At a Glance
- Tasks: Develop and optimise detection content to identify threats across various environments.
- Company: Join a leading cybersecurity firm in Edinburgh with a hybrid work model.
- Benefits: Competitive salary, on-call compensation, and opportunities for professional growth.
- Other info: Mentorship opportunities and a dynamic environment await you.
- Why this job: Make a real impact in cybersecurity while working with cutting-edge technologies.
- Qualifications: 2+ years in Cyber Security Operations and strong scripting skills required.
The predicted salary is between 75000 - 75000 £ per year.
We are seeking an accomplished Senior Cyber Operations Analyst to join a high-performing Blue Team operating at the forefront of modern security operations. This is a technical role suited to an experienced analyst with strong engineering instincts, hands-on coding capabilities, and a deep understanding of incident response, detection engineering, and adversary tradecraft. This position includes approximately one week per month of on-call availability for high-priority incident response. Additional compensation is provided, and frequency may vary by client.
We are looking for a senior analyst who brings curiosity, technical depth, and a proactive mindset. This role is ideal for someone who has likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous.
Key Responsibilities
- Develop, maintain, and optimise detection content (primarily within Splunk SIEM) to identify threats across cloud, endpoint, and network environments.
- Collaborate across security functions to identify gaps in logging, alerting, and detection coverage aligned to business risk.
- Improve SecOps processes by recommending enhanced logging, identifying trends, and driving operational optimisation.
- Conduct security monitoring, alert triage, and continuous improvement of detection rules (core hours 9:00-17:30 on rotation).
- Lead and support incident response investigations, ensuring high-quality documentation and escalation.
- Mentor and support junior analysts, providing guidance, coaching, and technical oversight.
- Serve as a technical SME on client engagements; present findings and recommendations to senior stakeholders.
- Participate in alert testing, readiness exercises, and incident response tabletop sessions.
- Stay current on emerging threat intelligence, attacker techniques, and relevant research.
Required Experience
- 2+ years experience as a Cyber Security Operations Analyst or equivalent.
- Experience working with Splunk.
- Familiarity with threat intelligence frameworks and methodologies.
- End-to-end incident response lifecycle experience.
- Detection engineering and alert development expertise.
- Strong scripting or programming skills (Python, Bash, C/C++, Java).
- Solid grounding in cybersecurity fundamentals: network security, cloud security, cryptography, forensics.
- Understanding of common network protocols and attacker abuse patterns.
- Awareness of current APT groups and their TTPs.
- Knowledge of analysis techniques for Windows and/or Linux environments.
If you are a technically driven senior analyst ready to advance, apply today.
Cyber Security Engineer in Livingston employer: ANSON MCCADE
Join a dynamic team in Edinburgh as a Senior Cyber Operations Analyst, where you will thrive in a collaborative and innovative work culture that prioritises employee growth and development. With competitive compensation, including on-call bonuses, and opportunities to mentor junior analysts, this role offers a meaningful career path in the ever-evolving field of cyber security. Embrace the chance to work at the forefront of modern security operations while enjoying the flexibility of a hybrid working environment.
StudySmarter Expert Advice🤫
We think this is how you could land Cyber Security Engineer in Livingston
✨Tip Number 1
Network, network, network! Get out there and connect with professionals in the cyber security field. Attend meetups, webinars, or conferences to meet potential employers and learn about job openings that might not be advertised.
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your projects, scripts, or any contributions to open-source security tools. This gives you a chance to demonstrate your hands-on coding capabilities and engineering instincts to potential employers.
✨Tip Number 3
Prepare for interviews by brushing up on your technical knowledge and incident response scenarios. Practice explaining your thought process when tackling security challenges, as this will show your proactive mindset and depth of understanding.
✨Tip Number 4
Don’t forget to apply through our website! We’re always looking for talented individuals like you. Tailor your application to highlight your experience with Splunk, detection engineering, and any relevant scripting skills to stand out.
We think you need these skills to ace Cyber Security Engineer in Livingston
Some tips for your application 🫡
Tailor Your CV:Make sure your CV reflects the skills and experiences that match the job description. Highlight your experience with Splunk, incident response, and any scripting languages you've used. We want to see how you fit into our team!
Craft a Compelling Cover Letter:Your cover letter is your chance to show us your personality and passion for cyber security. Share specific examples of your work in detection engineering or incident response, and let us know why you're excited about this role at StudySmarter.
Showcase Your Technical Skills:Since this is a technical role, don’t shy away from mentioning your coding capabilities. Whether it's Python, Bash, or any other language, give us a glimpse of your hands-on experience and how it can benefit our Blue Team.
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows us you’re keen on joining the StudySmarter family!
How to prepare for a job interview at ANSON MCCADE
✨Know Your Tech Inside Out
Make sure you brush up on your technical skills, especially around Splunk and scripting languages like Python and Bash. Be ready to discuss specific projects where you've used these tools, as well as any challenges you faced and how you overcame them.
✨Showcase Your Incident Response Experience
Prepare to talk about your experience with the end-to-end incident response lifecycle. Have examples ready that demonstrate your ability to lead investigations, document findings, and collaborate with teams to improve security processes.
✨Stay Current with Threat Intelligence
Familiarise yourself with the latest trends in cyber threats and attacker techniques. Being able to discuss recent incidents or emerging threats will show your proactive mindset and curiosity, which are key traits for this role.
✨Be Ready to Mentor
Since this role involves mentoring junior analysts, think about how you can demonstrate your leadership skills. Prepare examples of how you've supported others in the past, whether through coaching, sharing knowledge, or leading by example.
