Job Description
SecOps Analyst
Location: Fully Remote
Security Lead SC
Security Clearance:
Employment is subject to BPSS and SC clearance, requiring 5 years' continuous UK residency and British passport holder status (no dual nationality).
The Role
We're looking for an experienced SecOps Analyst to join a growing Blue Team. This is a senior, hands-on role focused on detection engineering, security monitoring, and incident response across complex environments.
You'll act as a technical authority within security operations, supporting Junior Analysts and engaging with senior stakeholders where required.
Key Responsibilities
-
Develop and maintain security detections, primarily in Splunk SIEM
-
Monitor, triage, and investigate security alerts (rota-based, 9:00-17:30)
-
Respond to and investigate cyber security incidents
-
Identify gaps in detection coverage, logging, and alerting
-
Improve SecOps processes, standards, and capabilities
-
Act as an escalation point and mentor for Junior Analysts
-
Stay current with emerging threats and threat intelligence
Additional activities may include:
Threat hunting, incident response playbook development, vulnerability management, and threat intelligence analysis.
On-Call
Approx. 1 week per month on-call for high-priority incidents (additional compensation provided).
Skills & Experience
-
Detection engineering and alert development experience
-
Strong understanding of threat intelligence and attacker TTPs
-
Experience with Scripting/programming (eg Python, Bash)
-
Solid grounding in core cybersecurity concepts (network, cloud, endpoint)
-
Knowledge of Windows and/or Linux security analysis
-
Awareness of current APT activity and techniques
