Information Security Analyst

Supporting the business and our divisional offices, our Head Office functions cover all departments from our Executive Board through to our support functions such as Group Design and Technical, HR, Health and Safety, IT, Sales and Marketing, Commercial, Procurement, Group Finance, Corporate Affairs, as well as Legal and Company Secretariat. We also have a specialised function - Barratt Partnerships.

To work as part of the information security team, ensuring excellent security compliance throughout the business. You will work with threat monitoring, event log management and vulnerability management to help protect against cyber-attacks and vulnerabilities across the threat landscape. The Security Analyst plays a critical role in monitoring, detecting, and responding to cybersecurity threats across the organisation.

Working under the direction of the Security Operations Team Lead, the analyst will support daily security operations, contribute to threat and vulnerability management activities, and help ensure that incidents are investigated and resolved effectively. The role involves close collaboration with a third-party 24x7 Security Operations Center (SOC) and participation in the continuous improvement of security detection and response capabilities but also provides support where required for other capabilities including user awareness and security tooling.

Reporting to Security Operations Team Lead, you will be expected to:

• Monitor and manage security alerts and events from internal systems and the third-party SOC, assisting in triage, third line SME review and escalation as needed.
• Review, monitor and implement best practice security measures.
• Investigate suspected security incidents, gather evidence, and support containment, eradication, and recovery activities.
• Conduct initial analysis of potential threats using tools such as SIEM, EDR, and threat intelligence feeds.
• Assist in the day-to-day operation of vulnerability scanning tools and help coordinate remediation efforts with IT and infrastructure teams.
• Maintain and update security operations documentation, including incident records, playbooks, and runbooks.
• Collaborate with the SOC to ensure effective knowledge transfer, alignment of use cases, and appropriate escalation of critical events.
• Participate in threat intelligence gathering, analysis, and contextualisation to enhance detection rules and situational awareness.
• Support testing of incident response procedures, such as tabletop exercises and simulated attacks.
• Stay current on the latest threats, vulnerabilities, and cyberattack techniques to inform operational practices.
• Engage in and support the delivery of User Awareness activities across the Group.

What you’ll need

Essential:

• 1-3 years of experience in a cybersecurity or IT operations role, ideally within a SOC or third line security monitoring function. This should include experience in investigations (e.g. Improper access) and working with technology colleagues to resolve risks.
• Proven troubleshooting skills in complex technical and business environments.
• Working knowledge of SIEM platforms, endpoint protection tools, and network security fundamentals.
• Understanding of common cyber threats, indicators of compromise, and basic incident response principles.
• Change and transition technical management skills.
• Strong analytical skills and a methodical approach to problem-solving.
• Clear written and verbal communication skills, with the ability to document findings and report on security events.
• Experience working in a compliant environment (NIST, GDPR).
• Good experience of managing and implementing security policies and procedures.
• Implement & monitor security best practices.
• Ability to work within a team, providing flexible support to other team members.
• Experience of NIST implementation and assessment.

Desirable:

• Certifications such as CompTIA Security+, SSCP, or GIAC (e.g., GSEC, GCIA).
• Familiarity with MITRE ATT&CK, CVSS scoring, and threat intelligence platforms.
• Experience with vulnerability scanners (e.g., Tenable, Qualys) and EDR tools (e.g., CrowdStrike, SentinelOne).
• Interest in threat hunting or automation/scripting (e.g., Python, PowerShell) is a plus.

We’ve been nationally recognised as a 5 star housebuilder since 2010 for supplying high-quality homes for all generations. That’s more than any other major housebuilder. It’s because we combine the brightest minds, the latest technology, and a genuine commitment to putting customers first. We want the best people in the industry to help us shape the future of building.

Barratt adopts a hybrid way of working which assumes that where roles allow, our office-based colleagues divide their time between working in the office, on our construction sites and sales offices, and working from home, as the role dictates. We recognise the many benefits that an effective hybrid working culture brings to both the Company and our colleagues.

As part of working for Barratt Redrow PLC and specifically for this role we offer:

• Competitive Salary
• Competitive Bonus Scheme
• Private Medical Cover - Single Cover
• Annual Medical Health Assessment
• 26 days’ holiday (increase by 1 day for every 3 years’ continuous service up to 29 days)
• Choice of Flexible Benefits
• Enhanced Family Friendly Policies