About Us Ithaca Energy is a leading full cycle exploration and production company headquartered in Aberdeen, Scotland. The business has built a diverse and high value portfolio of operated and non-operated assets across the Northern & Central North Sea and West of Shetland. We are a dynamic and ambitious business on a rapid growth journey, recognising that the energy industry is entering a new era. As we move towards energy transition, our commitment to the North Sea is unwavering. As a leading North Sea Operator, we are an agile and driven business, taking a pragmatic approach to oil & gas production through innovative thinking and advanced technologies. Our goal is to maximise value through the safe, efficient and responsible production of our assets. Success is dependent on our talent and, with bold and inspired people, we will create a workplace that is diverse and equitable, building a culture of collaboration and inclusion. Position Overview Ithaca Energy is accepting applications for the position of Senior Security Operations Analyst, located in our Aberdeen Office. The Senior Security Operations Analyst is responsible for the day-to-day oversight of the organisation's security solutions and ensuring monitoring and response to security incidents, threats and vulnerabilities, as well as ensuring compliance with regulatory and legal requirements. Implementation of security measures, monitoring for potential breaches and responding swiftly and effectively to incidents will be key. The position demands a blend of technical expertise, analytical skills and a proactive approach to safeguarding an organisation's digital assets. In addition, the position requires a deep understanding of the constantly evolving cyber threat landscape and the ability to adapt and innovate to stay ahead of potential threats. Responsibilities Leading the Threat Monitoring and analysis - Security Tools Monitoring and Administration, the expectation would be to react to alerts that are generated and further investigate the issues to prevent any Cybersecurity threat to the organisation acting as the incident response co-ordinator. Key focal point for Analysing security alerts and determine the cause, severity, and potential impact of security incidents. Incident Response: Lead focal point to act as the first responder to cyber incidents, including malware infections, data breaches, and denial-of-service attacks. Conduct thorough investigations to determine the root cause, scope, and impact of incidents. Develop and implement incident response plans to mitigate damage and restore normal operations. Document incidents and response actions in detailed reports for future analysis and improvement. Ensure strong day-to-day protection of Ithaca’s information and IT environment. Ensure the security resources and tools are optimised for maximum value. Recommend and implement security improvements, collaborating with IT teams to ensure security measures are integrated into system designs and updates. Identify and assess current and emerging security risks and ensure implementation of mitigation strategies and solutions that drive continuous improvements in prevention and recovery. Recommend security standards, best practices, and guidelines to be implemented across the Organisation. Coordinate and collaborate with internal and external stakeholders, such as IT, business, and audit teams on security-related matters. Lead any Digital Forensics and investigation activities. Taking the lead role for Security Administration in M365 and Azure. Coordinating Vulnerability Management response across the IT Team to ensure remediations are put in place. The role may require occasional after-hours work to respond to security incidents or perform maintenance during non-peak times. Research and development: Stay updated on the latest cyber threats, vulnerabilities, and defence strategies through continuous research and professional development. Experiment with new security technologies and tools to enhance the organization's security posture. Participate in industry conferences, seminars, and professional networks to share knowledge and stay informed of emerging trends. Mentoring security operations team members and developing their skill sets and knowledge base Qualifications & Experience Bachelor's degree in Computer Science, Information Technology Cybersecurity or a related field is preferable. Existing or seeking profressional ceritfications, such as CISSP, CISM, CISA or CEH are preferred. Proficiency in scripting and programming languages such as PowerShell. Knowledge of encryption, authentication and access control technologies. Excellent communication and interpersonal skillls with ability to communicate effectively with technical and non-technical audiences. Strong analytical, problem-solving and decision-making skills, with the ability to handle complex and ambiguous situations. Capability to work independently and as part of a team in a fast-paced and dynamic environment. Ability to adapt to changing business and security needs and to learn new skills and technologies. Extensive proven competency in cybersecurity, information security or a related field. Hands-on skills with security tools and technologies such as firewalls, End Point Detection Response, SIEM (Security Information and Event Management) solutions, encryption and endpoint protection. Strong knowledge and capability in various domains of cybersecurity, such as network security, cloud security, application security, M365 security, threat intelligence, incident response, vulnerability management, change control, risk management and compliance. Proven track record in a plant environment (preferably offshore Oil and Gas) with excellent understanding of security requirements in both information technology and operational technology domains. Good project management and documentation skills. Ability to mentor others and develop less skilled individuals. Strong understanding of PowerShell scripting and automation to enhance and improve work processes. We are committed to building a diverse organisation with a variety of backgrounds, skills and views. The more inclusive we are, the better we are. We recognise you may not fulfil every criteria but if you meet most of them, please apply.