From global research discoveries to clinical breakthroughs – our vision is to become the most influential life sciences company for researchers. If you are motivated by making a real impact to people’s life and have a desire to work in a passionate and diverse community, Abcam is the place for you. 

Our culture is driven by our dedicated, agile and audacious community of professionals who are driven by a combined purpose and sense of belonging. We’re incredibly proud to be recognised as one of the top 5 best places to work in the UK for two years running, as per Glassdoor’s Employees’ Choice Award.

The Focus of the role

2nd Line Security analysis providing threat hunting, vulnerability management and service management expertise across the global security remit for Abcam.

The Role

As a Security Analyst, you would join 5 other member as part of the Abcam Digital, Cyber Security team. The Global Cyber Security function has overall responsibility for security risk and assurance as well as strategic oversight and management of the ISMS.

The security analyst plays a vital role in keeping Abcam’s proprietary and sensitive information secure. They will work inter-departmentally and internationally to identify and support remediation activities across the company’s security systems, solutions, and programs while recommending specific measures that can improve the company’s overall security posture.

The Security analyst is responsible for the operational monitoring activity that ensures the company's digital assets are protected from unauthorised access. This includes securing both online and on-premise infrastructures, reviewing metrics and data to filter out suspicious activity, and finding and mitigating risks before breaches occur. If a breach does occur, the security analyst will form an integral part of the front line CIRT efforts, including threat detection, threat investigation and response activities with Abcam's MDR provider.

To succeed within the role of Security Analyst, you'll have experience in a similar position, and you'll ideally have the following competencies & capabilities:

What are you are responsible for:

• Responsible for security event monitoring, management, and response in conjunction with our MDR provider.

• Manage the overall vulnerability management portfolio across the Abcam domains

• Contribute to continuous improvement of Incident response automation efforts.

• Contribute to establishing, developing, and maintaining processes to build and strengthen the security relationship with the MDR.

• Build out the internal Abcam Security remit and operational processes collaborating with the DWX operational teams to ensure consistency and viability.

• Operate with compliance to SLA, process adherence and process improvement to achieve operational objectives.

• Support the MDR with threat management and threat modelling components & develop use cases for threat monitoring.

• Creation of reports, dashboards, metrics for security events and presentation to Management and various stakeholders.

• Participation in 24/7 on-call rota / follow the sun monitoring

• Co-ordination with stakeholders, build and maintain positive working relationships with them.

• Supporting evaluation of 3rd party vendor risks and collaborating with them to meet Abcam security standards.

• A solid understanding of cyber threats and malware analysis, you must be able to identify suspicious activity and provide proactive solutions

• Aware of security incident management & response procedures and can adapt quickly in high stress environments.
• Technology and security English language skills
• Experience in security device output and event and alert consumption and analysis.
• Experience in threat identification and response in depth security knowledge of various operating systems i.e. including but not limited to Linux, MacOS, Windows
• Knowledge of applications, database, middleware to address security threats.
• In depth knowledge of the TCP/IP protocol stack and OSI model.
• Familiar with common threats including but not limited to malware, phishing, ransomware, DDOS, web & mobile application security risks.
• Excellent communication & team collaboration skills.
• Ability to multitask and handle high pressure situations with key stakeholders.
• An independent worker who is comfortable working with overseas teams, owning their own time and seeking guidance as needed. Someone who has high levels of initiative.
• Good analytical skills, problem solving and interpersonal skills.