Senior Security Operations Analyst (Threat)
Senior Security Operations Analyst (Threat)
Senior Security Operations Analyst (Threat)
Hours:
Closing Date:
Thu, 28 Aug 2025
We are recruiting for a Senior Security Operations Analyst, to join our Security team. If you enjoy working in a fast paced and agile environment, helping inform key decisions on our security posture, analysing assessing, hunting threats, and have curious and analytical mindset this may be the job for you.
Who Are We?
Not just another building society. Not just another job.
We're the fourth biggest building society in the UK and what makes us a bit different is that we're a mutual organisation. We don't have shareholders; we're owned by our members.
Our colleagues say Skipton's a great place to work, and you could be one of them, bringing with you new ideas on how we can keep customers at the heart of what we do.
Whatever your background, and whatever your goals, we'll help you take the next step towards a better future.
You will be joining the Security function with over 20 people dedicated to securing our organisation, split over various security disciplines. Working specifically within the Operational Security Team, you will be working closely with our Managed Security Service Provider, whilst supplementing this service with your own capabilities such as threat analysis and hunting, supporting incident management processes and maintaining our threat landscape.
What's In It For You?
Skipton values work/life balance and we are proud to support hybrid and flexible working, where possible. We have a newly refurbished head office which offers a vibrant and collaborative working space.
We have a range of other benefits available to you including;
* Annual discretionary bonus scheme
* 25 days standard annual leave + bank holidays + rising 1 day per year of service to a maximum of 30 days
* Holiday trading scheme allowing the ability to buy and sell additional annual leave days
* Matching employer pension contribution (up to 10% per annum)
* Colleague mortgage (conditions apply)
* Salary sacrifice scheme for hybrid & electric car
* A commitment to training and development
* Private medical insurance for all our colleagues
* 3 paid volunteering days per annum
* Diverse and inclusive colleague networks available for you to join including our Carers and Pride Alliance groups
* We care about your health and wellbeing - we provide a range of benefits that support this including cycle to work initiative and discounted gym membership.
What Will You Be Doing?
* Monitor escalated security alerts from our MSSP and MDR service, assessing and managing their progress internally, whilst work closely with our MSSP and MDR to ensure we are effectively utilising both the SIEM and MDR services appropriately and driving process and best practise improvements.
* Conduct in-depth analysis of security events to determine their impact and severity.
* Correlate data from multiple sources to identify patterns and indicators of compromise (IOCs) and use EDR and SIEM tools to conduct proactive threat hunting.
* Support our incident management process, providing subject matter expertise.
* Maintain, implement processes, and supporting documentation. Input into the creation and maintenance of appropriate standards and policies aligned with our current policy framework.
* Maintain and update our threat landscape.
* Train and support junior analysts.
What Do We Need From You?
Knowledge:
* Proficiency in incident handling, threat analysis, and security tools.
* Familiarity with network protocols, malware analysis, and log analysis.
* Good knowledge of both the NIST and Mitre Att&ck frameworks
* Experience:
* Minimum of 2 years in a SOC environment.
* Using EDR tooling (preferably Sophos).
* Using a Threat Intelligence Platform.
* Interpreting threat intelligence feeds, indicators of compromise (IOCs), and tactics, techniques, and procedures (TTPs).
* Threat hunting across both on-premise and cloud environments.
* Dark Web Monitoring
* Demonstrated ability to analyse large data sets and identify anomalies, quickly create and deploy countermeasures under pressure and create complex scripts, develop tools, or automate processes in Python or other relevant command languages.
Qualifications:
Relevant certifications such as CompTIA Security+, CEH, or GIAC (GCIH, GCIA, etc.).
Behaviours:
* Strong communication, analytical and teamworking skills
* Excellent investigative skills, insatiable curiosity,
* Instinctive and creative
* Self-motivated and possessing a high sense of urgency and personal integrity.
* Highest ethical standards and values
#LI-NP1
Boost your career
Find thousands of job opportunities by signing up to eFinancialCareers today. #J-18808-Ljbffr