Cyber Security Analyst
Contract Cyber Security Analyst / Engineer
💷 Salary: £350 - £500 a day – Inside IR35
📍 Location: City - London
📅 Working pattern: Hybrid – Office presence required in London on a weekly basis
I'm supporting a growing transport organisation that is looking to hire a Cyber Security Analyst / Engineer to strengthen its IT Security function as part of an ongoing security improvement programme.
This is a hands-on role within an established IT Security team, covering security operations, incident response, vulnerability management, and risk assessment across a large enterprise environment.
The role
You will work across the full breadth of the security operations lifecycle, including:
- Using security tooling to identify, correlate and contain suspicious events, determine root cause, and recommend improvements to systems and procedures.
- Performing deep-dive incident analysis across multiple data sources, investigating security logs against short and medium-term threats and indicators of compromise (IoCs).
- Carrying out proactive and reactive threat hunting.
- Executing vulnerability and web application assessments, then providing analysis and remediation recommendations.
- Running vulnerability management and mitigation as business-as-usual activity.
- Conducting risk analysis reviews, identifying security gaps, and defining remediation options.
- Onboarding and reviewing log sources into the SOC/SIEM, and validating cyber incident alerts.
- Producing reports on developing risks and relaying threat information back to stakeholders.
- Owning and participating in security audits, assessments and tabletop exercises.
- Managing security incident tickets (ServiceNow) and supporting problem management within ITIL best practice.
What they are looking for
The ideal candidate will have:
- Previous experience within a technical cyber security team, ideally with SOC exposure.
- A strong working knowledge of SIEM, vulnerability scanners, WAF, IDS/IPS, firewalls, IAM, patch management and endpoint/MDR/EDR protection.
- Experience investigating and contextualising modern cyber threats, and a solid understanding of cyber incident response.
- Working knowledge of Microsoft identity, Exchange administration, web proxy, next-generation endpoint protection and email security (DMARC/DKIM/SPF, DNS).
- Familiarity with the MITRE ATT&CK framework, ISO27001, CIS benchmarks and NCSC Cyber Essentials.
- Knowledge of GDPR, data protection, and governance, risk and compliance.
- Knowledge of NIS-R or NIST, TCP/IP networking and the OSI layer model.
- Around 5+ years of IT or business experience encompassing cyber security.
- Educated to degree level, or an equivalent combination of work experience and education.
- Relevant certifications such as CySA+, CISSP or equivalent (Microsoft and ITIL v4 desirable).
The role would also value the ability to explain technical cyber security concepts to non-technical and senior stakeholders, acting as a trusted advisor and delivering real value across the wider organisation.
This would suit someone who enjoys working across the full security operations lifecycle, thrives on incident response and threat hunting, and wants to bridge technical detail and non-technical stakeholders in a large, regulated environment.
Please message me directly if you would like to discuss the role, or feel free to share with someone in your network.