Senior Cyber Security Analysts

Fulcrum Digital is an agile and next-generation digital accelerating company providing digital transformation and technology services right from ideation to implementation. These services have applicability across a variety of industries including banking & financial services, insurance, retail, higher education, food, healthcare, and manufacturing.

Detail-oriented and proactive Senior Cybersecurity Analyst with strong expertise in Vulnerability Management, Incident Response, and Security Automation. Experienced with industry-leading tools such as Microsoft Sentinel, Nessus, Sophos, and Microsoft Defender for Endpoint. Adept at investigating phishing threats, building insightful Power BI dashboards, and automating security workflows using Logic Apps, Power Automate, and scripting in Python, PowerShell, and Batch. Certified in SC-200, AZ-500, and CEH with a hands‑on approach to improving organisational security posture.

About the Role: This role is part of Client's Cyber Defence function and reports to the Group Senior Manager, Cyber Security Operations. The Senior Cyber Security Analyst will strengthen the organisation’s operational security capabilities across key areas such as detection engineering, incident response, vulnerability management, and secure configuration. As a technical subject matter expert, the Senior Cyber Security Analyst will drive the optimisation and integration of Microsoft Sentinel, Microsoft Defender, and associated security technologies across the global estate. The role will also support the coordination and operational integration of vulnerability and threat management activities, including Microsoft Defender Vulnerability Management and external vulnerability scanning platforms.

Who We Are Looking For:

• Experience in a senior IT security role, overseeing & supporting security operations across infrastructure, cloud (including Microsoft, AWS or Google Cloud), and on‑prem environments, managing complex security solutions in a multi‑region setting.
• Proven experience in configuring and optimising Microsoft Sentinel and the Defender suite, as well as integrating with third‑party tools to enhance detection and response capabilities across both cloud and on‑premises environments.
• Extensive experience in leading incident response efforts, coordinating across global teams and multiple regions, ensuring effective remediation and resolution of security incidents in both cloud and on‑prem settings.
• Experience managing vulnerability management programmes, overseeing the identification, assessment, and remediation of vulnerabilities across hybrid infrastructures, and translating findings into actionable security improvements.
• Experience working with threat intelligence sources, integrating insights into detection frameworks and security operations for both cloud environments and on‑prem infrastructures.

Requirements: The Senior Cyber Security Analyst will lead continuous enhancement of monitoring, detection, response and remediation processes, ensuring that security telemetry, vulnerability intelligence and threat insights are effectively integrated into operational security workflows. Working closely with Group, Regional and school‑based IT teams, the role will help ensure security tooling, controls and processes operate consistently across diverse and geographically dispersed environments. The position is also responsible for producing clear, actionable reporting that supports informed operational decision‑making and strategic risk reduction across the organisation.

Key Responsibilities:

• Detection Engineering & Automation
  • Configure and optimise Microsoft Sentinel; integrate Microsoft and Google security tools.
  • Develop and tune detection logic across Microsoft Defender and Google technologies.
  • Build and maintain SOAR workflows (Logic Apps) for triage and response.
  • Integrate security tools and improve monitoring coverage across environments.
  • Maintain clear documentation for detections and workflows.
  • Lead end‑to‑end incident response (detection to recovery).
  • Coordinate with cross‑functional teams and provide stakeholder updates.
  • Maintain and improve IR policies, procedures, and playbooks.
  • Conduct post‑incident reviews and drive continuous improvement.
  • Support secure configuration of Azure and cloud services.
  • Maintain secure baselines across endpoints, servers, and Google Workspace.
  • Configure Microsoft Defender policies and ensure alignment with standards.
  • Promote secure‑by‑design practices with IT teams.
• Threat & Vulnerability Management
  • Support and improve vulnerability management processes.
  • Assess vulnerabilities and drive remediation with stakeholders.
  • Use threat intelligence to prioritise risks and improve defences.
  • Track, report, and enhance cyber threat intelligence capabilities.
• Collaboration & Security Culture
  • Partner with global IT teams to support security operations.
  • Act as a subject matter expert across key security domains.
  • Ensure consistent control implementation and strong stakeholder engagement.
  • Promote security awareness and shared responsibility.
• Reporting, Governance & Improvement
  • Produce reports on incidents, threats, and remediation.
  • Maintain KPIs/KRIs aligned with governance frameworks.
  • Provide updates to leadership on security posture and risks.
  • Drive improvements in tools, processes, and documentation.