Job Description

Security Operations Centre Analyst – London (Hybrid) – Excellent Permanent Package – Financial Services

We are looking for a skilled Security Operations Centre Analyst to join our Security Operations team. This role focuses on responding to cyber security incidents while supporting proactive threat intelligence efforts. You will play a key part in detecting, investigating, and mitigating threats, as well as improving our security posture through continuous monitoring and analysis.

Key Responsibilities

Investigate and respond to cyber security incidents, including malware outbreaks, phishing attempts, and insider threats.
Lead incident response efforts and conduct digital forensics.
Enhance detection and response capabilities through process improvements and automation.
Monitor alerts from SOC tools and perform root cause analysis.
Collaborate with IT and security teams to remediate vulnerabilities.
Gather and analyse threat intelligence to inform detection strategies.
Maintain detailed incident records and conduct post-incident reviews.

Technical Skills

Hands-on experience with SIEM, EDR, IDS/IPS, and SOAR platforms.
Strong knowledge of operating systems (Windows, Linux), network protocols, and packet analysis tools.
Familiarity with scripting languages (Python, Bash, PowerShell).
Experience with cloud security monitoring (AWS, Azure, GCP).
Knowledge of frameworks such as NIST and MITRE ATT&CK.

Qualifications

Bachelor’s degree in Cyber Security, IT, or related field.
3–5 years in SOC operations, incident response, or threat intelligence.
Practical experience with forensic investigations and security monitoring tools.
Excellent written and verbal communication skills.

Preferred

Certifications such as CISSP, GIAC (GCIH, GCIA, GCTI).
Experience with malware analysis, APT detection, and regulatory frameworks (GDPR, PCI DSS).
Familiarity with Infrastructure as Code tools and cloud platforms.

Soft Skills