Location: London
Contract Type: Fixed Term Contract – 12 Months
Work Pattern: Full Time Hybrid
*** Familiarity with SIEM platforms, particularly use and configuration of Sentinel is essential ***.
About The Role
We are seeking an experienced Cyber Security Analyst to join our team on a fix term 12-month contact with a potential to convert to permanent as we implement our new operating model. This role will primarily face off into our Managed Service Provider (MSP) for outsourced Security Operations Centre (SOC) and SIEM functions, providing oversight, reporting and continuous improvements of our incident response capabilities. Additional responsibilities will include supporting our internal Cyber Threat Intelligence (CTI) function to ensure seamless integration with other functions, shared team mailbox management and ensuring continued operation of security controls.
This role will report to the Security Operations Manager and is ideal for a candidate with a strong SOC background looking to progress outside of 24/7 shift work and obtain a broader experience of Cyber Security.
What You'll Spend Your Time Doing
Incident Detection & Response:
* Oversee the SOC response to security alerts and logs from SIEM and other tools.
* Act as the escalation point for security event triage, investigation, as well as response to security incidents in real-time where required.
* Perform investigation and root cause analysis where required.
* Facilitate lessons learnt exercises following major incidents and near misses.
* Support the onboarding of new log sources and configuration of appropriate use cases.
Threat Intelligence & Analysis:
* Analyse threat intelligence feeds and correlate with internal data.
* Identify emerging threats and recommend proactive measures.
* Support existing CTI resources ensuring a proficient service.
Collaboration & Communication:
* Work closely with SOC analysts, CTI teams, IT teams, and external partners.
* Communicate incident status and impact to stakeholders clearly and effectively.
* Support in the management of a shared team mailbox, dealing with approvals and questions.
Documentation & Reporting:
* Ensuring the operation and attestation of ISAE3000 controls assigned to Cyber Security.
* Ensure we maintain detailed incident records and post-incident reports.
* Contribute to the development of playbooks and runbooks.
* Ensure oversight and reporting of agreed SLA's, KPI's and KRI's.
Continuous Improvement:
* Participate in incident response exercises and simulations.
* Recommend improvements to detection, response, and recovery processes.
You're Going to enjoy this job if you…
* Find satisfaction in proactively managing threats.
* Take pride in enhancing cyber security capabilities and want to drive continuous improvement.
* Enjoy collaborating closely with stakeholders across various units advising and discussing security matters.
* Feel fulfilled being responsible for key aspects on organisational security as one of the primary points of contact for outsourced SOC/SIEM operations.
* Appreciate the importance of governance and compliance efforts understanding security has many facets.
What we need from you
* Proven experience in cybersecurity incident response or SOC operations.
* Familiarity with SIEM platforms, particularly Sentinel.
* Strong understanding of network protocols, operating systems, and security technologies.
* Knowledge of MITRE ATT&CK framework and threat hunting methodologies.
* Ability to work under pressure and manage multiple incidents simultaneously.
* Excellent analytical, problem-solving, and communication skills.
We are stronger together because of our common interests and rich differences. You may be the strength we didn't know we needed. Believe in yourself, and click apply today
What Can You Expect From Us?
* Competitive Base Salary
* Performance Related Discretionary Bonus
* Holiday: 28 days core annual leave, and you can buy up to 5 days
* Pension: A minimum 2% employee contribution plus 7% MS Amlin contribution (9%) up to a maximum of 5% employee contribution plus 13% MS Amlin contribution (18%)
* Private Medical: cover for yourself. Family members/dependants can be added
* Flex Fund: £1,000 (pro-rated based on start date) to spend on flexible benefits
* Life Assurance: 5x annualised base salary
* Bank Holidays: To support the diverse backgrounds and beliefs of our team, we offer employees the flexibility to exchange bank holidays for alternative dates that better reflect their personal, cultural, or religious preferences.
Each one of us is unique because of our backgrounds, what we have learned so far and how we express that. Establishing an inclusive attitude helps us, organisationally, to 'think outside the box' because it calls on that diverse range of ideas, perspectives and lived experiences.
We commit to continuing our work towards a more diverse and inclusive future by recognising that our business, our teams and every colleague has a part to play in driving the positive change we all want to see.
Our values demonstrate our commitment to providing an environment in which each and every colleague is respected for who they are and what they can contribute to the business, regardless of nationality, race, ethnicity, religion/faith, sexual orientation, gender identity, gender expression, disability, socio-economic background, sex or age.
#LI-hybrid #MSABS