The Security Lead (Analyst) Ops sits within the Protective Monitoring function of the Cyber Security Operations Centre (CSOC). The CSOC is made up of Protective Monitoring, Incident Management, Threat Operations, Engineering and Consulting. The role is responsible for leading the Network Protective Monitoring sub team. Cyber Operations purpose is to support safe care and build public trust by … team responsible for network security, ensuring continuous monitoring of NHS England's core infrastructure and systems. Line-manage and mentor a team of analysts, providing guidance on monitoring strategies, threatdetection, and incident response. Deputise for the Detect & Respond Lead when required, ensuring operational continuity and effective decision-making during critical events. Provide quality assurance on investigations, reviewing … analysts' work to maintain accuracy and consistency in threatdetection and response. Design, develop, and enhance SOC use cases and associated tooling, working closely with the DevOps team to implement automation, improve detection logic, and streamline response workflows--demonstrating strong capability in creating detailed, effective use cases rather than only analysing incidents. Stay ahead of emerging threats More ❯
will proactively identify, analyse, respond, and mitigate cyber threats that pose risks to Vanquis Banking Groups cybersecurity posture. This involves monitoring security events, conducting incident response activities, enhancing our threatdetection capabilities, and ensuring compliance with policy, standards, and regulation. Your contributions will directly impact our ability to protect sensitive data, maintain business continuity, and mitigate cybersecurity risks. … As a Cyber Intelligence Specialist, you will: Actively participate the delivery of services provided by the Cyber Intelligence Centre including by not limited to Cyber Threat Intelligence, Security Posture Management, Cyber Security Incident Response, Threat Hunting, Penetration Testing & Red Team Testing, and Cyber Risk Mitigation. Incorporate threat intelligence into CIC activities. Collaborate and assist with the investigation … lines, promoting synergy and efficiency. Stay updated on the latest cyber threats, attack vectors, and trends in the cybersecurity landscape. Continuously enhance skills in areas such as incident response, threat hunting, and the utilisation of threat intelligence. Support VBG's compliance with Audit, Data Protection, PCI and other security standards. What We're Looking For: An understanding of More ❯
Technical ownership of the Security Operations Centre (SOC) technology capabilities. Implementation and optimisation of technical capabilities within the SOC. Development and maintenance of use cases and rulesets to enhance threat detection. Specification, communication, and delivery of Security Engineering services. Provide technical thought leadership to clients and internal Cyber Security delivery teams. Supply advanced threat mitigation solutions and services. More ❯
