Senior Security Operations Analyst - SIEM & Threat Hunting in Manchester

Location: Hybrid - Manchester or Leeds 3 days per week, 2 days remote

Salary: From £54,000

Who we are: interactive investor is an award-winning investment platform that puts its customers in control of their financial future. We’ve been helping investors for nearly 30 years. We’re now the UK’s number one flat-fee investment platform, with assets under administration approaching £75 billion and over 500,000 customers.

Purpose of the Role

We are recruiting for a Senior Security Operations Analyst to join the Information Security Team to support our continued growth. You will help maintain and protect our key business assets from threats and risks by monitoring, detecting, analysing, and responding to security incidents.

Key Responsibilities

• Oversee the day to day running of our SIEM solution (Chronicle) working closely with Infrastructure, Networks, DevOps and our outsourced Security Operations Centre (SOC) team.
• Define and facilitate the creation of new rules or fine-tuning existing rules within SIEM.
• Investigate SIEM alerts and other security incidents through to completion.
• Work within the Information Security Team to provide a dynamic monitoring and incident response capability.
• Monitor and analyse security events identifying trends, attacks, and potential threats.
• Identify and raise problems. Communicate & escalate these via the appropriate channels and track through to remediation.
• Monitoring and gathering Threat intelligence and coordinating subsequent Threat Hunting.
• Assess security threats from multiple sources and plan mitigation/remediation.
• Gather relevant data, analyse and respond to cyber security incidents.
• Research and stay current on the latest trends, best practices, and technology developments for all things cyber.
• Assist in the design, management, and documentation of security policies, solutions, standards, and processes.
• Designing effective test methods for logical security controls.
• Day to day management of Endpoint Detection and Response (EDR).
• A good understanding of technical and network security requirements.
• Ability to proactively identify control weakness and vulnerabilities.
• Knowledge and use of SIEM tooling i.e., Splunk, Chronicle, Sentinel etc and event log data.
• Experience in understanding Firewalls and IDS/IPS and Windows Security Event Logs.
• Strong verbal and written communication skills with the ability to articulate complex ideas in easy to comprehend business terms.
• Comfortable taking ownership for own work, identifying the need for action whilst working effectively within a team.
• Ability to quickly understand existing infrastructure, network security principles, data flow and security architectures.
• Knowledge of the fundamentals of cloud infrastructure as well as traditional technologies.
• Degree in IT / Cyber preferred or industry recognised qualification.

Benefits

• Group Personal Pension Plan– 8% employer contribution and 4% employee contribution
• Life Assurance and Group Income Protection
• Private Medical Insurance– Provided by Bupa
• 25 Days Annual Leave, plus bank holidays
• Staff Discounts on our investment products
• Personal & Well-being Fund– Supporting your physical and mental wellness
• Retail Discounts– Savings at a wide range of high street and online retailers
• Voluntary Flexible Benefits– Tailor your benefits to suit your lifestyle

Please Note: We will do our utmost efforts to respond to all applicants. However, due to the high volume of applications we're currently receiving, if you haven't been contacted within 30 days of application, please consider unsuccessful.

interactive investor operates in accordance with the UK Equality Act 2010. We welcome applications from individuals of all ages, disabilities, gender identities, marital status, pregnancy/maternity, race, religion or belief, sex, and sexual orientation. We are committed to treating all applicants fairly and making reasonable adjustments where needed to support disabled applicants. We actively prevent all forms of discrimination, harassment, and victimisation—whether direct, indirect, associative, or perceptive.