Enable job alerts via email!
Senior Cyber Security Analyst
Damia Group Ltd
City Of London
Hybrid
GBP 50,000 - 70,000
Full time
Job summary
A government consulting firm in London is seeking a Senior Cyber Security Analyst for a 3-month contract. The role requires experience with SPLUNK and incident response management, alongside an SC clearance. Key responsibilities include leading investigations of security incidents, forensic analysis, and mentoring junior staff. The position involves on-site work three days per week and includes an on-call rotation.
Qualifications
- Significant experience investigating and responding to cyber incidents.
- Experience managing and coordinating the response to cyber incidents.
- Experience coaching and mentoring junior staff.
Responsibilities
- Lead investigation of security alerts.
- Conduct forensic analysis of systems and network traffic.
- Manage technical response to cyber incidents.
- Review previous incidents for improvements.
- Develop and update internal plans and articles.
Skills
Senior Cyber Security Analyst - (Apply online only) pd (experience dependent) INSIDE IR35 - 3 month initial contract - London (3 days per week onsite)
Please note: Due to the nature of the role, we are ideally looking for candidates to hold an active SC clearance.
We are looking for a SC Cleared Senior Cyber Security Analyst with SPLUNK experience to join our central government client on an initial 3-month contract. You must have experience investigating and responding to cyber incidents, co-ordinating incident response in a large organisation.
We have both a Senior and mid-level role available.
Main responsibilities:
- As a senior security analyst with responsibility for incident response, you will:
- Lead the investigation of security alerts to understand the nature and extent of possible cyber incidents
- Lead the forensic analysis of systems, files, network traffic and cloud environment
- Lead the technical response to cyber incidents by identifying and implementing (or coordinating the implementation of) containment, eradication and recovery actions
- Support the wider coordination of cyber incidents
- Review previous incidents to identify lessons and actions
- Identify and deliver opportunities for continual improvement of the incident response capability
- Work closely alongside other Cyber Defence functions, supporting the continual improvement of wider capabilities
- Develop and update internal plans, playbooks and knowledge base articles
- Act as an escalation point for, and provide coaching and mentoring to, security analysts
- Be responsible for leadership and line management of security analysts
Cyber incidents can and do arise on a 24/7 basis. The team operates an out-of-hours on call rota, which you will be expected to join.
Essential skills and experience:
- SPLUNK
- EDR (Endpoint Detection and Response)
- Significant experience investigating and responding to cyber incidents
- Significant experience using security tools (e.g., EDR, SIEM) to support the investigation and response to cyber incidents
- Experience managing and coordinating the response to cyber incidents
- Experience coaching and mentoring junior staff
- An in-depth understanding of the tools, techniques and procedures used by threat actors
We are an equal opportunities employer and welcome applications from all qualified candidates. We are committed to providing a fair and inclusive recruitment process.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
