SC Cleared Tier 2 Cyber Security Analyst - 24/7 shift allowance

FPSG has urgent permanent, SC Cleared opportunities for Cyber Security Analysts in Central Scotland. These roles involve providing 24/7 shift coverage with a generous shift allowance, offering a strong reward package and potential path to DV Cleared status where applicable.

Note: You must have British Citizenship (dual citizenship or ILR status not eligible) and current SC or DV Clearance to apply, due to the hiring timeline. Only apply if you hold SC or DV clearance.

The Tier 2 Cyber Security Analyst role involves advancing initial investigations by Tier 1 Analysts, conducting in-depth threat analysis, and supporting SOC operations. You will act as a bridge between foundational and advanced threat detection and response functions.

Responsibilities include:

1. Conduct escalated triage and analysis on security events, determining threat severity and advising on initial responses.
2. Utilize SIEM solutions with Kusto Query Language (KQL) for log analysis, event correlation, and documentation.
3. Identify and escalate critical threats to Tier 3 Analysts with detailed analysis.
4. Investigate potential security incidents through deeper analysis and pattern recognition.
5. Use OSINT techniques to enrich threat detection and contribute to proactive security measures.
6. Monitor threat landscape, document findings, and share insights to enhance situational awareness.
7. Follow incident response playbooks, provide feedback, and suggest process improvements.
8. Collaborate with Tier 3 Analysts to refine detection and response workflows.
9. Assist in tuning SIEM and detection tools to reduce false positives and improve alert accuracy.
10. Develop and validate new detection rules and use cases with Senior Analysts.
11. Mentor Tier 1 Analysts, providing guidance and training.
12. Participate in training and knowledge-sharing activities within the SOC.

Knowledge and skills required:

• Understanding of advanced networking concepts and traffic flow.
• Proficiency in Windows and Linux operating environments.
• Experience with SIEM solutions (e.g., ArcSight, Azure Sentinel) and analysis tools.
• Ability to use KQL effectively.
• Familiarity with OSINT techniques.
• Strong communication skills, capable of explaining technical issues clearly.
• Ability to produce concise reports and manage workload efficiently.
• Willingness to collaborate, learn, and perform under pressure.

Next steps:

If you hold live SC or DV Clearance and meet the skills requirements, and are willing to work on a rotating shift pattern (with shift allowance), please apply immediately. Interviews will be scheduled promptly for suitable candidates. We are committed to diversity and inclusion; please inform us of any reasonable adjustments needed during the recruitment process.