Senior Attack Monitoring Analyst, GSOC

The London Stock Exchange Group seeks an experienced, dedicated and driven Senior Attack Monitoring Analyst to join the Global Security Operations team!

LSEG Security Operations is a central function employing people, process and technology to continuously monitor and respond to cyber security incidents. This role is responsible for identifying and responding to cyber security incidents and improving the defensive capabilities of the GSOC.

Responsibilities:

• Triage security events and employ a methodical and coherent response to security incidents adopting playbooks where necessary.
• Operate a chosen SIEM (e.g., Splunk, QRadar, LogRhythm) for incident investigations, or for the development of monitoring dashboards.
• Utilise playbooks, existing knowledge and accurate online resources for guidance when responding to incidents.
• Use online resources for researching and collecting threat intelligence to improve the SOC’s abilities to detect cyber-attacks.
• Develop new, or improve existing run books and use cases based on investigations and knowledge of modern attacks.
• Stay up to date with current vulnerabilities, attacks, and countermeasures.
• Identify, respond and remediate cyber events generated through monitoring technologies.

Experience & Qualifications:

• Preferred experience with operating or administering a SIEM (e.g., Splunk, QRadar, LogRhythm).
• Solid understanding of networks including the TCP/IP stack, typical organisational architectures, and common protocols abused by malware.
• Experience in security event analysis & triage, incident handling and root‑cause identification.
• Understanding of tools, techniques and procedures that attackers use to compromise organisations, ideally from direct experience.
• Knowledge of cyber security either academically or within corporate environments.
• Ability to work in a fast‑paced and demanding environment while remaining calm.
• Strong verbal and written communication and collaboration skills.
• Security industry specific and core technical accreditations such as OSCP, GIAC, CCNA.
• Certification demonstrating SIEM operational competences.
• Proficient with one or more programming languages (e.g., Python, PowerShell, Java, C#).

Join us and be part of a team that values innovation, quality, and continuous improvement. If you’re ready to take your career to the next level and make a significant impact, we’d love to hear from you.

LSEG is a leading global financial markets infrastructure and data provider. Our purpose is driving financial stability, empowering economies and enabling customers to create sustainable growth. Working with us means that you will be part of a dynamic organisation of 25,000 people across 65 countries. We value your individuality and enable you to bring your true self to work so you can help enrich our diverse workforce.

We are proud to be an equal opportunities employer. We do not discriminate on the basis of race, religion, colour, national origin, gender, sexual orientation, gender identity, gender expression, age, marital status, veteran status, pregnancy or disability, or any other basis protected under applicable law.

We can reasonably accommodate applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. We are committed to sustainability across our global business and are proud to partner with our customers to help them meet their sustainability objectives.

LSEG offers a range of tailored benefits and support, including healthcare, retirement planning, paid volunteering days and wellbeing initiatives.