Senior Security Analyst

Senior Security Analyst

Full-Time 55000 - 65000 £ / year (est.) No working from home possible
Made Tech Limited

At a Glance

  • Tasks: Lead threat hunts, investigate intrusions, and enhance security operations for public sector services.
  • Company: Join Made Tech, a forward-thinking company dedicated to improving public sector digital services.
  • Benefits: Competitive salary, support for certifications, and opportunities for professional growth.
  • Other info: Collaborative culture with mentorship opportunities and a focus on continuous improvement.
  • Why this job: Make a real impact on public safety while developing your skills in a hands-on role.
  • Qualifications: Experience in security analysis and familiarity with SIEM platforms required.

The predicted salary is between 55000 - 65000 £ per year.

Made Tech helps UK public sector organisations build and run secure, user‑centred digital services. Our Cyber practice works directly with government departments, agencies and other public bodies—embedding alongside client teams to raise their security capability, not just deliver a report and leave. As a Senior Security Analyst, you will be a core part of that practice, operating in a security operations context where the stakes are real: the systems we protect carry sensitive public data and underpin services that people depend on. This is a hands‑on technical role with genuine scope and influence.

You will lead threat hunts and intrusion investigations, author and tune detection content, and help your team respond to incidents in a way that leaves things better than you found them. You will translate threat intelligence into actionable detections, align your work to frameworks such as the NCSC Cyber Assessment Framework and GovAssure, and communicate clearly with client security stakeholders who need to understand what is happening and why it matters. You will own significant pieces of the SOC’s work end‑to‑end—not just executing tasks, but making considered decisions and being clear about trade‑offs.

At Senior level, the role is about more than your own output. You will help junior analysts develop their triage tradecraft, normalise pairing on incident response, contribute to shared detection standards across the practice, and model the kind of blameless, collaborative culture that makes a security team genuinely effective. If you are looking for a role where you can grow technically, build real influence within a team and do meaningful work for the public sector, this is it.

Key responsibilities
  • Lead threat hunts and intrusion investigations — form and test hypotheses, map adversary activity against MITRE ATT&CK, perform forensic artefact analysis, and establish scope and root cause clearly enough that the team and client can act on your findings.
  • Author, tune and peer‑review detection content — treat detections as code (version‑controlled, reviewed), translate threat intelligence into new rules, and contribute to iterative improvement of the SIEM ruleset; onboard new log sources, including cloud and application feeds, to close coverage gaps.
  • Own sub‑cycles of the intelligence lifecycle — run structured collection against defined requirements, track actor TTPs, manage indicator lifecycles, and produce situational‑awareness products that inform both detection priorities and client risk decisions.
  • Lead incident response and drive improvement — co‑ordinate containment across engineering and analyst teams, communicate incident detail clearly to client stakeholders, and turn every incident into improved detection content, hardening, or run‑book coverage; design for resilience by anticipating failure modes and ensuring systems degrade gracefully.
  • Build SOAR playbooks and auto‑triage — identify toil and repetition in analyst workflows, and build automation that saves the team time and improves consistency without removing human judgement where it matters.
  • Align security operations to UK public sector standards — ensure investigations, evidence handling, and detection coverage reflect NCSC CAF Objective C, GovAssure requirements, and lawful‑monitoring obligations; feed gaps back into risk governance.
  • Mentor junior analysts and raise team standards — pair deliberately on complex investigations, review triage work, share adversary tradecraft with the team, and help create an environment where people feel safe raising concerns and learning from mistakes.
  • Contribute to the practice beyond your immediate engagement — improve shared SOC standards and onboarding documentation, turn good solutions into reusable playbooks and accelerators the next team can pick up, contribute detection content to practice‑level repositories, and engage with cross‑government security communities such as NCSC CISP and relevant ISACs.
Skills, knowledge and expertise
  • Hold one of the following - Systems Security Certified Practitioner (SSCP), CompTIA Security+, or an equivalent foundational operational security credential expected of Senior SOC analysts.
Certifications that would strengthen your application
  • Certified Cloud Security Professional (CCSP)
  • CompTIA Advanced Security Practitioner (CASP+)
  • HTB Certified Defensive Security Analyst (HTB CDSA)
Capabilities that set strong applications apart
  • Experience applying structured analytical techniques—ACH, key‑assumptions checks or similar—to produce rigorous, bias‑resistant intelligence assessments, and comfort peer‑reviewing others’ analytic tradecraft.
  • Working knowledge of cloud security event investigation and cloud detection tuning, particularly across AWS, Azure or GCP environments, including understanding of infrastructure‑level telemetry.
  • Experience framing security findings in risk terms for non‑technical stakeholders—communicating likelihood, impact and recommended treatment clearly, and reflecting asset criticality and threat context in prioritisation decisions.
  • Evidence of building or improving SOAR playbooks, automated triage workflows or equivalent automation that reduced analyst toil in a SOC or detection‑engineering context.
  • Familiarity with UK government security frameworks—notably the NCSC CAF, GovAssure and HMG Security Policy Framework—and experience aligning detection or response work to those standards in a government or regulated environment.
  • Experience working within an agile or Kanban‑based team model, contributing to workflow improvement, running or participating in retrospectives, and helping the team improve its own practices—not just delivering within them.
  • Experience acting as a trusted working‑level contact for client security stakeholders—anchoring on their actual outcomes, raising concerns or opportunities proactively, and contributing subject‑matter expertise to proposals or bids.
Tools and practice familiarity
  • Hands‑on experience with at least one major SIEM platform (for example, Splunk, Microsoft Sentinel or Elastic Security) including writing and tuning detection rules.
  • Familiarity with threat intelligence platforms, OSINT tooling or indicator lifecycle management in an operational context.

Made Tech sponsors attainment of recognised cyber certifications for staff in scope. If you do not yet hold the listed credentials but are actively working toward them, or can demonstrate equivalent capability through experience, we encourage you to apply. An increasing number of our customers are specifying a minimum of SC (security check) clearance in order to work on their projects. As a result, we’re looking for all successful candidates for this role to have eligibility. Eligibility for SC requires 5 years of UK residency and 5 years of employment history (or back to full‑time education). Please note that if at any point during the interview process it is apparent that you may not be eligible for SC, we won’t be able to progress your application and we will contact you to let you know why.

Made Tech Limited

Contact Details:

Made Tech Limited Recruitment Team

StudySmarter Expert Advice🤫

We think this is how you could land Senior Security Analyst

Get Involved in the Cybersecurity Community

Diving into the cybersecurity community is key for landing that full-time gig. Join forums like Reddit's r/cybersecurity or attend local meetups to connect with industry veterans and other job seekers. Networking is everything in this field—don’t just be a passive lurker!

Show Off Your Skills with Capture the Flag Competitions

Participate in Capture the Flag (CTF) competitions; these are not just a fun way to boost your skills but also a chance to showcase your talent to potential employers. Many companies, including Made Tech Limited, love seeing candidates who actively engage in these challenges.

Tailor Your Online Presence

Make sure your LinkedIn and any professional profiles reflect your cybersecurity expertise. Share your projects, whether they’re personal or from a previous role, to catch the eye of hiring managers. This is how they’ll find your passion and commitment to the field!

Apply Directly Through Made Tech Limited

Don’t forget to head straight to our website and check out any openings for cybersecurity roles at Made Tech Limited. Applying directly can sometimes give you an edge, especially if you can mention that you've been following our work or engaging in the community.

We think you need these skills to ace Senior Security Analyst

Threat Hunting
Intrusion Investigation
Detection Content Authoring
Forensic Artefact Analysis
Incident Response
SOAR Playbook Development
Cloud Security

Some tips for your application 🫡

Show off your technical skills:In cybersecurity, it's crucial to highlight your technical prowess. Make sure your CV showcases specific skills like network security, penetration testing, or threat analysis. If you have relevant certifications (like CEH or CISSP), pop those on the front page to grab attention!

Tailor your portfolio for the role:Even for a full-time role, a portfolio can set you apart. If you've worked on any cybersecurity projects—be it CTF challenges, security assessments, or research papers—include these in your application. This demonstrates not just your skills, but also your hands-on experience!

Use real-world examples:When writing your cover letter, don’t just stick to your qualifications. Share real-world examples of how you’ve tackled security issues or vulnerabilities. This gives the hiring team at Made Tech Limited insight into your practical problem-solving abilities and makes your application memorable.

Demonstrate your passion for cybersecurity:Cybersecurity is an ever-evolving field, so show us that you’re always learning! Mention any recent courses, webinars, or industry events you’ve attended. This not only exhibits your enthusiasm but also signals to Made Tech Limited that you’re committed to staying ahead in the game.

How to prepare for a job interview at Made Tech Limited

Sharpen Your Technical Skills

For a role in cybersecurity, it’s essential to be up-to-date with the latest tools and techniques. Brush up on your knowledge of firewalls, intrusion detection systems, and vulnerability assessment tools. Be ready to discuss specific scenarios where you’ve applied these skills, as hands-on experience can really set us apart in interviews.

Prepare for Scenario-Based Questions

Expect the interviewers at Made Tech Limited to throw in some hypothetical situations to see how you’d handle them. Think about common security breaches or incidents and be prepared to explain how you would respond. This not only shows your problem-solving skills but also your understanding of real-world cybersecurity challenges.

Highlight Your Certifications

Certifications like CompTIA Security+, CISSP, or CEH can give you a significant edge in a full-time role in cybersecurity. Make sure to mention these during your interview and be prepared to discuss what you learned through those certifications and how they relate to the position at Made Tech Limited.

Show Your Passion for Cybersecurity

Since you’re going for a full-time gig, showing genuine enthusiasm for the field can make all the difference. Share any personal projects, blogs, or communities you’re part of that relate to cybersecurity. This not only showcases your passion but also your commitment to staying engaged in this ever-evolving field.