Overview
At Aberdeen, our ambition is to be the UK’s leading Wealth & Investments group. Strengthening talent and culture is a strategic priority to attract and retain the industry’s best talent. Our people put stakeholders at the heart of everything we do, helping to make a positive difference to the lives of our clients, customers, colleagues, shareholders and society. We are focused on growing our direct and advised wealth platforms and repositioning our specialist asset management business to meet client demand, supported by leading technology and talent.
Aberdeen comprises three businesses, interactive investor (ii), Investments, and Adviser, each focused on meeting and adapting to our clients’ evolving needs.
* interactive investor, the UK’s second largest direct-to-consumer investment platform, enables individuals in the UK to plan, save, and invest in the way that works for them.
* Our Adviser business provides financial planning solutions and technology for UK financial advisers, enabling them to create value for their customers.
* Our Investments business is a specialist asset manager that focuses on areas where we have both strength and scale to capitalise on key market themes, through either public markets or alternative asset classes.
About the role
The Senior Cyber Security Analyst role is an integral part of the Cyber Security Operations team. This role is technical and will support the Cyber Response Lead in responding to escalated security alerts from L1 and L2 analysts, and in proactively developing and tuning detection rules. The role reports to the Cyber Response Lead and is based in Edinburgh. The role holder will work closely with the Cyber Security Operations Centre, other security functions, specialist 3rd party security suppliers, and the global IT and business teams.
Key Responsibilities
* Conduct thorough investigations to determine root cause, scope and impact of security alerts escalated from L1 and L2 security analysts.
* Monitor detection and response KPIs.
* Support detection rule management, implementing new rules and tuning out false positives.
* Maintain incident response plans and playbooks.
* Support in documenting incidents and response actions in detailed post-incident reporting.
* Manage the Information Security Queue in relation to Cyber Response tickets.
* Coordinate and collaborate with internal and external stakeholders, such as IT, business and audit teams on security-related matters.
* Recommend and implement security posture improvements, collaborating with IT teams to ensure security measures are integrated into systems.
About the Candidate
* Experience in Cyber Security, ideally within an international asset management or similar large organisations.
* Passion for security and self-development to keep up to date with the evolving threat and vulnerability landscape, new technologies and service improvements.
* Able to work in an international matrix organisation with complex and dynamic drivers and constraints.
* Comfortable with a fast-paced multi-threaded working environment.
* Proficiency in Microsoft Security Stack– Strong hands-on experience with Microsoft’s security ecosystem, including the Defender suite and related identity protection technologies.
* Proficiency with Microsoft Sentinel (SIEM/SOAR) for security monitoring, detection and incident response, including configuring, tuning, maintaining, analysing alerts and incidents, developing hunting queries (KQL), automation playbooks, and integration with other security controls.
* Experience with security tools outside the Microsoft ecosystem, such as IDS/IPS, vulnerability scanners, web and email filtering, web application firewalls, DDoS protections, proxies, host-based protections and malware analysis engines.
* Good understanding of Cyber Detection and Response Concepts such as MITRE ATT&CK framework for mapping adversary behaviours and improving detection coverage.
Inclusion and Benefits
We are proud to be a Disability Confident Committed employer. If you have a disability and would like to apply to UK roles under the Disability Confident Scheme, notify us in the candidate questionnaire so we can support your application process.
Our benefits
We offer an environment where you can learn, get involved and be supported. Rewards include 40 days’ annual leave, 16% employer pension contribution, a discretionary performance-based bonus (where applicable), private healthcare and flexible benefits such as gym discounts and season ticket loans. More about our benefits is available in the candidate materials.
Our business
Our business is structured around three areas focusing on client needs. You can find out more about what we do in our candidate materials.
An inclusive way of working
Aberdeen supports a blended working approach, combining office collaboration with the flexibility of working from home. We value an inclusive culture where diverse perspectives drive our actions. If you need assistance with your application or an adjustment to interview arrangements due to a disability, please let us know and we will help. We are committed to an inclusive workplace where all forms of difference are valued and where meritocracy, fairness and transparency guide our actions.
J-18808-Ljbffr