Cybersecurity Analyst

Job Summary

Virgin Atlantic Limited is seeking a highly skilled Cybersecurity Analyst to join our Cyber Security Operations team. As a key member of our team, you will play a vital role in protecting our IT infrastructure and endpoints from cyber threats. Your primary responsibility will be to develop and manage vulnerability management and security testing tools, collaborate with technical teams and service providers to improve processes, and guide the implementation of improvement strategies with IT, development, and project teams. You will also be responsible for staying up-to-date with standard methodologies in cybersecurity to contribute to security transformation initiatives.

Key Responsibilities

• Perform thorough vulnerability assessments using automated tools and manual techniques to identify potential security weaknesses across systems, applications, and networks.
• Complete penetration tests to simulate cyber-attacks, evaluate system security, and identify vulnerabilities that could potentially be exploited by attackers.
• Assess the severity and potential impact of identified vulnerabilities, prioritising them based on risk.
• Build relationships and collaborate with internal and external teams to develop and implement effective remediation plans, ensuring that vulnerabilities are properly addressed and mitigated.
• Continuously monitor the status of identified vulnerabilities and remediation efforts, providing regular reports and updates to management and stakeholders.
• Contribute to the investigation and response of security incidents, demonstrating expertise in vulnerability management to determine underlying causes and suggest preventive actions.
• Develop, manage and maintain vulnerability assessment and penetration testing tools and solutions.
• Keep abreast of the latest security trends, vulnerabilities, and attack vectors, and integrate this knowledge into VA's vulnerability management practices.
• Contribute to the development and enhancement of security policies, standards, and procedures related to vulnerability management.

About You

• Experience with automated and manual techniques for identifying security weaknesses in systems, applications, and networks.
• Ability to assess the impact and severity of identified vulnerabilities and prioritise them based on risk.
• Experience in working with Infrastructure and development teams to implement effective security remediation strategies.
• Familiarity with tools such as Nessus, Qualys, Defender, OpenVAS for vulnerability assessments, and Metasploit, Pentera, Burp Suite for penetration testing.
• Strong abilities to analyse complex security issues and devise effective solutions. High attention to detail.
• Highly effective communication and interpersonal skills, with the ability to produce and present high-quality reports, insights and metrics, that aid in the risk-based approach to vulnerability management.
• Knowledge of security standards and frameworks like MITRE, NIST, ISO 27001, PCI DSS, and CIS Controls.
• Some scripting in KQL, Powershell and Linux exposure.

What We Offer
Virgin Atlantic Limited is an equal opportunities employer and actively encourages applications from all backgrounds. We believe everyone can take on the world - no matter your age, gender, gender identity, gender expression, ethnicity, sexual orientation, disabilities, religion, or beliefs. We celebrate difference and everything that makes our colleagues unique by upholding an inclusive environment in which we can all thrive.

---