L2 Security Analyst
Join the next generation of AI-driven cyber defence
We're looking for a Cyber Security Implementation Engineer to play a key role in delivering cutting-edge AI-powered Security Operations capabilities. Working alongside Cyber Detection & Response, Cloud, Infrastructure, Network and Platform teams, you'll help implement intelligent detection, investigation and response technologies that enhance security operations across a complex enterprise environment.
This is an excellent opportunity for someone with a strong cyber engineering or SOC background who enjoys integrating security platforms, solving technical challenges and validating innovative security solutions.
What you'll be doing
- Support the implementation of AI-powered Security Operations (SOC) capabilities, intelligent assistants and security workflow automation.
- Integrate security technologies, data sources, APIs and third-party platforms into the security ecosystem.
- Coordinate service accounts, permissions and connectivity with Cloud, Infrastructure, Identity and Network teams.
- Validate AI-assisted detection, investigation and automated response workflows.
- Design and execute testing scenarios, attack simulations and operational readiness exercises.
- Identify integration issues, deployment risks and workflow improvements.
- Troubleshoot implementation challenges and support successful production deployments.
- Produce high-quality technical documentation, implementation guides, test results and operational procedures.
What we're looking for
- 3+ years' experience in Cyber Security Engineering, Security Operations, Threat Detection or Security Platform Implementation.
- Experience integrating enterprise security technologies into complex environments.
- Good understanding of SIEM, SOAR, EDR, Threat Intelligence and modern SOC operations.
- Knowledge of networking, APIs, authentication, Identity & Access Management (IAM) and cloud platforms.
- Experience with security testing, attack simulation, validation or Purple Team activities.
- Excellent analytical, troubleshooting and documentation skills.
- Exposure to AI-powered security platforms, automation technologies or security orchestration tools would be highly desirable.
Desirable technologies
- SIEM & SOAR platforms
- Microsoft Sentinel, Splunk or QRadar
- Microsoft Defender, CrowdStrike or other EDR solutions
- Azure, AWS or Google Cloud
- APIs, REST integrations and automation
- Identity & Access Management (Entra ID, Active Directory or similar)
- Threat Intelligence platforms
- AI-enabled Security Operations tools
*Rates depend on experience and client requirements