L2 Security Analyst

Join the next generation of AI-driven cyber defence

A high number of candidates may make applications for this position, so make sure to send your CV and application through as soon as possible.
We're looking for a Cyber Security Implementation Engineer to play a key role in delivering cutting-edge AI-powered Security Operations capabilities. Working alongside Cyber Detection & Response, Cloud, Infrastructure, Network and Platform teams, you'll help implement intelligent detection, investigation and response technologies that enhance security operations across a complex enterprise environment.
This is an excellent opportunity for someone with a strong cyber engineering or SOC background who enjoys integrating security platforms, solving technical challenges and validating innovative security solutions.
What you'll be doing
Support the implementation of AI-powered Security Operations (SOC) capabilities, intelligent assistants and security workflow automation.
Integrate security technologies, data sources, APIs and third-party platforms into the security ecosystem.
Coordinate service accounts, permissions and connectivity with Cloud, Infrastructure, Identity and Network teams.
Validate AI-assisted detection, investigation and automated response workflows.
Design and execute testing scenarios, attack simulations and operational readiness exercises.
Identify integration issues, deployment risks and workflow improvements.
Troubleshoot implementation challenges and support successful production deployments.
Produce high-quality technical documentation, implementation guides, test results and operational procedures.
What we're looking for
3+ years' experience in Cyber Security Engineering, Security Operations, Threat Detection or Security Platform Implementation.
Experience integrating enterprise security technologies into complex environments.
Good understanding of SIEM, SOAR, EDR, Threat Intelligence and modern SOC operations.
Knowledge of networking, APIs, authentication, Identity & Access Management (IAM) and cloud platforms.
Experience with security testing, attack simulation, validation or Purple Team activities.
Excellent analytical, troubleshooting and documentation skills. xkybehq
Exposure to AI-powered security platforms, automation technologies or security orchestration tools would be highly desirable.
Desirable technologies
SIEM & SOAR platforms
Microsoft Sentinel, Splunk or QRadar
Microsoft Defender, CrowdStrike or other EDR solutions
Azure, AWS or Google Cloud
APIs, REST integrations and automation
Identity & Access Management (Entra ID, Active Directory or similar)
Threat Intelligence platforms
AI-enabled Security Operations tools
*Rates depend on experience and client requirements

Job Details

Company
Salt
Location
Brighton, East Sussex, UK
Posted