Senior Information Security Analyst (ASM/VM)

3 Months ago • All levels • Cyber Security

Job Summary

Job Description

The Senior Information Security Analyst (ASM/VM) will be responsible for managing the scanning architecture and a program to identify, analyze, prioritize, and mitigate security vulnerabilities in digital assets. This role supports business strategy in a dynamic environment. Responsibilities include conducting vulnerability assessments, analyzing risks, developing mitigation strategies, collaborating on incident response, managing security tools, developing and enforcing security policies, and preparing detailed reports for senior management. The analyst will engage in the design and support of all aspects of an information security program, including Governance Risk & Compliance, Security Operations, and Security Engineering.
Must have:
  • Experience across multiple cybersecurity domains.
  • Experience analyzing impact of vulnerabilities.
  • Technical experience designing solutions.
  • Strong knowledge of vulnerabilities and best practices.
  • Bachelor’s degree in cybersecurity or equivalent experience.
  • Proficiency with security tools such as Qualys, Crowdstrike, and Splunk.
  • Experience with incident response and threat hunting.
  • Excellent analytical and problem-solving skills.
  • Effective communication and interpersonal skills.
Good to have:
  • One or more security certifications (CISSP, SSCP, GCIA).
  • Experience working in high-tech, engineering, or semiconductor industries.
  • Experience with security industry frameworks (NIST CSF, ISO 27000, FAIR).
  • Executive presence and comfort engaging with leaders.

Job Details

For over four decades, Cirrus Logic has been propelled by the top engineers in mixed-signal processing. Our rockstar team thrives on solving complex challenges with innovative end-user solutions for the world's top consumer brands. Cirrus Logic is also known for its award-winning culture, built on a foundation of inclusion and fairness, meaningful community engagement, and delivering enjoyable employee experiences at every turn. But we couldn’t do it without our extraordinary workforce – and that’s where you come in. Join our team and help us continue to make Cirrus Logic an exceptional place to grow your career! 


We are seeking a highly motivated, seasoned security professional to join Information Security as a Senior Attack Surface Management / Vulnerability Management Information Security Analyst. You will be responsible for managing the scanning architecture, as well as the program to identify, analyze, prioritize, and mitigate security vulnerabilities in our digital assets to enhance cybersecurity and protect sensitive data. This role supports business strategy in a dynamic environment.


Responsibilities:
  • Vulnerability Assessment: Conduct regular vulnerability assessments to identify security weaknesses in our systems, applications, and network infrastructure.
  • Risk Analysis: Analyze and prioritize vulnerabilities based on risk level and potential impact on the organization.
  • Mitigation Strategies: Develop and implement effective mitigation strategies to address identified vulnerabilities and reduce attack surfaces.
  • Incident Response: Collaborate with the incident response team to investigate and respond to security incidents, ensuring swift resolution and minimizing damage.
  • Security Tools: Manage and maintain security tools and technologies used for vulnerability management, including scanning tools.
  • Security Policies: Develop and enforce security policies, standards, and best practices to ensure compliance with industry regulations and internal security requirements.
  • Reporting: Prepare detailed reports on vulnerability assessment findings, mitigation efforts, and overall security posture for senior management.
  • Security: Engage in the design and support of all aspects of an information security program, including Governance Risk & Compliance, Security Operations, and Security Engineering with hands on engineering and administration of security tools, such as CrowdStrike, Qualys, and Splunk in collaboration with fellow security and IT professionals.


Required Skills and Qualifications:
  • Demonstrable experience across multiple cybersecurity domains including vulnerability management, risk management, network security, Splunk engineering, and incident response.
  • Experience analyzing impact of vulnerabilities and designing solutions across Windows, Mac, Linux, Cloud, Network, Labs, and OT.
  • Technical experience designing solutions across Linux, Mac, and Windows platforms.
  • Strong knowledge of common vulnerabilities and attack vectors, as well as security best practices.
  • One or more of the following certifications is preferred: Certified Information Systems Security Professional (CISSP); Systems Security Certified Practitioner (SSCP); GIAC Certified Intrusion Analyst (GCIA).
  • Bachelor’s degree in cybersecurity or have demonstrated ability as a security professional in a globally dispersed enterprise.
  • Experience working in high-tech, engineering, or semiconductor industry is beneficial.
  • Effective working with a globally dispersed team across multiple time zones to deliver solutions on time.
  • Experience with security industry frameworks, such as NIST CSF, ISO 27000 series, FAIR risk analysis, and privacy regulations.
  • Proficiency with security tools such as Qualys, Crowdstrike, and Splunk.
  • Experience with incident response and threat hunting.
  • Excellent analytical and problem-solving skills.
  • Effective communication and interpersonal skills, with the ability to effectively convey technical information to both technical and non-technical stakeholders.
  • Executive presence and comfortable engaging with leaders across the company to facilitate balanced risk discussions and decision making.


This position is in Edinburgh, UK.


This is a hybrid on-site position and will follow a 2+ day in-office work schedule, with in-office days based on business needs and team preference. You must be based within commutable distance of the work location listed on the job posting, or willing to relocate prior to beginning employment with Cirrus Logic.


#LI-PD1

#LI-Hybrid



At Cirrus Logic, we believe that diversity drives innovation, and we are committed to encouraging an open and collaborative culture where different approaches, ideas, and points of view are respected and valued. We aim to promote a workplace where everyone can contribute irrespective of race, colour, national origin, religion or belief, gender or gender identity, sexual orientation, age, marital status, pregnancy status, or disability.

Similar Jobs

Capgemini - Transition Manager I

Capgemini

Chennai, Tamil Nadu, India (On-Site)
2 Months ago
Advanced Systems Group, LLC - Camera Shader

Advanced Systems Group, LLC

New York, United States (On-Site)
1 Month ago
OKX - Data Engineer

OKX

Hong Kong (On-Site)
9 Months ago
Granicus - Business Development Manager - EMEA Tourism

Granicus

United Kingdom (Remote)
2 Months ago
Epic Games - Senior Creator Growth Manager

Epic Games

(On-Site)
3 Months ago
NVIDIA - Intellectual Property Security Engineer

NVIDIA

Bengaluru, Karnataka, India (On-Site)
3 Months ago
Rocket studio - Senior/Expert Security Specialist (IT)

Rocket studio

Warsaw, Masovian Voivodeship, Poland (Hybrid)
2 Months ago
Polygon Labs - Senior Security Engineer (Rust)

Polygon Labs

(Remote)
3 Months ago
endava - Senior Information Security Engineer

endava

Córdoba, Córdoba Province, Argentina (Remote)
2 Months ago
Cadence - Staff Security Engineer

Cadence

San Jose, California, United States (On-Site)
2 Months ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Ethernovia - Project Manager

Ethernovia

India (On-Site)
2 Months ago
PwC - Senior Audit Analyst - Brno/Ostrava

PwC

Brno, South Moravian Region, Czechia (On-Site)
10 Months ago
AECOM - Sustainability Consultant

AECOM

Panama City, Panamá Province, Panama (On-Site)
2 Months ago
Penumbrainc - Electronic Data Interchange (EDI) Analyst

Penumbrainc

United States (Hybrid)
1 Month ago
Qualcomm - GPU Compute Gaming Compiler Engineer - Sr Staff Manager

Qualcomm

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Sony Pictures Entertainment - Global Security Operations Center Operator

Sony Pictures Entertainment

Culver City, California, United States (On-Site)
2 Months ago
London stock Exchange - Senior Market Analyst

London stock Exchange

Gdynia, Pomeranian Voivodeship, Poland (On-Site)
1 Month ago
Dream Sports - MISE Sales Manager - Meetings, Incentives & Sporting Experiences

Dream Sports

Bengaluru, Karnataka, India (On-Site)
4 Months ago
Riot Games - Senior Manager, Insights

Riot Games

Shanghai, China (On-Site)
3 Months ago
Escape Velocity Entertainment - Outsourcing Art Director - Cosmetics

Escape Velocity Entertainment

(Remote)
4 Months ago

Get notifed when new similar jobs are uploaded

Jobs in Edinburgh, Scotland, United Kingdom

Marsh McLennan - Employee Benefits Consultant

Marsh McLennan

Bristol, England, United Kingdom (Hybrid)
1 Month ago
SEGA - Senior Software Engineer (Graphics)

SEGA

London, England, United Kingdom (Hybrid)
5 Months ago
Just wont die - Community Manager

Just wont die

Cambridge, England, United Kingdom (Remote)
2 Months ago
Mozilla - Senior Software Engineer

Mozilla

United Kingdom (Remote)
2 Months ago
Monzo - Senior Product Manager, Global Payments

Monzo

London, England, United Kingdom (Hybrid)
2 Months ago
playthree - 2D Artist / Generalist

playthree

London, England, United Kingdom (On-Site)
2 Months ago
Ion - Head of Private Credit

Ion

London, England, United Kingdom (On-Site)
4 Months ago
Sword Health - NHS Customer Success Manager

Sword Health

United Kingdom (Remote)
2 Months ago
Epic Games - Public Policy Director (Competition)

Epic Games

London, England, United Kingdom (On-Site)
3 Months ago
FICO - Senior Business Operations Analyst

FICO

London, England, United Kingdom (On-Site)
2 Months ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Cubic corporation - Senior Security Operations Engineer

Cubic corporation

Hyderabad, Telangana, India (On-Site)
1 Month ago
Rippling - Senior Software Engineer - Security and Compliance

Rippling

San Francisco, California, United States (On-Site)
7 Months ago
Glocomms - Senior Cybersecurity Engineer

Glocomms

Boston, Massachusetts, United States (On-Site)
2 Months ago
Optiv - Engineer - SailPoint Identity Security Cloud

Optiv

Bengaluru, Karnataka, India (On-Site)
1 Month ago
bounteous - Information Security, Specialist

bounteous

India (Hybrid)
2 Years ago
Google - Software Engineer III, Security/Privacy, Google Cloud

Google

Sunnyvale, California, United States (On-Site)
3 Months ago
Yodlee - Lead Engineer - IT Security

Yodlee

Thiruvananthapuram, Kerala, India (On-Site)
4 Years ago
cyara - Senior Security Engineer

cyara

Hyderabad, Telangana, India (Hybrid)
9 Months ago
Rocket studio - Senior/Expert Security Specialist (IT)

Rocket studio

Warsaw, Masovian Voivodeship, Poland (Hybrid)
2 Months ago
PwC - ETIC, SAP Security Associate - Cyber Security

PwC

Cairo, Cairo Governorate, Egypt (On-Site)
9 Months ago

Get notifed when new similar jobs are uploaded

About The Company

Austin, Texas, United States (Hybrid)

Austin, Texas, United States (Hybrid)

Austin, Texas, United States (Hybrid)

Newbury, England, United Kingdom (Hybrid)

Austin, Texas, United States (Hybrid)

Austin, Texas, United States (Hybrid)

Edinburgh, Scotland, United Kingdom (Hybrid)

London, England, United Kingdom (Hybrid)

Austin, Texas, United States (Hybrid)

Austin, Texas, United States (Hybrid)

View All Jobs

Get notified when new jobs are added by cirrus logic

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug