Mid-Level IT Security Analyst Job Description
Job Title: IT Security Analyst
Experience Level: 35 years
Role Overview
The IT Security Analyst will part of the cyber security team and will play a critical role in protecting the organisation's technology environment by monitoring, analysing, and responding to security events; maintaining security controls; and supporting governance, risk, and compliance activities.
This role combines technical security operations with audit, control, and policy responsibilities, aligned with the organisation's security governance framework.
It is ideal for an analyst who is detail-oriented, security-minded, and comfortable working across IT, audit, and compliance.
Key Responsibilities
Security Monitoring & Incident Response
- Monitor security alerts, logs, and dashboards to detect anomalous or malicious activity.
- Investigate security events and support incident response processes.
- Assist in containment, remediation, and documentation of security incidents.
Security Controls & Governance
- Implement, test, and maintain IT security controls across systems, applications, and cloud platforms.
- Perform periodic reviews of access rights, system configurations, and control effectiveness.
- Support the continuous improvement of the organization's security governance framework and policies.
Audit Support & Compliance
- Prepare evidence, documents, and artefacts required for audits (internal/external).
- Work with Technology, Risk, Compliance, and external auditors to coordinate audit activities.
- Track remediation items and ensure corrective actions are implemented.
Risk Assessment & Reporting
- Support periodic risk assessments, identifying vulnerabilities and gaps.
- Document findings, recommend mitigation, and follow up on actions.
- Maintain accurate and up-to-date security documentation, logs, and reports.
Security Awareness & Training
- Assist with company-wide cybersecurity communications and training.
- Promote best practice security behaviors across the organization.
Policy & Documentation
- Contribute to the development, maintenance, and review of security policies, standards, and procedures.
- Maintain accurate audit records and change logs.
Required Skills & Qualifications
- 35 years of experience in information security, IT operations, or security governance.
- Strong understanding of security principles, threat landscapes, and basic security tooling (SIEM, EDR, IAM).
- Familiarity with key security frameworks such as ISO 27001, NIST CSF, SOC 2, and GDPR.
- Experience supporting audits, evidence collection, or control testing.
- Strong analytical and problem-solving abilities.
- Strong communication skills for both technical and non-technical audiences.
- Ability to write clear and precise documentation.
Preferred Qualifications
- Certifications such as Security+, CySA+, CEH, ISO 27001 Auditor/Implementer, or similar.
- Experience with vulnerability management, cloud security (AWS/Azure), or identity management tools.
- Familiarity with SOC operations or incident response.
S YNECHRON'S DIVERSITY & INCLUSION STATEMENT
Diversity & Inclusion are fundamental to our culture, and Synechron is proud to be an equal opportunity workplace and is an affirmative action employer. Our Diversity, Equity, and Inclusion (DEI) initiative Same Difference is committed to fostering an inclusive culture promoting equality, diversity and an environment that is respectful to all. We strongly believe that a diverse workforce helps build stronger, successful businesses as a global company. We encourage applicants from across diverse backgrounds, race, ethnicities, religion, age, marital status, gender, sexual orientations, or disabilities to apply. We empower our global workforce by offering flexible workplace arrangements, mentoring, internal mobility, learning and development programs, and more.
All employment decisions at Synechron are based on business needs, job requirements and individual qualifications, without regard to the applicant's gender, gender identity, sexual orientation, race, ethnicity, disabled or veteran status, or any other characteristic protected by law.
Candidate Application Notice
