Salary: £75,000 - 75,000 per year Requirements: We require eligibility for un-caveated UK SC Clearance. We require at least 2 years of experience as a Cyber Security Operations Analyst or in an equivalent role. We require hands-on experience with Splunk. We require experience across the end-to-end incident response lifecycle. We require detection engineering and alert development expertise. We require strong scripting or programming skills in Python, Bash, C/C++, or Java. We require a solid grounding in cybersecurity fundamentals, including network security, cloud security, cryptography, and forensics. We require understanding of common network protocols and attacker abuse patterns. We require awareness of current APT groups and their TTPs. We require knowledge of analysis techniques for Windows and/or Linux environments. We value familiarity with threat intelligence frameworks and methodologies. We value experience with cloud endpoints and networks. We value a technical background with strong engineering instincts and a proactive mindset. Responsibilities: We develop, maintain, and optimise detection content, primarily within Splunk SIEM, to identify threats across cloud, endpoint, and network environments. We collaborate across security functions to identify gaps in logging, alerting, and detection coverage aligned to business risk. We improve SecOps processes by recommending enhanced logging, identifying trends, and driving operational optimisation. We conduct security monitoring, alert triage, and continuous improvement of detection rules on a rotating schedule. We lead and support incident response investigations, ensuring high-quality documentation and escalation. We mentor and support junior analysts through guidance, coaching, and technical oversight. We serve as a technical SME on client engagements and present findings and recommendations to senior stakeholders. We participate in alert testing, readiness exercises, and incident response tabletop sessions. We stay current on emerging threat intelligence, attacker techniques, and relevant research. We provide approximately one week per month of on-call availability for high-priority incident response, with additional compensation provided. Technologies: Bash Cloud Cryptography Support Java Linux Network Python Security Splunk Windows More: We are a high-performing Blue Team operating at the forefront of modern security operations, seeking an accomplished Senior Cyber Operations Analyst to join us in Manchester on a hybrid basis. This is a technically demanding role for an experienced analyst with strong engineering instincts, hands-on coding capability, and deep expertise in incident response, detection engineering, and adversary tradecraft. We offer a salary of up to £75,000 plus on-call compensation, and the on-call frequency may vary by client. This role is ideal for someone who has grown from an engineering background and is ready to make a significant impact in a senior, client-facing security operations environment. last updated 24 week of 2026