Cyber Security Engineer

IT Security Analyst

Salary: £55,000–£60,000 per year Location: Central London – Hybrid Benefits: Free rail travel + Excellent pension package Contract: Permanent

My client is strengthening their cyber security capabilities as part of an ambitious long-term strategy, and they are seeking a talented IT Security Analyst to join their dedicated security function. This is an exciting opportunity to play a key role in enhancing security operations, protecting critical infrastructure, and driving continuous improvement across a large, complex environment.

The Role

As an IT Security Analyst, you will support all aspects of security operations, incident response, vulnerability management, governance activities, and the development of secure processes across the organisation. You’ll monitor and investigate alerts, analyse threats, lead security assessments, and collaborate with teams to ensure a safe, compliant and resilient technology estate.

You will also contribute to enhancing identity security, infrastructure protection, awareness initiatives, and the onboarding of systems to SOC/SIEM tooling. This role is ideal for someone with strong technical knowledge, excellent communication skills and a passion for defending large-scale environments from emerging threats.

Key Responsibilities

• Investigate and analyse security events, correlating data and identifying root causes.
• Perform deep-dive incident analysis using logs, threat intel and IoCs.
• Conduct proactive and reactive threat hunting.
• Execute vulnerability assessments and support remediation activities.
• Carry out risk analysis, identifying gaps and recommending mitigating actions.
• Support cyber incident response processes and manage related tickets (ServiceNow).
• Onboard systems and log sources to SOC/SIEM; validate SIEM-generated alerts.
• Implement vulnerability scanning and coordinate corrective actions.
• Produce clear reports on emerging risks and security posture.
• Support governance, compliance, training and awareness activities.
• Work closely with infrastructure and technical teams to improve security controls.
• Maintain best-practice configurations across all security platforms.

Key Skills & Experience

• Experience working in a technical cyber security team.
• Strong understanding of incident response, threat investigation and vulnerability management.
• Hands-on experience with security tools such as SIEM, EDR/MDR, WAF, IDS/IPS, firewalls, email security and endpoint protection.
• Solid experience with Microsoft technologies: Exchange, Azure, O365, identity tools.
• Knowledge of DNS, DMARC/DKIM/SPF, networking fundamentals and TCP/IP.
• Familiarity with frameworks such as MITRE ATT&CK, ISO27001, CIS benchmarks, NIST, Cyber Essentials.
• Ability to explain technical concepts to non-technical audiences.
• Strong documentation, analysis and problem-solving skills.
• Experience in security auditing, PCI DSS, CSIRT processes and change management.
• Degree-level education or equivalent experience.
• Certifications such as CySA+, CISSP, Microsoft Certified Professional, ITIL v4 are advantageous.

Personal Attributes

• Highly motivated, proactive and detail-oriented.
• Excellent communication and stakeholder engagement skills.
• Able to work independently as well as collaboratively across teams.
• Strong integrity and commitment to maintaining high security standards.