Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Analyse real-world attacks and build detection capabilities in a dynamic environment.
- Company: Privately backed cyber security product company focused on innovation.
- Benefits: Remote work, share options, and high ownership from day one.
- Why this job: Make a real impact on cyber security with cutting-edge technology.
- Qualifications: Experience in threat hunting, SIEM tools, and scripting skills required.
- Other info: Join a collaborative team with opportunities for growth and influence.
The predicted salary is between 45000 - 60000 £ per year.
We’re working with a privately backed cyber security product company focused on cyber deception and threat intelligence. They deploy internet-facing deception infrastructure, observe real attacker behaviour at scale, and turn that activity into detection and intelligence used by organisations globally. They are hiring two Cyber Security Analysts at different levels. This is not a SOC role. It suits people who enjoy threat hunting, analysis, and building detection capability, rather than responding to alerts.
What you’ll be doing
- Analyse real-world attack activity captured from deception environments
- Investigate attacker techniques and exploitation patterns
- Map activity to TTPs, CVEs, and CWEs
- Build and refine detections, alerts, and behavioural indicators
- Write scripts to support analysis and automation
- Contribute to a threat intelligence and detection capability used by customers
What they’re looking for
- Experience in threat hunting, threat intelligence, or advanced SOC or detection roles
- Evidence of building or improving detection capability, not just operating alerts
- SIEM experience such as Splunk, Sentinel, Rapid7, or similar
- Scripting or coding experience for analysis or automation, Python ideal
- Strong understanding of attacker behaviour and modern attack techniques
Important: this is not a role focused on consuming threat intel tools or reacting to tickets.
Tech snapshot
- Scripting: Python preferred, plus Bash or PowerShell
- SIEM exposure: Splunk, Sentinel, Rapid7, or similar
- Cloud: Azure exposure helpful but not required
- Focus on analytics, automation, and detection engineering
Seniority and growth
- Two hires, one more senior and one at a mid-level, roughly 3 to 4 years’ experience
- High ownership and influence from day one
- Share options available
Location
- Remote within the UK
- Scotland preferred, with regular Edinburgh meetups and occasional Glasgow
- Light travel, roughly once per month
Why this role?
- No legacy SOC or rigid process to inherit - you help build the capability
- Exposure to real attack data at scale
- High‑trust, low‑bureaucracy technical environment
- Direct impact on both product and customers
Cyber Security Analyst in Worcester employer: Experis Scotland
Contact Detail:
Experis Scotland Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Cyber Security Analyst in Worcester
✨Tip Number 1
Network like a pro! Reach out to folks in the cyber security field on LinkedIn or at industry events. We can’t stress enough how important it is to make connections; you never know who might have the inside scoop on job openings.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your scripting projects or threat hunting analyses. This gives potential employers a taste of what you can do, and we love seeing practical examples of your work.
✨Tip Number 3
Prepare for interviews by brushing up on real-world attack scenarios and your approach to threat intelligence. We recommend practising with mock interviews to get comfortable discussing your experience and how it aligns with the role.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen. Plus, we’re always on the lookout for passionate candidates who are ready to dive into the world of cyber security.
We think you need these skills to ace Cyber Security Analyst in Worcester
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience in threat hunting and detection capabilities. We want to see how you've built or improved detection systems, so don’t hold back on those details!
Show Off Your Skills: When writing your application, emphasise your scripting skills, especially in Python. If you've worked with SIEM tools like Splunk or Rapid7, let us know how you’ve used them to analyse real-world attack activity.
Be Clear and Concise: Keep your application straightforward and to the point. We appreciate clarity, so avoid jargon unless it’s relevant to your experience. Make it easy for us to see why you’re a great fit!
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, we love seeing applications come in that way!
How to prepare for a job interview at Experis Scotland
✨Know Your Threat Hunting
Make sure you brush up on your threat hunting skills. Be ready to discuss specific techniques you've used in the past, and how you've analysed real-world attack activity. This role is all about understanding attacker behaviour, so show them you know your stuff!
✨Show Off Your Scripting Skills
Since scripting is a big part of this job, be prepared to talk about your experience with Python, Bash, or PowerShell. If you have any scripts you've written for analysis or automation, bring them up! It’s a great way to demonstrate your hands-on experience.
✨Familiarise Yourself with SIEM Tools
Get comfortable with SIEM tools like Splunk or Sentinel before the interview. They’ll likely ask about your experience with these platforms, so having examples of how you've built or improved detection capabilities will really set you apart.
✨Understand the Company’s Focus
Research the company’s approach to cyber deception and threat intelligence. Being able to discuss their methods and how they differ from traditional SOC roles will show that you're genuinely interested and aligned with their mission.