At a Glance
- Tasks: Lead cyber security investigations and enhance monitoring capabilities to protect vital services.
- Company: Join Southern Water, a leader in transforming the water industry with a focus on digital innovation.
- Benefits: Competitive salary, hybrid work model, and opportunities for professional growth.
- Other info: Diverse and inclusive workplace committed to innovation and positive change.
- Why this job: Make a real impact on cyber resilience while working with cutting-edge technology.
- Qualifications: Degree-level education and 3-7 years in cyber operations or SOC analysis required.
The predicted salary is between 40000 - 50000 £ per year.
This is an incredibly exciting time to join Southern Water’s Digital Directorate, as we continue a major transformation journey that places cyber resilience and digital innovation at the very heart of the organisation.
As a Cyber Security Analyst, you will play a critical role in safeguarding both our digital and operational technology (OT) environments. You’ll lead investigations, own incident response actions, and drive improvements across our cyber monitoring capability. This is a hands‐on, high‐impact role where your expertise will directly strengthen the security of essential services relied upon by millions. Working alongside our Senior Cyber Analysts, SOC partners, Digital teams and OT Operations, you’ll help shape how we detect, respond to and learn from emerging threats and contribute to the continual uplift of our cyber maturity across the enterprise.
What you will be responsible for
You’ll lead proactive security monitoring, manage end‐to‐end incident investigations, and enhance our forensic, monitoring and detection capabilities.
- Leading proactive security monitoring and threat detection across IT and OT environments, making autonomous prioritisation and response decisions.
- Owning cyber incident investigations, from initial triage through to containment recommendations and coordinated remediation.
- Managing digital forensics activities, ensuring data integrity, compliance and high‐quality executive and technical reporting.
- Enhancing monitoring platforms, rules, playbooks and SOC tooling to continually strengthen our defence posture.
- Supporting organisation‐wide awareness, learning, and capability development in DFIR and threat detection.
Additional requirements specific to this role
- Work across critical infrastructure, IT and OT environments as part of incident response and monitoring cycles.
- Engage with regulated frameworks and expectations including ISO 27001, NIST CSF and CAFv4.
- May be required to support out‐of‐hours incident handling depending on operational need.
What you’ll bring to the role
Essential
- Advanced understanding of cyber security principles, monitoring tools and incident response methodologies.
- Experience with SIEM and EDR platforms such as LogRhythm, Microsoft Defender for Endpoint or CrowdStrike.
- Strong capability in triage, investigation and root‐cause analysis of cyber incidents.
- Solid grounding in network, endpoint and identity security fundamentals.
- Educated to degree level (or equivalent experience) with 3–7 years’ experience in cyber operations, SOC analysis or DFIR.
- Strong understanding of vulnerabilities, exploits and remediation approaches.
Desirable
- Recognised industry certifications (e.g., GCIH, GCFA, GCFE, CEH, Security+, GIAC).
- Exposure to incident handling, forensic investigation or critical infrastructure environments.
- Experience with scripting or automation (PowerShell, Python).
Southern Water is at the forefront of transforming Britain’s water industry, investing significantly to enhance resilience, sustainability, and service excellence. With £7.8bn planned investment for 2025-30, this is an unparalleled opportunity to join a business committed to delivering a generational shift in the way water services are managed.
You will be joining at a time of significant change, working alongside a highly skilled leadership team with a clear vision for the future. We offer an environment where senior professionals can make a meaningful impact, influence major strategic decisions, and drive long-term value creation.
At Southern Water, we believe diverse perspectives drive innovation. If you’re passionate about making a positive impact and think you can bring value to our team, we’d love to hear from you—even if you don’t tick every box. Your unique skills and experiences could be exactly what we need.
Our Commitment to Diversity: We welcome applicants from all backgrounds, identities, and experiences. We do not discriminate based on race, ethnicity, gender, sexual orientation, age, disability, religion, or any other protected characteristic. If you need reasonable adjustments during the recruitment process, please let us know.
Cyber Security Analyst employer: Southern Water group
Southern Water is an exceptional employer, offering a dynamic work environment in Durrington where innovation and cyber resilience are at the forefront of our mission. Employees benefit from a culture that values diverse perspectives, professional growth opportunities, and the chance to make a significant impact on essential services relied upon by millions. Join us during this transformative period and be part of a team that prioritises collaboration, learning, and the continuous enhancement of our cyber capabilities.
StudySmarter Expert Advice🤫
We think this is how you could land Cyber Security Analyst
✨Tip Number 1
Network, network, network! Get out there and connect with professionals in the cyber security field. Attend meetups, webinars, or industry conferences. You never know who might have a lead on your dream job!
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your projects, incident response scenarios, or any relevant work you've done. This can really set you apart from other candidates when you’re chatting with potential employers.
✨Tip Number 3
Don’t just apply for jobs—reach out directly! If you see a role that excites you, find someone in the company (like a hiring manager) on LinkedIn and drop them a message. A personal touch can make all the difference.
✨Tip Number 4
Keep learning and stay updated! Cyber security is always evolving, so make sure you’re up to speed with the latest trends and tools. Consider taking online courses or earning certifications to boost your credibility.
We think you need these skills to ace Cyber Security Analyst
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Cyber Security Analyst role. Highlight your experience with SIEM and EDR platforms, as well as any relevant certifications. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about cyber security and how you can contribute to our mission at Southern Water. Keep it concise but impactful—show us your personality!
Showcase Your Experience:When detailing your work history, focus on your hands-on experience with incident response and threat detection. We love candidates who can demonstrate their proactive approach to security monitoring and investigations.
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way to ensure your application gets into the right hands. Plus, it shows us you're serious about joining our team!
How to prepare for a job interview at Southern Water group
✨Know Your Cyber Security Fundamentals
Make sure you brush up on your understanding of cyber security principles, especially those related to monitoring tools and incident response methodologies. Be ready to discuss how you've applied these in past roles, as this will show your practical knowledge.
✨Familiarise Yourself with Relevant Tools
Get comfortable with SIEM and EDR platforms like LogRhythm or Microsoft Defender for Endpoint. If you have experience with these tools, be prepared to share specific examples of how you've used them in threat detection or incident response.
✨Prepare for Scenario-Based Questions
Expect questions that ask you to walk through your thought process during a cyber incident. Practice articulating your approach to triage, investigation, and root-cause analysis, as this will demonstrate your analytical skills and decision-making abilities.
✨Show Your Passion for Continuous Learning
Cyber security is always evolving, so express your enthusiasm for staying updated on the latest threats and technologies. Mention any relevant certifications you're pursuing or recent training you've completed to highlight your commitment to professional growth.
