We are seeking an experienced SC cleared Associate Security Analyst to join our team. You will support the cybersecurity operations, incident investigation, and response efforts within a dynamic environment. Your responsibilities will include investigating security alerts, analysing threats, supporting incident response activities, and contributing to ongoing improvements in security processes
Key Responsibilities:
* Triage and investigate cybersecurity alerts and user reports
* Analyze systems, files, network traffic, and cloud environments to determine the nature and extent of cyber incidents
* Support technical response activities including containment, eradication, and recovery
* Assist in coordinating cyber incident responses
* Contribute to post-incident reviews and identify lessons learned
* Support continual improvement initiatives for incident investigation and response capabilities
* Collaborate with Cyber Defence teams to enhance overall security posture
* Contribute to internal plans, playbooks, and knowledge base documentation
* Line management of apprentice security analysts
Experience & Skills Required:
* 2-3 years' experience in cyber security incident investigation and response
* Strong knowledge of cyber security threats and attack techniques
* Hands-on experience with security tools such as EDR, SIEM (Splunk preferred, Microsoft Sentinel or equivalent acceptable)
* Understanding of threat actor tactics, techniques, and procedures
* Good analytical, problem-solving, and troubleshooting skills
* Hands-on experience with Splunk
* Experience working within an Agile environment
* Familiarity with cloud platforms such as AWS
Please note active SC clearance is required for this role
Minorities, women, LGBTQ+ candidates, and individuals with disabilities are encouraged to apply.
Interviews will take place next week, so please apply immediately to be considered for this contract role.