Information Security Analyst in England, United Kingdom

at Citrix

Information Services
Computer & Network Security
Minimum Qualification
Bachelor's Degree
Required Experience
7 - 10 years
Employment Type
Full Time
Male or Female
Share this job

Job Description

Responsible for leading, allocating and managing tasks, resource planning, reporting and management of problems and team performance. Makes critical contributions to the selection and development of Information Security staff, participate in the recruiting of staff, and provide staff with day-to-day direction and feedback. Incumbents will also coach and mentor staff, thus building Information Security capability in the future. Makes critical contributions to the identification and development of technological capability for the organization. Works with customers to identify new requirements and create new integrated solutions to address them. Through networks, relationships, and affiliations stays abreast of new developments and systems, seeking ways to apply them to organizational needs.



  • Coach and help develop team members.
  • Facilitate problem solving and collaboration.
  • Coordinate with internal and external customers as necessary.
  • Assure that the team addresses all relevant issues within the specifications and various standards.
  • Assist and/or lead in the response and mitigation of critical incidents.
  • Work closely with Information Security Manager to design departmental goals and vision for the organization.
  • Participate on a Computer Security Incident Response Team (CSIRT) that responds to high profile security incidents such as denial of service attacks, virus infestations, and internal fraud
  • Analyze select commercially-available information security products and services; make recommendations on those should be adopted by, or tested by Citrix Systems.
  • Provide users and management with specialized, highly focused, technical support on matters related to information security such as the criteria to use when selecting information security products.
  • Act as a technical information security reviewer of requirements statements, feasibility analyses, operating procedure manuals, and other documents produced during the systems development process.
  • Review and approve proposals to significantly enhance or modify the configuration or functionality of intranets, firewalls, servers, applications, databases, and other important parts of Citrix information systems infrastructure.
  • Provide special technical guidance to the Information Technology department staff about the risks and control measures associated with new and emerging information systems technologies.
  • Act as a secondary technical resource to users, user department management, and others within Citrix Systems who are seeking more information about information security.
  • Participate in, and act as a technical leader in, periodic information systems risk assessments including those associated with the development of new or significantly enhanced business applications.
  • Review the cost-effectiveness and practicality of existing information security procedures and systems, and make suggestions for their improvement.
  • Conduct reviews of information security policies, architectures, standards, and/or other technical requirement documents needed to advance information security at Citrix Systems.
  • Interpret information security policies, standards, and other requirements in light of specific internal information systems, and assist with the implementation of these and other information security requirements.
  • Assists in selection, installation, and adoption decisions for automated tools that enforce or monitor the compliance with information security policies, procedures, standards, and similar information security requirements.
  • Provide mentoring and develop and deliver cross-training to other team members on security best practices.
  • Stay informed about the latest developments in the information security field, including new products and services, through on-line news services, technical magazines, professional associations, industry conferences, training seminars, and other information sources. Impart critical updates and other information to team and lead efforts to adjust existing policies and procedures.
  • Participate as a technical advisor for a variety of ad-hoc information security projects that will be dictated by current business and technological developments.



  • BA/BS in Information Systems Management, Computer Science, or related discipline, or equivalent
  • Minimum of 7 years of IT Security experience
  • Previous experience in an Information Technology Security team and the ability to interpret and communicate highly technical, security-related concepts to a broad range of technical and non-technical staff
  • Proven business skills including: effective oral and written communication, meeting facilitation, issue resolution, and self motivation
  • Excellent project management skills, focusing on resource allocation and execution
  • Experience in the development of information security policies and intrusion response procedures, and administration of the operations of a security infrastructure
  • Strong knowledge of security standards such as ISO 17799, NIST Orange Book, Microsoft Site Security handbook, HIPAA Security Standards and Sarbanes Oxley requirements
  • A deep understanding of Firewalls and Intrusion detection and prevention products and methodology as well as various user authentication products and methodologies including Microsoft Active Directory
  • A deep understanding of and experience with protocol & standards experience including TCP/IP, SSL, S/MIME, Radius, LDAP, IPSEC & public key cryptography techniques
  • Experience with WLAN security protocols and tools, such as 802.1X, LEAP, PEAP, WPA, and VPN technologies
  • Information Security Governance, Regulatory Compliance, Information Security and Risk Management, Multi-platform Security Knowledge, Security Awareness, Network, Data, and Application Security, Forensics, Incident Management, Information System Audit, Knowledge of Domain specific Processes and Practices (and their application), Project Management, Security Technology and Tools (e.g., Intrusion Detection, Vulnerability Assessment, Data Loss Prevention and Enterprise Anti-Virus)
  • Advanced knowledge of UNIX, Windows OS family, TCP/IP and networking technologies required
  • Strong familiarity with the development and deployment of secure web technologies required
  • Demonstrates independent decision-making abilities
  • Strong familiarity with SSL/TLS and encryption
  • CISSP/SSCP required


  Apply Now

Sponsored Jobs in United States

Ads by Careerslip