Back to careers

Cyber Security Analyst

We’re looking for two cyber security analysts to join our growing UK SOC team!

As a Cyber Security Analyst, you will work with cutting edge technology to support our clients.

We are looking for a candidate with previous experience working in a a Cyber Security Analyst role. Ideally you will have been exposed to a mixture of tools and technologies including Microsoft Sentinel and Elastic. You will have gained knowledge and experience in investigating alerts and incidents, and also dealing with client enquiries.

You will possess excellent time management, organisational, and communication skills (both oral and written). You will be comfortable conversing on the phone or in a video call with internal and external stakeholders, as well as technical and management resources from other parts of the organisation.

You must be a UK citizen or a citizen of a full member EU state that has been a resident in the UK.

Due to the nature of some of our work and exposure to sensitive information, you will be required to complete security vetting.

The position is for standard business hours, working remotely with visits to our Birmingham office as necessary.

Key responsibilities

  • Support the client and team members in day-to-day operations of the SOC
  • Experience in extensive analysis of security incidents involving Windows, UNIX/Linux, network devices, and other assets
  • Ensure that all events coming in to the SOC, including alerts, incidents, and customer enquiries are handled according to SLAs
  • Be part of the vulnerability management programme and ensure scans, investigations, and reports are delivered within SLAs
  • Actively track trending security threats in the public domain and contribute to improvements associated with the Threat Monitoring service
  • Follow up with clients, ensuring that queries beyond incidents are handled in a professional manner that grows with the relationship
  • Assist with onboarding new clients via knowledge gathering and threat modelling workshops

Required skills and qualifications

  • Experience in SIEM technologies, including Microsoft Sentinel and Elastic
  • TCP/IP or Network Security Knowledge
  • Technology agnostic understanding of network device and firewall configuration
  • Strong understanding of both Windows and Linux/UNIX operating systems
  • Script knowledge desirable but not essential
  • Strong and holistic technical diagnostic skills
  • Attention to detail and quality
  • Excellent communication, both written and verbal
  • A passion for cyber security

Desirable skills and qualifications

  • CREST CPIA, SC-200 Microsoft Azure Security Technologies, Elastic Certified Engineer, CompTia Security/CySA+
  • Cisco, Fortinet, PaloAlto certification or experience
  • Cyber Incident Response

Want to be part of the team?

Apply by sending your CV and cover letter to