Senior Cyber Security Analyst - SC

Job Title: Senior Cyber Security Analyst - SC
Location: Hybrid/London - 3 days a week on site
Contract Duration: 3 months initially
Daily Rate: £800/day (Umbrella - Maximum)
IR35 Status: Inside IR35

Minimum requirement:

• Experience of investigating and responding to cyber incidents, coordinating incident response in large org
• 5+ years' experience with SPLUNK
• EDR (Endpoint Detection and Response)
• Analytical, problem solving
• Security Clearance: SC

Senior Cyber Security Analyst

• The Cyber Defence team delivers cyber threat intelligence, threat detection, incident response and
• Vulnerability management capabilities for the organisation, and is responsible for defending both internal IT infrastructure and citizen-facing services. As a senior security analyst, you'll take a leading role in building and delivering these core capabilities, focusing on incident response.

As a senior security analyst with responsibility for incident response, you willl:

• Lead the investigation of security alerts to understand the nature and extent of possible cyber incidents
• Lead the forensic analysis of systems, files, network traffic and cloud environments
• Lead the technical response to cyber incidents by identifying and implementing (or coordinating the implementation of) containment, eradication and recovery actions
• Support the wider coordination of cyber incidents
• Review previous incidents to identify lessons and actions
• Identify and deliver opportunities for continual improvement of the incident response capability
• Work closely alongside other Cyber Defence functions, supporting the continual improvement of wider capabilities
• Develop and update internal plans, playbooks and knowledge base articles
• Act as an escalation point for, and provide coaching and mentoring to, security analysts
• Be responsible for leadership and line management of security analysts
• Cyber incidents can and do arise on a 24/7 basis. The team operates an out-of-hours on call rota, which you will be expected to join.

We're interested in people who have:

• Significant experience investigating and responding to cyber incidents
• Significant experience using security tools (eg, EDR, SIEM) to support the investigation and response to cyber incidents
• Experience managing and coordinating the response to cyber incidents
• Experience coaching and mentoring junior staff
• An in-depth understanding of the tools, techniques and procedures used by threat actors
• Excellent analytical and problem solving skills
• Excellent verbal and written communication skills
• Experience with Splunk
• Experience working in an Agile environment
• Experience with cloud environments such as AWS

Disability Confident

As a member of the disability confident scheme, CLIENT guarantees to interview all candidates who have a disability and who meet all the essential criteria for the vacancy. In cases where we have a high volume of candidates who have a disability who meet all the essential criteria, we will interview the best candidates from within that group.

Armed Forces Covenant

CLIENT is proud to support the Armed Forces Covenant and as such, we guarantee to interview all veterans or spouses/partners of military personnel who meet all the essential criteria for the vacancy. In cases where we have a high volume of ex-military candidates/military spouses or partners, who meet all of the essential criteria, we will interview the best candidates from within that group.

If you qualify for the above, please notify us.

We will be in touch to discuss your suitability and arrange your Guaranteed Interview.

Should you require reasonable adjustments at any point during the recruitment process or if there is a more accessible way for us to communicate, please do let me know.

To apply for this role please submit your latest CV or contact Aspect Resources