Enable job alerts via email!
Cyber Security Operations Analyst
InfoSec People Ltd
Sheffield
On-site
GBP 60,000 - 80,000
Full time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A national security organization in the UK is seeking a Cyber Security Operations Analyst for a 12-month contract. This role involves enhancing cyber detection capabilities and requires active SC clearance. You'll support the development of monitoring controls and collaborate with experienced security professionals. The ideal candidate will possess experience with SIEM technologies, strong Python scripting skills, and an analytical mindset. This is a hands-on position focusing on improving threat identification and response within the security operations environment.
Qualifications
- Experience with SIEM technologies like Sentinel, Splunk, ELK, Rapid7, or LogRhythm.
- Proven skills in Python for automation and scripting.
- Understanding of SOAR concepts and automated playbooks.
Responsibilities
- Support the development of monitoring controls.
- Enhance alert logic and monitoring use cases.
- Build and maintain automation workflows using Python.
- Review security events and log data.
- Assist investigations and contribute to SOC improvements.
Skills
Cyber Security Operations Analyst – Contract
12-Month Engagement | Inside IR35 | Day Rate : negotiable
Active SC Clearance Required
An organisation within the national security and defence ecosystem is looking for a technically minded Security Operations Analyst to strengthen its cyber detection and automation capabilities.
You’ll support the development of monitoring controls, help refine detection rules, and contribute to improving how threats are identified and responded to across the environment. The role involves hands‑on work with security platforms, scripting tasks, and collaborating with experienced security professionals.
- Enhancing alert logic and monitoring use cases within SIEM platforms
- Building and maintaining automation workflows using Python
- Reviewing security events and log data to spot unusual activity
- Supporting the design of detections aligned to adversarial behaviours
- Assisting investigations and contributing to continuous improvements within the SOC
- Experience using one or more SIEM technologies (e.g., Sentinel, Splunk, ELK, Rapid7, LogRhythm)
- Python skills for scripting or automation
- Understanding of SOAR concepts or exposure to automated playbooks
- Familiarity with threat frameworks such as MITRE ATT&CK
- Strong analytical mindset and interest in technical security operations
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
