At a Glance
- Tasks: Lead threat hunts, incident response, and mentor junior analysts in a dynamic security environment.
- Company: Join Made Tech, a forward-thinking company enhancing public sector digital services.
- Benefits: Enjoy 30 days holiday, flexible working hours, remote options, and paid counselling.
- Other info: Be part of an inclusive culture that values mental health and community engagement.
- Why this job: Make a real impact on public safety while developing your skills in a supportive team.
- Qualifications: Experience in security analysis, cloud environments, and strong communication skills required.
The predicted salary is between 55000 - 65000 £ per year.
hackajob is collaborating with Made Tech to connect them with exceptional professionals for this role. Made Tech helps UK public sector organisations build and run secure, user-centred digital services. Our Cyber practice works directly with government departments, agencies, and other public bodies — embedding alongside client teams to raise their security capability, not just deliver a report and leave.
As a Senior Security Analyst, you'll be a core part of that practice, operating in a security operations context where the stakes are real: the systems we protect carry sensitive public data and underpin services that people depend on. You'll lead threat hunts and intrusion investigations, author and tune detection content, and help your team respond to incidents in a way that leaves things better than you found them. You'll translate threat intelligence into actionable detections, align your work to frameworks like the NCSC Cyber Assessment Framework and GovAssure, and communicate clearly with client security stakeholders who need to understand what's happening and why it matters.
You'll help junior analysts develop their triage tradecraft, normalise pairing on incident response, contribute to shared detection standards across the practice, and model the kind of blameless, collaborative culture that makes a security team genuinely effective.
- Lead threat hunts and intrusion investigations — form and test hypotheses, map adversary activity against MITRE ATT&CK, perform forensic artefact analysis, and establish scope and root cause clearly enough that the team and client can act on your findings.
- Author, tune, and peer-review detection content - treat detections as code (version-controlled, reviewed), translate threat intelligence into new rules, and contribute to iterative improvement of the SIEM ruleset.
- Own sub-cycles of the intelligence lifecycle - run structured collection against defined requirements, track actor TTPs, manage indicator lifecycles, and produce situational-awareness products that inform both detection priorities and client risk decisions.
- Lead incident response and drive improvement - co-ordinate containment across engineering and analyst teams, communicate incident detail clearly to client stakeholders, and turn every incident into improved detection content, hardening, or runbook coverage.
- Align security operations to UK public sector standards - ensure investigations, evidence handling, and detection coverage reflect NCSC CAF Objective C, GovAssure requirements, and lawful-monitoring obligations; feed gaps back into risk governance.
- Mentor junior analysts and raise team standards - pair deliberately on complex investigations, review triage work, share adversary tradecraft with the team, and help create an environment where people feel safe raising concerns and learning from mistakes.
- Contribute to the practice beyond your immediate engagement - improve shared SOC standards and onboarding documentation, turn good solutions into reusable playbooks and accelerators the next team can pick up, contribute detection content to practice-level repositories, and engage with cross-government security communities such as NCSC CISP and relevant ISACs.
Hold one of the following - Systems Security Certified Practitioner (SSCP), CompTIA Security+, or an equivalent foundational operational security credential expected of Senior SOC analysts.
Experience applying structured analytical techniques - ACH, key-assumptions checks, or similar, to produce rigorous, bias-resistant intelligence assessments, and comfort peer-reviewing others' analytic tradecraft.
Working knowledge of cloud security event investigation and cloud detection tuning, particularly across AWS, Azure, or GCP environments, including understanding of infrastructure-level telemetry.
Experience framing security findings in risk terms for non-technical stakeholders — communicating likelihood, impact, and recommended treatment clearly, and reflecting asset criticality and threat context in prioritisation decisions.
Evidence of building or improving SOAR playbooks, automated triage workflows, or equivalent automation that reduced analyst toil in a SOC or detection-engineering context.
Familiarity with UK government security frameworks — in particular the NCSC CAF, GovAssure, and HMG Security Policy Framework — and experience aligning detection or response work to those standards in a government or regulated environment.
Experience working within an agile or Kanban-based team model, contributing to workflow improvement, running or participating in retrospectives, and helping the team improve its own practices — not just delivering within them.
Experience acting as a trusted working-level contact for client security stakeholders — anchoring on their actual outcomes, raising concerns or opportunities proactively, and contributing subject-matter expertise to proposals or bids.
Hands-on experience with at least one major SIEM platform (for example, Splunk, Microsoft Sentinel, or Elastic Security) including writing and tuning detection rules.
Familiarity with threat intelligence platforms, OSINT tooling, or indicator lifecycle management in an operational context.
Job Benefits: An increasing number of our customers are specifying a minimum of SC (security check) clearance in order to work on their projects. Eligibility for SC requires 5 years' UK residency and 5 years' employment history (or back to full-time education).
If you need this job description in another format, or other support in applying, please email talent@madetech.
We’re committed to building a happy, inclusive and diverse workforce, where we talk about mental health, communities of practice and neurodiversity as well as our client work and best practice.
We’ve recently introduced a flexible benefit platform which includes a Smart Tech scheme, Cycle to work scheme, and an individual benefits allowance which you can invest in a Health care cash plan or Pension plan.
- 30 days Holiday - we offer 30 days of paid annual leave
- Flexible Working Hours - we are flexible with what hours you work
- Flexible Parental Leave - we offer flexible parental leave options
- Remote Working - we offer part time remote working for all our staff
- Paid counselling - we offer paid counselling as well as financial and legal advice
StudySmarter Expert Advice🤫
We think this is how you could land Senior Security Analyst (Contract) in Bristol
✨Get Engaged in Cybersecurity Communities
Dive into online forums or local meetups, like OWASP events or Cybersecurity conferences. These spaces are packed with pros who can share insights and might even know about temporary roles at places like Made Tech.
✨Showcase Your Skills Publicly
Link your GitHub or create a series of blogs sharing your knowledge on cybersecurity topics. It’s a great way to demonstrate your expertise and attract attention from hiring managers, especially when they see your passion in action.
✨Stay On Top of Temp Opportunities
Keep an eye on platforms that list temporary positions specifically in tech. Websites focusing on contract roles in cybersecurity can lead straight to employers like Made Tech.
✨Make Contact with Recruiters Specialising in Cybersecurity
Reach out to recruitment agencies that focus on cybersecurity roles. They often have insights into temporary roles before they’re advertised and can put your name forward to companies like Made Tech.
We think you need these skills to ace Senior Security Analyst (Contract) in Bristol
Some tips for your application 🫡
Show Off Your Technical Skills:In cybersecurity, it's vital to highlight your skills with relevant tools and technologies. Make sure your CV showcases your experience with firewalls, intrusion detection systems, and any cybersecurity frameworks you've worked with. This gives Made Tech a clear view of your capabilities right off the bat.
Certifications Matter:If you’ve got any cybersecurity certifications, like CompTIA Security+ or CISSP, flaunt them! These not only validate your skills but also show that you’re committed to the field. Add a section to your CV specifically for this, because in a temporary role like this, those credentials can really set you apart.
Tailor Your Cover Letter to the Role:For a temporary position, we want to see your willingness to learn and adapt quickly. Make your cover letter specific to the role at Made Tech; mention why you’re excited about the opportunity and how it fits your career goals. A personal touch can make a big difference!
Don’t Forget the Soft Skills:In cybersecurity, technical skills are crucial, but so are soft skills like teamwork and communication. Make sure to weave examples of how you've collaborated with teams or communicated complex ideas into your application. This shows that you're not just a tech whizz but also a great team player, perfect for a temporary role at Made Tech.
How to prepare for a job interview at Made Tech
✨Brush Up on Technical Skills
Make sure you’re familiar with the latest cybersecurity tools and techniques, like firewalls, intrusion detection systems, and malware analysis. During the interview with Made Tech for the Senior Security Analyst (Contract), be prepared to discuss specific scenarios where you tackled security threats or vulnerabilities.
✨Show Your Problem-Solving Prowess
Cybersecurity is all about thinking on your feet. Expect technical questions that require you to demonstrate your problem-solving abilities. You might be presented with a mock security breach scenario, so practising your responses to potential threats can be a game changer!
✨Demonstrate Your Adaptability
As this is a temporary role, showing that you're adaptable and quick to learn is crucial. Talk about times you've picked up new skills or reacted to changing situations quickly. Employers want to know you can hit the ground running and keep things secure during your short stay at Made Tech.
✨Bring Relevant Certifications
If you have any relevant cybersecurity certifications, like CompTIA Security+ or CEH, be sure to mention them. This can really help you stand out during a temporary hiring process, as it showcases your commitment to the field and your readiness to take on the Senior Security Analyst (Contract) role at Made Tech.