Hackajob is collaborating with Made Tech to connect them with exceptional professionals for this role.\ N Made Tech helps UK public sector organisations build and run better digital services. Our Cyber practice sits at the heart of that mission β working alongside government departments, agencies, and critical national infrastructure owners to improve how they detect, respond to, and learn from cyber threats. As a Lead Security Analyst, you'll be the most senior analyst on your engagement, setting the technical direction for the SOC and owning the quality of what the team produces β from detection engineering to threat-hunting to incident response.\ That means pairing on complexinvestigations, setting tradecraft standards, and making sure the team's detection content is version-controlled, peer-reviewed, and continuously improved β not left to age in a SIEM. You'll also be the trusted technical interface for client security stakeholders, translating what the SOC is seeing into the language that informs decisions.\ You'll align your work to NCSC guidance, the Cyber Assessment Framework, and OFFICIAL handling requirements β not because compliance is the goal, but because those frameworks reflect the real risk environment your clients operate in. You'll engage with cross-government security communities, feed detection content and runbooks back into the Cyber practice, and help grow a bench of analysts who can operate at the same standard.\ Own the threat-landscape narrative for your engagement β turn intelligence from NCSC advisories, sector feeds, and threat actor reporting into hunt themes, coverage gap analysis, and detection priorities that the SOC and client stakeholders can act on.\ Run the intelligence cycle asa managed discipline β maintain a collection plan, produce timely and rigorous intelligence products, and build feedback loops that keep the cycle honest and improving.\ Establish and lead security incident response practice β build playbooks, define the severity model, run exercises, and lead the team's response to significant incidents; Be the trusted technical interface for client security stakeholders β communicate what the SOC is detecting, investigating, and covering without losing fidelity; surface risks early andhonestly, and align the team's priorities to the client's risk picture.\ Grow the analysts around youβ pair on detection authorship and incident response as a default, set pairing as the team norm, and actively build the capability of L1 and L2 analysts through structured mentoring and coaching so knowledge isn't concentrated in one person.\ Contribute to the Cyber practice beyond your engagement β feed detection content, runbooks, and lessons learned back into shared practice resources; and engage with public-sector security communities including NCSC CISP and relevant ISACs.\ Certified Information SystemsSecurity Professional (CISSP)\ N Certified Information Security Manager (CISM)\ N CompTIA Advanced Security Practitioner (CASP+)\ N Experience leading detection engineering in a SOC or similar environment β including writing and tuning detections in KQL, SPL, EQL, or Sigma, and managing coverage against MITRE ATT
Security Service Lead Analyst employer: Made Tech
Made Tech is an exceptional employer, dedicated to fostering a collaborative and inclusive work culture that empowers employees to make a real impact in the public sector. With a strong focus on professional development, you will have the opportunity to mentor junior analysts and enhance your technical skills while working on meaningful projects that protect sensitive public data. Our generous benefits package, including 30 days of holiday and flexible working arrangements, ensures a healthy work-life balance, making Made Tech a truly rewarding place to grow your career.