Cyber Security Operations Analyst
Cyber Security Operations Analyst – Contract
12-Month Engagement | Inside IR35 | Day Rate: negotiable
Active SC Clearance Required
An organisation within the national security and defence ecosystem is looking for a technically minded Security Operations Analyst to strengthen its cyber detection and automation capabilities.
Role Overview
You'll support the development of monitoring controls, help refine detection rules, and contribute to improving how threats are identified and responded to across the environment. The role involves hands-on work with security platforms, scripting tasks, and collaborating with experienced security professionals.
Key Areas of Work
- Enhancing alert logic and monitoring use cases within SIEM platforms
- Building and maintaining automation workflows using Python
- Reviewing security events and log data to spot unusual activity
- Supporting the design of detections aligned to adversarial behaviours
- Assisting investigations and contributing to continuous improvements within the SOC
What You'll Bring
- Experience using one or more SIEM technologies (e.g., Sentinel, Splunk, ELK, Rapid7, LogRhythm)
- Python skills for scripting or automation
- Understanding of SOAR concepts or exposure to automated playbooks
- Familiarity with threat frameworks such as MITRE ATT&CK
- Strong analytical mindset and interest in technical security operations