Cyber Security Level 3 Analyst / Engineer

About The Role

We now have a fantastic opportunity for a CSOC Level 3 Analyst/Engineer to join our Cyber Security Operations Centre Team, embedded within IT Operations.

The role is based at our Hereford Campus, featuring state-of-the-art facilities.

We offer a variety of workspaces, including an open-plan office, outdoor areas, and meeting pods, along with plenty of spots to relax, unwind, and socialise.

We believe in the importance of in-person collaboration but also recognise the need for flexibility. Our Cyber Security Operations Centre Team follows a hybrid working model that balances business requirements with individual flexibility. For this role, you’ll be expected to work in the office 2 to 3 days per week to support team collaboration and meet business priorities.

The CSOC currently operates an on-call rota, which you will be expected to participate in. In addition, the CSOC will be driving towards a full 24/7/365 operation in the near future.

Reporting to the Cyber Security Manager, as CSOC Level 3 Analyst/Engineer, you will be the engineering lead in the CSOC function.

Your primary focus will be to ensure compliance with regulatory requirements and that controls are kept up to date. You will develop and maintain all the security operations’ toolsets, ensuring they operate at optimal performance, tuning and building new rule sets, and responding to engineering requests related to allpay’s Security Information and Event Management (SIEM) system.

You will also be responsible for automating CSOC tasks and reporting.

Some Of Your Other Key Responsibilities Will Include

1. Ensuring systems, services, and applications are secured, monitored, and threats are detected and responded to accordingly.
2. Collaborating with the Cyber Security Manager as part of the TDA (Technical Design Authority) group to verify new project work, ensuring best practices for hardening defenses are followed.
3. Providing ad-hoc out-of-hours support during major incidents (Severity 1 or 2) or when the business requires.

About You

As our ideal CSOC Level 3 Analyst/Engineer, you will have the following:

Knowledge and Skills

• Solid understanding of IT security architecture and infrastructure best practices.
• Knowledge of CSOC progression and maturity models, with the ability to advise on operational best practices aligned with business goals.
• Experience with the operation, configuration, and maintenance of SIEM systems and EDR tools.
• Ability to create custom Indicators of Attack (IoAs) to match current attack vectors.
• Subject matter expertise in incident detection and analysis, providing guidance and recommendations.
• Strong DevOps background, including pipelines, YAML, and scripting languages like Python, PowerShell, and Bash for automation.
• Understanding of software development, log analysis, digital forensics, and automation/orchestration leadership.
• Experience with regulatory compliance, especially within the Financial Services sector, including risk management and solution design.
• Effective written and verbal communication skills.
• Proven ability to collaborate across functions and adapt in fast-paced environments.

Qualifications

• Bachelor’s degree in cyber security or a related IT field is preferred.
• Certifications such as AZ-500, SC-200/300/400, CPIA, CASP+, CISSP, CEH, OSCP, or similar are desirable.

About Us

People are at the heart of allpay, and we reward our employees with a comprehensive benefits package, including a pension scheme, income protection, life assurance, private healthcare, and an onsite gym. We also offer excellent learning and development opportunities.

We work with select recruitment agencies; unsolicited CVs are not accepted. All roles are subject to background checks, including DBS and credit checks.

Apply

Share this vacancy on social media or send it to a friend using the options below.