setting new standards in the industry.

Why are we telling you all this? Well, we’re an ambitious sort of company. And if you’re an ambitious sort of person – with the drive to improve us as you improve yourself – we’ll promise you all the resources and career opportunities you need

We aim to provide every one of our employees with a great work-life balance and the opportunity to contribute to charity. We have a thriving community investment programme, volunteer weeks, social events, focus groups, and team outings.

Apply now

If this sounds like a role you’re interested in then please apply.

Get job alerts

Create a job alert and receive personalised job recommendations straight to your inbox.

Create alert