Cyber Security Operations Analyst

Job Description

Why are we recruiting?

Security and Batch Operations Analysts are central to driving PayPoint’s Cyber Security and IT operations, playing a key role in delivering services to our clients, retailers, and consumers across the United Kingdom.

From the Security Operations Centre located in Welwyn Garden City, the team of analysts monitor and respond to alerts and events from across our network. The team will undertake the actions necessary to maintain our service availability and security, including triage, investigation, analysis, resolution, and escalation to third-line support teams.

With services hosted in our data centres and the Cloud, you will use a range of tools and technologies to provide the operational controls needed to maintain the high levels of service expected by our clients, retailers, and consumers.

We now have an opportunity for an enthusiastic individual to join our analysts in what is already a fun and engaging team.

While experience in a similar role is a good thing, we are happy to speak to graduates or those with IT backgrounds such as service desk and desktop engineers looking for a new role or path in their career.

What will you be doing?

• Monitor IT and security events from SIEM (Security Information and Event Management) systems and other security tools to proactively detect incidents and prevent disruptions to services.

• Manage the lifecycle of security incidents, from initial detection through to resolution, ensuring incidents are triaged, prioritized, and escalated as needed.

• Investigate suspicious activities, security breaches, and incidents, using log data, threat intelligence, and system alerts to identify root causes and take corrective actions.

• Triage and escalate incidents based on severity, organizational policies, and operational impact, ensuring timely resolution and minimal downtime.

• Perform initial incident response actions, including containment, mitigation, and support for recovery, working closely with IT and security teams.
• Collaborate with IT and security teams to investigate and resolve both security and operational issues, maintaining the balance between maintaining a strong security posture and minimizing impact on services.

• Ensure the availability and performance of services, proactively identifying potential issues that could affect users, and collaborating with teams to resolve operational incidents.

• Maintain incident logs, documentation, and reports, tracking all events and resolutions for auditing, compliance, and continuous improvement purposes.

• Analyse trends in security threats and vulnerabilities, staying ahead of emerging risks and continuously refining response strategies to mitigate future incidents.

• Participate in threat hunting and vulnerability assessments, working with cross-functional teams to identify and close gaps in security while ensuring business operations run smoothly.

• Support internal and external stakeholders to ensure security configurations, operational practices, and incident management processes are always improving.

• Assist in developing and refining SOC procedures, playbooks, and runbooks, ensuring effective responses to both security and operational incidents.

• Work in a 24/7 rotating shift pattern (4 days on, 4 days off) to ensure continuous monitoring, incident management, and operational support coverage.

What would we like from you?

• Passion for the IT sector, with an interest in Cyber Security.
• Strong problem-solving skills.
• Detail orientated with strong written and verbal communication skills..
• Knowledge of Microsoft Office 365

It would be great if you already have…

• Experience of working in a 24/7 rota, specifically in an established IT or Security function.
• Working knowledge of SIEM tools.
• Scripting capability, particularly using PowerShell, Bash, and KQL (Kusto Query ) for automation, scripting, and querying in Microsoft Sentinel and Defender.
• Experience with security and monitoring tools such as Zscaler, Microsoft Defender, Microsoft Sentinel, Splunk, Halo, AppCheck, Zabbix, and Grafana.
• Experience with batch automation tools.
• Knowledge of Linux and Azure.
• Understanding of PCI-DSS compliance.

What can we do for you?

You can expect a rewarding experience working with us in our head office in Welwyn Garden City. As a key member of the IT Service and Operations team, you will also benefit from a range of company benefits such as:

• 22 days holiday
• On-site gym at our office (Free), and nationwide corporate rate gym membership
• Online benefits portal where you can access lots of deals, discounts - for example of shopping or holidays
• Contributory company pension scheme
• Progression and Development routes
• Private medical insurance
• Life assurance of 3 x annual gross salary, with the option to purchase additional cover
• You’re also able to purchase a range of benefits at a discounted rate including, critical illness cover, bicycles via our Cycle2Work scheme, dental insurance and TasteCard dining discount card

We’re committed to building a culture that empowers all of our people to thrive and feel a sense of belonging at PayPoint