Hybrid working – approximately 2 days per week in the office. Standby cover preferred after the probation period, which is compensated. Applications are reviewed on a rolling basis; please apply promptly as the advert may close early.
Responsibilities
- Continuously monitor the organisation’s security systems and infrastructure for signs of compromise.
- Proactively use available toolsets to hunt for issues using threat intelligence relevant to the organisation.
- Coordinate activities with the managed security services provider.
- Work with the broader Security Operations teams to investigate, contain, and remediate cyber‑security incidents.
- Assess new threats to the business and optimise existing technology to counter identified risks.
- Communicate with stakeholders and provide timely updates during investigations.
- Ensure all security events are investigated and documented to completion.
- Analyse and recommend improvements to use cases and playbooks.
- Collaborate with Security Engineering to enhance monitoring and response use cases.
- Participate in and help coordinate training scenarios to exercise processes, tools, and staff across the wider security team.
- Remain up‑to‑date on the evolving threat landscape.
- Undertake any other requirements as outlined by the line manager.
About You
- Diploma or degree in a technical discipline such as Computer Science, Engineering, Data Analytics, Networking, or Information Security.
- Experience in cyber security, IT operations/engineering, or security incident management.
- Understanding of the Cyber Kill Chain, MITRE ATT&CK, and other information security defence and intelligence frameworks.
- Demonstrated experience with cloud-based infrastructure including Microsoft Azure, Office 365, and Amazon AWS.
- Knowledge of enterprise‑grade technical security controls and defence‑in‑depth strategies.
- Experience working within a regulated environment is highly beneficial.
- Demonstrated stakeholder management skills, both internal and external.
- Enthusiastic about putting customers first every day.
- Knowledge of at least one cloud platform such as Microsoft Azure or Amazon AWS.
- Knowledge of programming or scripting languages such as Python.
- Proficient use of a SIEM tool.
- Strong understanding of the Cyber Kill Chain and MITRE ATT&CK.
Benefits
- Competitive salary.
- 34 days annual leave (pro rata, including public holidays).
- Variable pay schemes – yearly bonus depending on performance.
- Enhanced employer pension contributions – up to 11% employer contributions.
- Enhanced family‑friendly policies.
- Progression opportunities, including funded training, coaching, and mentoring programmes.
- Discounts on gym memberships, high‑street shopping, cycle‑to‑work scheme, car‑leasing scheme, and health CashBack scheme.
- Employee assistance programme for employees and their immediate family.
EEO Statement
We know that the most successful teams are the most diverse teams. Equality, diversity and inclusion are the foundation of our culture. We welcome applications from minority groups, including Black, Asian and Minority Ethnic people, Females, LGBT+, non‑binary, and people with disabilities. We are committed to building a workplace that celebrates diverse voices and represents each customer we serve.
#J-18808-Ljbffr…
