Cyber Security Analyst

We are seeking a Cyber Security Analyst to play a critical role in protecting enterprise systems, data, and digital assets. This position sits within the Information Security function and reports to the Head of Information Security. You will contribute directly to the execution of a comprehensive security strategy spanning detection, prevention, response, and continuous improvement across both infrastructure and application environments.

This role is hands-on and operationally focused, with exposure across identity and access management, vulnerability management, SIEM, cloud security, and application security. You will be responsible for strengthening security controls, responding to incidents, improving visibility across environments, and embedding security best practices across the technology landscape.

Key Responsibilities

• Operate and manage security tooling including SIEM, EDR, Identity & Access Management, and cloud security platforms
• Monitor, analyse, and triage security alerts, logs, and events to identify potential threats and security incidents
• Investigate security incidents end-to-end, including root cause analysis, impact assessment, remediation, and prevention recommendations
• Conduct vulnerability assessments, system audits, and configuration reviews to identify security weaknesses and misconfigurations
• Design and implement security controls including authentication mechanisms, detection rules, and preventative safeguards to strengthen security posture
• Partner with Software Development and Technology Operations teams to embed security into the Software Development Lifecycle (SDLC) and improve secure-by-design practices
• Support automation of security controls and processes across cloud and enterprise environments
• Maintain strong working relationships with internal stakeholders and external vendors to ensure effective security outcomes
• Stay current with emerging cyber threats, vulnerabilities, and industry trends, translating insights into proactive security improvements
• Contribute to security awareness initiatives and promote a strong security-first culture across the organisation
• Support third-party security assessments and control maturity reviews

Skills & Experience

• 1-2 years experience in a security-focused role
• Strong understanding of security frameworks such as NIST Cybersecurity Framework and ISO 27001
• Hands-on experience with Microsoft security stack including Azure AD, Conditional Access, PIM, Microsoft Defender, Defender for Office 365, and Sentinel
• Experience with security tooling such as SIEM, EDR, vulnerability management, patch management, firewalls, web filtering, and email security platforms (Mimecast desirable)
• Experience securing cloud environments (AWS and Azure)
• Strong analytical and problem-solving skills with the ability to interpret complex security data
• Excellent written and verbal communication skills, with the ability to engage both technical and non-technical stakeholders
• Experience in security operations, incident response, cyber security analysis, or a related field

Qualifications

• Bachelor’s degree in a computer-related or IT discipline (or equivalent experience)
• Relevant industry certifications such as CISSP, CISM, or CompTIA Security+ are highly desirable