Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Analyse real-world attacks and build detection capabilities in a dynamic environment.
- Company: Privately backed cyber security product company focused on innovation.
- Benefits: Remote work, share options, and high ownership from day one.
- Why this job: Make a real impact on cyber security with cutting-edge threat intelligence.
- Qualifications: Experience in threat hunting, SIEM tools, and scripting, preferably Python.
- Other info: Join a high-trust, low-bureaucracy team with excellent growth opportunities.
The predicted salary is between 50000 - 60000 £ per year.
We’re working with a privately backed cyber security product company focused on cyber deception and threat intelligence. They deploy internet-facing deception infrastructure, observe real attacker behaviour at scale, and turn that activity into detection and intelligence used by organisations globally. They are hiring two Cyber Security Analysts at different levels. This is not a SOC role. It suits people who enjoy threat hunting, analysis, and building detection capability, rather than responding to alerts.
What you’ll be doing:
- Analyse real-world attack activity captured from deception environments
- Investigate attacker techniques and exploitation patterns
- Map activity to TTPs, CVEs, and CWEs
- Build and refine detections, alerts, and behavioural indicators
- Write scripts to support analysis and automation
- Contribute to a threat intelligence and detection capability used by customers
What they’re looking for:
- Experience in threat hunting, threat intelligence, or advanced SOC or detection roles
- Evidence of building or improving detection capability, not just operating alerts
- SIEM experience such as Splunk, Sentinel, Rapid7, or similar
- Scripting or coding experience for analysis or automation, Python ideal
- Strong understanding of attacker behaviour and modern attack techniques
Important: this is not a role focused on consuming threat intel tools or reacting to tickets.
Tech snapshot:
- Scripting: Python preferred, plus Bash or PowerShell
- SIEM exposure: Splunk, Sentinel, Rapid7, or similar
- Cloud: Azure exposure helpful but not required
- Focus on analytics, automation, and detection engineering
Seniority and growth:
- Two hires, one more senior and one at a mid-level, roughly 3 to 4 years’ experience
- High ownership and influence from day one
- Share options available
Location:
- Remote within the UK
- Scotland preferred, with regular Edinburgh meetups and occasional Glasgow
- Light travel, roughly once per month
Why this role?
- No legacy SOC or rigid process to inherit - you help build the capability
- Exposure to real attack data at scale
- High‑trust, low‑bureaucracy technical environment
- Direct impact on both product and customers
Cyber Security Analyst in Maidstone employer: Experis Scotland
Contact Detail:
Experis Scotland Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Cyber Security Analyst in Maidstone
✨Tip Number 1
Network like a pro! Reach out to folks in the cyber security field on LinkedIn or at industry events. We can’t stress enough how important it is to make connections; you never know who might have the inside scoop on job openings.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your scripting projects or threat hunting analyses. This gives potential employers a taste of what you can do, and we all know actions speak louder than words!
✨Tip Number 3
Prepare for interviews by brushing up on real-world attack scenarios and your approach to threat intelligence. We recommend practising with mock interviews to build confidence and articulate your thought process clearly.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen. Plus, we love seeing candidates who are proactive about their job search!
We think you need these skills to ace Cyber Security Analyst in Maidstone
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience in threat hunting and detection capabilities. We want to see how you've built or improved detection systems, so don’t hold back on those details!
Show Off Your Skills: When writing your application, emphasise your scripting skills, especially in Python. If you’ve worked with SIEM tools like Splunk or Rapid7, let us know how you’ve used them to analyse real-world attack activity.
Be Clear and Concise: Keep your application straightforward and to the point. We appreciate clarity, so avoid jargon unless it’s relevant to your experience. Make it easy for us to see why you’re a great fit!
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, we love seeing applications come in that way!
How to prepare for a job interview at Experis Scotland
✨Know Your Threat Hunting Techniques
Make sure you brush up on your threat hunting skills and be ready to discuss specific techniques you've used in the past. Be prepared to share examples of how you've analysed real-world attack activity and what insights you gained from it.
✨Showcase Your Scripting Skills
Since scripting is a key part of this role, come armed with examples of scripts you've written, especially in Python. If you can, demonstrate how your coding has helped automate processes or improve detection capabilities in previous roles.
✨Familiarise Yourself with SIEM Tools
Get comfortable with the SIEM tools mentioned in the job description, like Splunk or Sentinel. Be ready to discuss how you've used these tools to build or refine detections and alerts, and any challenges you faced while doing so.
✨Understand Attacker Behaviour
Dive deep into modern attack techniques and be prepared to discuss them during your interview. Showing a strong understanding of attacker behaviour will not only impress your interviewers but also demonstrate your fit for a role that focuses on analysis rather than just reacting to alerts.