Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Monitor and respond to cyber security incidents using advanced tools.
- Company: Join a global Cyber Security Incident Response Team in Warwick.
- Benefits: Competitive salary, professional development, and a supportive team environment.
- Why this job: Make a real impact in cyber security while working with cutting-edge technology.
- Qualifications: Must have current or lapsed SC Clearance; critical thinking and problem-solving skills are essential.
- Other info: Dynamic role with opportunities for continuous improvement and career growth.
The predicted salary is between 36000 - 60000 £ per year.
Due to increased workload, we require a strong CSIRT Analyst to join the team. The team operates at a high level and we’re looking for someone who can work at Tier 1 and Tier 2 level. You’ll be responsible for using a multitude of tools and triaging and responding to events in an end-to-end capacity.
Essential: You must have current SC Clearance or lapsed SC (within 12 months).
Job Purpose: The UK CSIRT Tier 1 Analyst will deliver the actions and activities as required and detailed in Cyber Incident Response plans. Using technical expertise and co‑ordination capabilities, they will work within a team and individually, to respond to incidents and security events. The role requires the individual to have a high level of performance and individual ability.
About the Role: As part of the Cyber Security Incident Response Team (CSIRT), you will be employed within a global team as a Tier 1 CSIRT analyst within its Cyber Security Operations Centre (CSOC) located in Warwick. We respond as one global team, US & UK, comprising of analysts, senior analysts, principal analysts, & managers. This affords you a team you can query, learn, and rely upon. Additionally, we have procedures ingrained within our technology to assist your investigations from triaging to containment.
Key Accountabilities:
- Monitor, respond to, and investigate cyber security incidents, ensuring that the full end-to-end investigation of events are fully triaged.
- Respond to security events within the estate, including but not limited to:
- Splunk SIEM
- Enterprise and OT Intrusion Detection/Prevention Systems (IDS/IPS)
- Phishing Emails
- OT IDS
- In‑house curated use cases aligning to our security tooling and technology within Enterprise, OT and CNI
- Vulnerability reports
- Operational Threat and Analytics (OTA) Team reports
What you’ll need: We are open minded when it comes to hiring. If you are intellectually curious, a critical thinker, enjoy solving problems and possess the aptitude and attitude to learn, we would like to hear from you!
Desirable experience would include:
- Ability to investigate a person’s behaviour and illustrate anomalous behaviour observed.
- Experience in packet capture analysis, EDR, IDS/IPS, SIEM and AV.
- Knowledge of Windows/Linux/Mac Host internals.
- Knowledge of Cloud, Azure, KQL, Scripting, Microsoft Defender.
- Knowledge of network protocols and windows enterprise domains.
- Knowledge of MITRE ATT&CK tactics and techniques.
- Knowledge of Splunk ES8.
- Knowledge of OT and CNI working environments.
- Knowledge of Kubernetes or associated Cloud Native Computing.
- Excellent written and verbal communication skills.
- Knowledge of IDS and IPS Snort rules.
- Knowledge of Network perimeter security devices.
- Security clearance.
Pontoon is an employment consultancy and operates as an equal opportunities employer.
CSIRT Analyst (SC Cleared) in England employer: Pontoon Solutions
Contact Detail:
Pontoon Solutions Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land CSIRT Analyst (SC Cleared) in England
✨Tip Number 1
Network like a pro! Attend industry events, webinars, or local meetups to connect with other professionals in the cyber security field. You never know who might have a lead on your dream CSIRT Analyst role!
✨Tip Number 2
Show off your skills! Create a portfolio or a GitHub repository showcasing your projects, especially those related to incident response and security tools. This gives potential employers a taste of what you can bring to the table.
✨Tip Number 3
Prepare for interviews by brushing up on common CSIRT scenarios and technical questions. Practice explaining your thought process when triaging incidents, as this will demonstrate your analytical skills and problem-solving abilities.
✨Tip Number 4
Don’t forget to apply through our website! We’re always on the lookout for passionate individuals like you. Plus, it’s a great way to ensure your application gets the attention it deserves.
We think you need these skills to ace CSIRT Analyst (SC Cleared) in England
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the CSIRT Analyst role. Highlight your relevant experience with tools like Splunk, IDS/IPS, and any incident response work you've done. We want to see how your skills match what we're looking for!
Show Off Your Skills: In your cover letter, don’t just list your qualifications—show us how you’ve used them in real situations. Talk about specific incidents you’ve handled and the outcomes. This helps us see your problem-solving skills in action!
Be Clear and Concise: When writing your application, keep it clear and to the point. Use bullet points where possible to make it easy for us to read. We appreciate a well-structured application that gets straight to the good stuff!
Apply Through Our Website: We encourage you to apply through our website for the best chance of getting noticed. It’s the easiest way for us to track your application and ensure it reaches the right people. Don’t miss out on this opportunity!
How to prepare for a job interview at Pontoon Solutions
✨Know Your Tools
Familiarise yourself with the tools mentioned in the job description, like Splunk SIEM and IDS/IPS systems. Be ready to discuss how you've used these tools in past roles or projects, as this will show your practical experience and understanding of the technology.
✨Understand Cyber Security Concepts
Brush up on key cyber security concepts, especially those related to incident response and the MITRE ATT&CK framework. Being able to articulate your knowledge of these areas will demonstrate your expertise and readiness for the role.
✨Showcase Problem-Solving Skills
Prepare examples of how you've tackled complex problems in previous positions. Use the STAR method (Situation, Task, Action, Result) to structure your answers, highlighting your critical thinking and analytical skills that are essential for a CSIRT Analyst.
✨Ask Insightful Questions
At the end of the interview, ask questions that show your interest in the team and the role. Inquire about the team's approach to continuous improvement or how they handle specific types of incidents. This not only shows your enthusiasm but also helps you gauge if the company is the right fit for you.