Cookies — it's your choice

At Bright Network we use cookies and similar technologies to help deliver you the best possible experience. Some are necessary to help our website work properly and can't be switched off, and some are optional but support Bright Network in building and running the service that we provide to you.

You can find out more in our privacy policy at any time by going to the link in our footer.

    1. Home
    2. Graduate Jobs
    3. Technology & IT Infrastructure
    4. Junior Information Security Analyst Newcastle Upon Tyne 2024
    Lock Applications for this job are now closed
    Closing soon

    Are you passionate about growing your career in information security? We have an exciting opportunity for a motivated individual to join our dynamic team in Newcastle upon Tyne as a Junior Information Security Analyst.

    This role is perfect for someone looking to build a strong foundation in information security and take the next step in their IT career. As a Junior Information Security Analyst, you’ll play a vital role in supporting our security initiatives, working closely with our experienced team to protect our organization and its customers.

    In this position, you’ll be involved in various aspects of IT security, from daily operations to strategic projects. Reporting directly to the Information Security Officer, you’ll have the opportunity to enhance your skills and grow within a supportive environment that values your contribution to our security efforts.

    This is a hybrid role that requires you to be in our Newcastle-upon-Tyne office two days a week. Please apply only if you’re comfortable with this arrangement.

    What you'll be doing

    Strategy Implementation

    • Support the development and implementation of the Information Security Strategy
    • Work with the security team to implement a Blue Team / SOC framework

    Legal, Regulatory and Compliance

    • Work alongside business units to assist in implementing appropriate controls in line with the ISO/IEC 27001, PCI, and SOC standards
    • Contribute to the creation and maintenance of Information Security Policies and Standards

    Technical Security

    • Take an active role in the management of security systems including Vulnerability Management, DLP, IDS/IPS, AV, SIEM, Firewalls and other network security systems, Endpoint Protection and Device Control systems
    • Measure the effectiveness of security controls through metrics and KPIs
    • Analysing events in our SIEM and investigating issues
    • Consulting on day-to-day security issues
    • Testing the security of our platform and products
    • Working with our engineering team to build secure technical solutions

    Security Incident Management

    • Assist with regular security issues and incidents investigations reported to the team
    • Contribute to the creation and maintenance of a cyber incident management plan which is tested twice yearly

    Risk Management

    • Assist with the identification of security risks and treatment plans
    • Conduct security impact assessments to understand the level of risk Bede information systems are being exposed to

    Vendor Risk Management

    • Support due-diligence activities on 3rd parties as part of Vendor Risk Management

    Education and Awareness

    • Support the development, maintenance and communication of our security awareness programme

    What we are looking for

    Essential

    • Basic understanding of one or more of the following areas
      • Incident Management
      • Information Assurance
      • Information Management
      • Information Security
      • Security Operations
      • Penetration Testing
      • Supplier Management
    • Basic understanding of technical security controls, processes and cloud services
    • Have some offensive security experience such as HackTheBox or similar
    • Working knowledge of Vulnerability Management solutions such as Qualys, Nessus, InsightVM, etc
    • Windows and Linux knowledge (Linux Terminal/PowerShell)
    • Microsoft Azure experience (Endpoint Security and Defender for Cloud)

    Desirable

    • One or more of the following professional qualifications: SANS 504, CEH, Security+ or equivalent
    • Degree in Computer Science/Cyber Security or a related field
    • Knowledge of industry standards: ISO 27001, NIST 800-53/CSF, PCI-DSS, Cyber Essentials, Mitre ATT&CK
    • Experience running security investigations
    • Experience developing Vulnerability Management Programme

    What we can offer you

    Here at Bede, we offer a great benefits package and a competitive salary as you would expect from a forward-thinking and people-centric organisation. What sets us apart is our desire to look after our people in the best way we can and to ensure we are offering the best to our colleagues by asking for feedback, so you’ll be pleased to know our benefits package is always being reviewed.

    • A friendly, flexible and trust-based approach to working
    • 25 days annual leave, plus 8 bank holidays and a typically very generous Christmas break
    • The use of a mobile phone or tablet of your choice, with the monthly contract covered by us
    • ‘Select Enhanced’ Bupa private healthcare – access from day 1 which covers all pre-existing conditions
    • Fully matched private pension scheme (up to 8% matched)
    • Life Assurance which pays out x4 of your salary to a nominated person(s)
    • Employee Assistance Programme – Beders have access to support and practical advice on a variety of issues that might impact their life (provided by Bupa)
    • Innovation time – Engineers have regular opportunities to spend time developing skills and innovating.
    • A great office life! Free snacks and refreshments in the office every day as well as regular food van visits from the best places in Newcastle
    • Access to Calm – the #1 app for meditation and sleep
    • Lots of social events – inside and outside of the working day
    • Referral Programme – help us grow our team with talented individuals and be rewarded with a referral payment of £3,000 (pre-tax)
    • Bede swag – from hoodies to t-shirts and even our much loved Bede socks!
    • Bede Holidays – extra discretionary days off through the year as an extra special thank you