View our cookie policy .Senior Cyber Security Analyst - Incident Response page is loaded## Senior Cyber Security Analyst - Incident Responselocations: Edinburghtime type: Full timeposted on: Posted Todaytime left to apply: End Date: September 19, 2025 (13 days left to apply)job requisition id: R0073205****Job Description****At Aberdeen, our ambition is to be the UK’s leading Wealth & Investments group.Strengthening talent and culture is one of our strategic priorities. We strive to make Aberdeen a great place to work so that we can attract and retain the industry’s best talent.Our people put our stakeholders at the heart of everything they do by helping us to make a positive difference to the lives of our clients, customers, colleagues, shareholders, and society.We are focused on growing our direct and advised wealth platforms and repositioning our specialist asset management business to meet client demand. We are committed to providing excellent client service, supported by leading technology and talent.Aberdeen comprises three businesses, interactive investor (ii), Investments, and Adviser, each of which focuses on meeting and adapting to our clients’ evolving needs:* interactive investor, the UK’s second largest direct-to-consumer investment platform, enables individuals in the UK to plan, save, and invest in the way that works for them.* Our Adviser business provides financial planning solutions and technology for UK financial advisers, enabling them to create value for their customers.* Our Investments business is a specialist asset manager that focuses on areas where we have both strength and scale to capitalise on the key themes shaping the market, through either public markets or alternative asset classes.**About the role:**The Senior Cyber Security Analyst role is an exciting and integral part of the Cyber Security Operations team. This role is technical and will support the Cyber Response Lead in responding to escalated security alerts from L1 and L2 analysts, and proactively developing and tuning detection rules.The role reports directly to the Cyber Response Lead and is based in Edinburgh. The role holder will work closely with our Cyber Security Operation Centre and with other security functions as well as specialist 3rd party security suppliers and the global IT and business teams.**Key Responsibilities:*** Conduct thorough investigations to determine the root cause, scope, and impact of security alerts escalated from L1 and L2 security analysts.* Monitor detection and response KPIs* Support detection rule management, implementing new rules and tuning out false positives* Maintain incident response plans and playbooks* Support in documenting incidents and response actions in detailed post incident reporting* Manage the the Information Security Queue in relation to Cyber Response tickets* Coordinate and collaborate with internal and external stakeholders, such as IT, business, and audit teams on security-related matters.* Recommend and implement security posture improvements, collaborating with IT teams to ensure security measures are integrated into systems**About the Candidate:*** **Experience in Cyber Security**, ideally within an international asset management or similar large organisations.* **Passion for security and self-development** to keep up to date with the evolving threat and vulnerability landscape, new technologies and service improvements* **Able to work in an international matrix organisation** with complex and dynamic drivers and constraints* **Comfortable with a fast paced** **multi-threaded working environment*** **Proficiency in Microsoft Security Stack** – Strong hands-on experience with Microsoft’s security ecosystem, including the Microsoft Defender suite (MDE, MDO, MDA, MDI) and related identity protection technologies (Azure AD Identity Protection, Conditional Access).* **Proficiency with Microsoft Sentinel** (SIEM/SOAR) for security monitoring, detection, and incident response. The ideal candidate will have practical experience configuring, tuning, and maintaining these solutions, analysing alerts and incidents, developing advanced hunting queries (KQL), developing automation playbooks, and integrating with other security controls and solutions.* **Experience with security tools outside of the Microsoft eco-system**, such as IDS/IPS, vulnerability scanners, web and email filtering, webapp firewalls and DDoS protections, proxies, host-based protections and malware analysis engines* **Good understanding of Cyber Detection and Response Concepts** such as the MITRE ATT&CK framework for mapping adversary behaviours and improving detection coverageWe are proud to be a Disability Confident Committed employer. If you have a disability and would like to apply to one of our UK roles under the Disability Confident Scheme, please notify us by completing the relevant section in our candidate questionnaire. One of our team will reach out to support you through your application process.**Our benefits**There's more to working life than coming home with a good salary. We have an environment where you can learn, get involved and be supported.When you join us, your reward will be one of the best around. This includes 40 days’ annual leave, a 16% employer pension contribution, a discretionary performance-based bonus (where applicable), private healthcare and a range of flexible benefits – including gym discounts, season ticket loans and access to an employee discount portal. You can read more about our benefits**Our business**Enabling our clients to be better investors drives everything we do. Our business is structured around three distinct areas – our vectors of growth – focused on our clients’ changing needs. You can find out more about what we do .**An inclusive way of working**Whatever way you like to work, if you have the talent and commitment to join our team, we’d like to hear from you.At Aberdeen we’ve adopted a ‘blended working’ approach. This approach combines the benefits of face-to-face collaboration, coaching and connecting in our offices with the flexibility of working from home. It enables colleagues to find a balance that works for their roles, their teams, our clients and our business., where diverse perspectives drive our actions, is at the core of who we are and what we do. If you need assistance with your application, or a reasonable adjustment to your interview arrangements – for example, because you are neurodivergent, or have a physical, sensory, cognitive, mental, visible or invisible disability – please let us know and we’ll be happy to help.## We’re committed to providing an inclusive workplace where all forms of difference are valued and which is free from any form of unfair or unlawful treatment. We define diversity in its broadest sense – this includes but is not limited to our diversity of educational and professional backgrounds, experience, cognitive and neurodiversity, age, gender, gender identity, sexual orientation, disability, religion or belief and ethnicity and geographical provenance. We support a culture that values meritocracy, fairness and transparency and welcomes enquiries from everyone.## **If you need assistance or an adjustment due to a disability please let us know as part of your application and we will assist.**
#J-18808-Ljbffr