Associate Security Analyst - Investigation, EDR, Splunk, SIEM, Threat, London, Hybrid, SC Cleared

Job Description

We are seeking an experienced SC cleared Associate Security Analyst to join our team. You will support the cybersecurity operations, incident investigation, and response efforts within a dynamic environment. Your responsibilities will include investigating security alerts, analysing threats, supporting incident response activities, and contributing to ongoing improvements in security processes

Key Responsibilities:

• Triage and investigate cybersecurity alerts and user reports
• Analyze systems, files, network traffic, and cloud environments to determine the nature and extent of cyber incidents
• Support technical response activities including containment, eradication, and recovery
• Assist in coordinating cyber incident responses
• Contribute to post-incident reviews and identify lessons learned
• Support continual improvement initiatives for incident investigation and response capabilities
• Collaborate with Cyber Defence teams to enhance overall security posture
• Contribute to internal plans, playbooks, and knowledge base documentation
• Line management of apprentice security analysts

Experience & Skills Required:

• 2-3 years' experience in cyber security incident investigation and response
• Strong knowledge of cyber security threats and attack techniques
• Hands-on experience with security tools such as EDR, SIEM (Splunk , Microsoft Sentinel or equivalent acceptable)
• Understanding of threat actor tactics, techniques, and procedures
• Good analytical, problem-solving, and troubleshooting skills
• Hands-on experience with Splunk
• Experience working within an Agile environment
• Familiarity with cloud platforms such as AWS

Please note active SC clearance is required for this role

Minorities, women, + candidates, and individuals with disabilities are encouraged to apply.

Interviews will take place next week, so please apply immediately to be considered for this contract role.