Senior Cybersecurity Analyst – Incident Response & SIEM

About Realty Income Realty Income (NYSE: O), an S&P 500 company, is a real estate partner to the world’s leading companies. Founded in 1969, we invest in diversified commercial real estate and have a portfolio of 15,600 properties in all 50 U.S. states, the UK and six other countries in Europe, with a gross book value of $58bn. We are known as The Monthly Dividend Company and have a mission to deliver stockholders dependable monthly dividends that grow over time.

Position Overview Reporting to the Associate Director, European IT and operating under the supervision of the global Information Security program, the Senior Information Security Analyst supports the day‑to‑day operations of the global Information Security program, with a focus on security alert triage, incident investigation, and operational effectiveness across the environment. This role is responsible for monitoring and responding to security alerts, performing assigned operational tasks, and optimizing security tooling to improve detection quality and reduce false positives.

Key Responsibilities

• Monitor, triage, and investigate security alerts in coordination with the Security Operations Center (SOC) and internal teams.
• Analyze and validate potential security incidents, ensuring accurate classification, documentation, and escalation.
• Perform daily operational information security tasks, including the management and resolution of ServiceNow incidents assigned to the Information Security team.
• Support incident response efforts through investigation, coordination, and detailed documentation of findings.
• Participate occasionally in an on‑call rotation as required to support timely response and escalation of security incidents outside of business hours.
• Tune and optimize security tools, including SIEM and endpoint protection platforms, to improve alert fidelity and reduce false positives.
• Collaborate with internal technology teams to ensure appropriate logging, monitoring, and alerting capabilities are in place across systems.
• Work closely with the IT Service Desk, Operations, and development teams to support vulnerability identification and ensure remediation is prioritised and delivered within agreed SLAs.
• Support security awareness initiatives through participation in training, workshops, and knowledge‑sharing activities.
• Partner with the global Information Security team to review, streamline, and develop security processes, procedures, and incident response playbooks.
• Promote a culture of security across the organization through engagement and collaboration.

Candidate Requirements

• Suitable experience in an Information Security role.
• Some previous relevant experience in a technical IT role (System Administration/Network Administration/DevOps).
• Must have Cybersecurity certification(s) (CISSP, Sec+, CCSP, CEH) or equivalent.
• Knowledge of security frameworks and regulatory compliance standards (NIST CSF, SOX ITGC, GDPR, etc.).
• Working technical knowledge and hands‑on experience securing enterprise IT environments within predominantly Windows‑based and cloud‑hosted ecosystems.
• Demonstrated experience in incident response, threat detection, vulnerability management, and securing workloads operating at enterprise scale.
• Strong ability to analyze, prioritize, and respond to security alerts and vulnerabilities within the context of business operations and risk tolerance.
• Experience with incident response processes and best practices, including investigation, escalation, and documentation.
• Knowledge of cloud security principles, particularly within Microsoft Azure environments.
• Strong written and verbal communication skills include the ability to clearly document findings and risks to technical and non‑technical stakeholders.
• Demonstrate commitment to continuous learning, staying current with emerging threats, technologies and industry trends.

Hybrid working arrangements, in the office Monday / Tuesday / Wednesday / Thursday. May require infrequent travel to remote sites. Make yourself available outside of normal working hours for security incidents.

Desirable but not essential:

• Experience working in the financial services or investment industries.
• Bachelor’s degree in information security or related field or equivalent combination of education and experience.

This role is subject to enhanced compliance and disclosure requirements comparable with those of a regulated financial services organization, including conflict of interest disclosures and personal trading policies.

Our Mission & Values For more than 50 years, Realty Income has been guided by our mission to invest in people and places to deliver dependable monthly dividends that increase over time.

Realty Income is committed to diversity and inclusion and welcomes all applicants regardless of age, disability, gender reassignment, marriage and civil partnership, pregnancy and maternity, race, religion or belief, sex, sexual orientation or educational background.