Location
Nottingham Trent House (95002), United Kingdom, Nottingham, Nottinghamshire
Job Title
Principal Security Analyst – CSOC
About this role
We are looking for a talented Cyber Security Analyst to join our Cyber Security Operations Center (CSOC) in Nottingham, UK. The Principal Security Analyst CSOC position requires deep knowledge of network protocols and infrastructure, log investigation techniques, cloud infrastructure, and incident handling experience. The role involves proactively identifying signs of misuse or abuse using various log sources and defending our customers from cyber-related attacks.
Responsibilities
* Own complex investigations end‑to‑end, conducting deep‑dive analysis from start to finish.
* Design and execute proactive hunting hypotheses to uncover threats that bypass traditional detection.
* Provide technical mentorship to CSOC analysts, sharing domain knowledge to elevate the team’s skill set.
* Use investigative insights to refine processes and ensure security tools perform at peak efficiency.
Required qualifications
* Significant experience conducting cyber security investigations.
* Hands‑on experience with SIEM technology such as Elastic, Splunk, or similar.
* Experience working with system, cloud, application, and network logs.
* Strong analytical skills for identifying network traffic patterns.
* Proficiency in PCAP analysis.
* Experience analysing workstation or server logs across multiple operating system platforms.
Preferred skills (additional experience)
* Experience in a Security Operations Center (SOC) over a significant period.
* In‑depth understanding of AWS architecture, services, and APIs.
* Forensic analysis experience (Endpoint, Memory, Malware).
* Evaluating and tuning alerts within a SIEM.
* Ability to leverage core security, cloud, and infrastructure technologies during investigations.
* Experience administering or investigating Mac OS or Linux OS.
* Relevant certifications: CISSP, CISM, CCSP, Security+, CEH, SANS GIAC 503/504/508/509, AWS Security.
* Bachelor’s degree in Information Technology, Cyber Security, or Computer Science.
Working arrangements
This is a permanent position based at our Nottingham office. We offer a hybrid working model, with onsite presence three days a week (Tuesdays, Wednesdays, Thursdays). Flexible arrangements can be discussed.
Benefits
* Competitive compensation and opportunities for career progression.
* Pension scheme, performance bonus, generous holiday entitlement, and private medical insurance.
* Additional perks such as flexible benefits, gym access, and wellness facilities.
Legal and Accessibility
Capital One is committed to diversity in the workplace.
If you require a reasonable adjustment to the recruitment process, please contact ukrecruitment@capitalone.com. All information will be kept confidential and used only for the purpose of making an adjustment.
#J-18808-Ljbffr