Security Administrator

As one of the UK’s largest management pub and restaurant companies, Mitchell’s & Butlers has an exciting and unique opportunity for a Security Administrator to join the business change and technology team on a permanent basis.

You will be solely based in birmingham city centre, in an office flexible role reporting to the it governance manager, working with architects, infrastructure, it operations and our vendors to ensure we keep our security landscape maintained and compliant in accordance with policy, providing consultancy to project teams on security requirements, to ensure adherence to policy and procedures and to also contribute to the information security steering group.

The work of a Security Administrator is varied and challenging, and includes the following;

• Ensuring system users and administrators access is relevant, appropriate and removed when necessary in a timely manner
• Oversee our employee, contractor and vendors process for user creation, deletion and change
• Conduct regular reviews of logs in our SIEM tool and other security and system infrastructure
• Report on systems compliance with anti-virus and patching
• Work with our external SOC to identify, manage and remediate actions
• Work on and manage actions resulting from Audits or other reviews providing progress reports periodically
• Remain abreast of industry best practices and emerging security issues
• Support the imitative to embed a culture that promotes IT Security with the BC&T, and wider teams and vendors
• Be part of a formal Security Incident Response Team
• Challenge vendors and colleagues on the implementation of security where appropriate to ensure Mitchells and Butlers systems and data are correctly protected
• Support penetration tests and vulnerability assessments and contribute to remediation
• Co-ordinate resolution of findings from Penetration tests and vulnerability assessments
• Govern role based access control and enforce identity lifecycle management processes
• Collate and distribute threat reports and cyber intelligence from vendors, and take preventative steps when required
• Liaise with database administrators to ensure that sensitive data is accessed appropriately
• Liaise with 3rd parties that may store sensitive data on behalf of MAB, ensuring that the data is accessed appropriately

JOB REQUIREMENTS:
• Minimum of 2 years’ experience in an information security role or have similar work experience
• Strong technical skills relevant to Information Security such as data encryption, secure data transmission, secure data consumption and risk analysis
• A good working understanding of security techniques and mechanisms such as:
o Denial of Service
o Generic Firewalls and Web Application Firewalls
o Intrusion Detection and Protection Systems
o Monitoring, Logging, Alerting and Analysis tools
o Network and application security
o OWASP Top Ten and other application vulnerabilities
o PCI-DSS
o Proxy Server and debugging, Anti-Malware
o Scripting (preferably Powershell)
o Security Infrastructure
• Approachable style with a passion for continuously improving systems
• CISSP / CISMP, desirable or working towards
• Confident and articulate presenter at all levels
• Demonstrable problem-solving and analytical skills
• Experience working with O365 and Microsoft Azure
• ITIL Foundation V3 preferable
• Strong planning and organisational skills
• Work well under pressure

WHAT WE OFFER: 33% employee discount in all our pubs & restaurants, flexible working, company bonus scheme, pension scheme, share scheme, healthcare scheme, ‘pickaperk’ employee discounts from 100’s of retailers, childcare vouchers, 26 days’ holiday per year.

The closing date for this vacancy is 6th January 2018

As one of the UK’s largest management pub and restaurant companies, Mitchell’s & Butlers has an exciting and unique opportunity for a Security Administrator to join the business change and technology team on a permanent basis.

You will be solely based in birmingham city centre, in an office flexible role reporting to the it governance manager, working with architects, infrastructure, it operations and our vendors to ensure we keep our security landscape maintained and compliant in accordance with policy, providing consultancy to project teams on security requirements, to ensure adherence to policy and procedures and to also contribute to the information security steering group.

The work of a Security Administrator is varied and challenging, and includes the following;

• Ensuring system users and administrators access is relevant, appropriate and removed when necessary in a timely manner
• Oversee our employee, contractor and vendors process for user creation, deletion and change
• Conduct regular reviews of logs in our SIEM tool and other security and system infrastructure
• Report on systems compliance with anti-virus and patching
• Work with our external SOC to identify, manage and remediate actions
• Work on and manage actions resulting from Audits or other reviews providing progress reports periodically
• Remain abreast of industry best practices and emerging security issues
• Support the imitative to embed a culture that promotes IT Security with the BC&T, and wider teams and vendors
• Be part of a formal Security Incident Response Team
• Challenge vendors and colleagues on the implementation of security where appropriate to ensure Mitchells and Butlers systems and data are correctly protected
• Support penetration tests and vulnerability assessments and contribute to remediation
• Co-ordinate resolution of findings from Penetration tests and vulnerability assessments
• Govern role based access control and enforce identity lifecycle management processes
• Collate and distribute threat reports and cyber intelligence from vendors, and take preventative steps when required
• Liaise with database administrators to ensure that sensitive data is accessed appropriately
• Liaise with 3rd parties that may store sensitive data on behalf of MAB, ensuring that the data is accessed appropriately

JOB REQUIREMENTS:
• Minimum of 2 years’ experience in an information security role or have similar work experience
• Strong technical skills relevant to Information Security such as data encryption, secure data transmission, secure data consumption and risk analysis
• A good working understanding of security techniques and mechanisms such as:
o Denial of Service
o Generic Firewalls and Web Application Firewalls
o Intrusion Detection and Protection Systems
o Monitoring, Logging, Alerting and Analysis tools
o Network and application security
o OWASP Top Ten and other application vulnerabilities
o PCI-DSS
o Proxy Server and debugging, Anti-Malware
o Scripting (preferably Powershell)
o Security Infrastructure
• Approachable style with a passion for continuously improving systems
• CISSP / CISMP, desirable or working towards
• Confident and articulate presenter at all levels
• Demonstrable problem-solving and analytical skills
• Experience working with O365 and Microsoft Azure
• ITIL Foundation V3 preferable
• Strong planning and organisational skills
• Work well under pressure

WHAT WE OFFER: 33% employee discount in all our pubs & restaurants, flexible working, company bonus scheme, pension scheme, share scheme, healthcare scheme, ‘pickaperk’ employee discounts from 100’s of retailers, childcare vouchers, 26 days’ holiday per year.

The closing date for this vacancy is 6th January 2018