Enable job alerts via email!
Cyber Security Operations Analyst
InfoSec People Ltd
Manchester
On-site
GBP 80,000 - 100,000
Part time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A national security organization in Manchester is seeking a Cyber Security Operations Analyst for a 12-month contract. The role involves enhancing cyber detection and automation capabilities, developing monitoring controls, and refining detection rules. Candidates must have experience with SIEM technologies and Python skills. This position offers a flexible day rate and requires active SC clearance.
Qualifications
- Experience using one or more SIEM technologies (e.g., Sentinel, Splunk, ELK, Rapid7, LogRhythm).
- Python skills for scripting or automation.
- Understanding of SOAR concepts or exposure to automated playbooks.
- Familiarity with threat frameworks such as MITRE ATT&CK.
- Strong analytical mindset and interest in technical security operations.
Responsibilities
- Support the development of monitoring controls.
- Help refine detection rules for improved threat identification.
- Enhance alert logic and monitoring use cases within SIEM platforms.
- Build and maintain automation workflows using Python.
- Assist in investigations and contribute to improvements within the SOC.
Skills
Cyber Security Operations Analyst – Contract
12-Month Engagement | Inside IR35 | Day Rate : negotiable
Active SC Clearance Required
An organisation within the national security and defence ecosystem is looking for a technically minded Security Operations Analyst to strengthen its cyber detection and automation capabilities.
You’ll support the development of monitoring controls, help refine detection rules, and contribute to improving how threats are identified and responded to across the environment. The role involves hands‑on work with security platforms, scripting tasks, and collaborating with experienced security professionals.
- Enhancing alert logic and monitoring use cases within SIEM platforms
- Building and maintaining automation workflows using Python
- Reviewing security events and log data to spot unusual activity
- Supporting the design of detections aligned to adversarial behaviours
- Assisting investigations and contributing to continuous improvements within the SOC
- Experience using one or more SIEM technologies (e.g., Sentinel, Splunk, ELK, Rapid7, LogRhythm)
- Python skills for scripting or automation
- Understanding of SOAR concepts or exposure to automated playbooks
- Familiarity with threat frameworks such as MITRE ATT&CK
- Strong analytical mindset and interest in technical security operations
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
