At a Glance
- Tasks: Investigate and respond to complex security incidents while developing detection logic.
- Company: Join a leading firm in quantitative finance with a focus on innovation and collaboration.
- Benefits: Competitive pay, 30 days leave, healthcare, and a fun work environment.
- Other info: Enjoy a supportive culture with opportunities for mentorship and career growth.
- Why this job: Make a real impact in cybersecurity while working with cutting-edge technology.
- Qualifications: Experience in cyber incident response and strong cloud security expertise required.
The predicted salary is between 60000 - 80000 £ per year.
We tackle the most complex problems in quantitative finance, by bringing scientific clarity to financial complexity. From our London HQ, we unite world‑class researchers and engineers in an environment that values deep exploration and methodical execution – because the best ideas take time to evolve. Together we’re building a world‑class platform to amplify our teams’ most powerful ideas.
Key Responsibilities
- Investigating and responding to complex security incidents across cloud, hybrid, and on‑premise environments.
- Proactively hunting for threats and developing detection logic across SIEM and cloud security systems.
- Participating in red and purple team exercises to test, validate and enhance detection and response capabilities.
- Developing and maintaining automation workflows using tools such as Tines and Python.
- Collaborating with engineering teams to improve log ingestion, detection rules and platform reliability.
- Mentoring and supporting junior analysts through knowledge sharing and technical guidance.
- Participating in the on‑call escalation rota for out‑of‑hours incidents.
- Improving CSIRT processes, playbooks and threat models.
Qualifications
- Significant experience in cyber incident response, detection engineering or SOC and CSIRT operations.
- Strong cloud security expertise across AWS and Azure, including hands‑on incident investigation.
- Proficiency with SIEM platforms and log analysis.
- Experience with red and purple team exercises and adversary simulation.
- Knowledge of containerised environments and cloud‑native infrastructure security.
- Programming or scripting experience, preferably in Python, and exposure to automation platforms.
- Strong understanding of modern attack techniques, threat actors and the MITRE ATT&CK framework.
- Experience mentoring or leading within a security operations environment.
- Strong analytical skills with the ability to investigate complex threats, identify root causes and operate effectively under pressure.
- Collaborative approach with the ability to work across teams while supporting and developing others.
- Proactive mindset with an interest in automation and continuously improving detection and response.
Benefits
- Highly competitive compensation plus annual discretionary bonus.
- Lunch provided (via Just Eat for Business) and dedicated barista bar.
- 30 days’ annual leave.
- 9% company pension contributions.
- Informal dress code and excellent work/life balance.
- Comprehensive healthcare and life assurance.
- Cycle‑to‑work scheme.
- Monthly company events.
G‑Research is committed to cultivating and preserving an inclusive work environment. We are an ideas‑driven business and we place great value on diversity of experience and opinions. We want to ensure that applicants receive a recruitment experience that enables them to perform at their best. If you have a disability or special need that requires accommodation please let us know in the relevant section.
Senior CSIRT Analyst employer: Alastair LLP
At G-Research, we pride ourselves on being an exceptional employer, offering a dynamic work environment in the heart of London where innovation thrives. Our commitment to employee growth is evident through mentorship opportunities and a culture that values collaboration and diversity, ensuring that every team member can contribute meaningfully while enjoying competitive benefits such as generous annual leave, comprehensive healthcare, and a vibrant workplace atmosphere. Join us to be part of a world-class team dedicated to tackling complex challenges in quantitative finance, all while maintaining an excellent work/life balance.
StudySmarter Expert Advice🤫
We think this is how you could land Senior CSIRT Analyst
✨Tip Number 1
Network like a pro! Reach out to your connections in the cybersecurity field, especially those who work at companies you're interested in. A friendly chat can lead to insider info about job openings or even a referral.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects, especially those involving incident response or automation. This gives potential employers a taste of what you can do beyond your CV.
✨Tip Number 3
Prepare for interviews by brushing up on common technical questions and scenarios related to CSIRT operations. Practise explaining your thought process during incident investigations – it’s all about demonstrating your analytical skills!
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive about their job search!
We think you need these skills to ace Senior CSIRT Analyst
Some tips for your application 🫡
Tailor Your CV:Make sure your CV reflects the specific skills and experiences mentioned in the job description. Highlight your expertise in cyber incident response and cloud security, as these are key for us.
Craft a Compelling Cover Letter:Use your cover letter to tell us why you're passionate about tackling complex security incidents. Share examples of your experience with SIEM platforms and how you've contributed to team success in the past.
Showcase Your Technical Skills:Don’t forget to mention your programming or scripting experience, especially in Python. We love seeing how you’ve used automation to improve processes, so give us the details!
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for this exciting opportunity!
How to prepare for a job interview at Alastair LLP
✨Know Your Stuff
Make sure you brush up on your knowledge of cyber incident response and detection engineering. Familiarise yourself with the latest trends in cloud security, especially AWS and Azure, as well as the MITRE ATT&CK framework. Being able to discuss these topics confidently will show that you're serious about the role.
✨Showcase Your Experience
Prepare specific examples from your past work where you've successfully handled complex security incidents or developed detection logic. Highlight any experience with red and purple team exercises, as this is crucial for the role. Use the STAR method (Situation, Task, Action, Result) to structure your answers.
✨Demonstrate Collaboration Skills
Since the role involves working closely with engineering teams, be ready to discuss how you've collaborated in the past. Share instances where you’ve mentored junior analysts or improved processes within a team. This will illustrate your ability to work well with others and contribute to a positive team environment.
✨Ask Insightful Questions
Prepare thoughtful questions about the company's approach to security incidents and their use of automation tools like Tines and Python. This not only shows your interest in the role but also gives you a chance to assess if the company’s values align with yours. Plus, it can spark a great conversation!
