At a Glance
- Tasks: Lead security incidents, design solutions, and enhance cloud security across multiple platforms.
- Company: Join a dynamic global cyber security team backed by strong Private Equity investment.
- Benefits: Flexible working options, competitive salary, and opportunities for professional growth.
- Other info: Collaborative environment with a focus on innovation and career advancement.
- Why this job: Make a real impact in a hands-on role shaping security controls and protecting data.
- Qualifications: Extensive experience in security operations, cloud security, and incident response.
The predicted salary is between 70000 - 90000 € per year.
We are seeking a highly experienced Level 3 Security Analyst to join a global cyber security function in an organisation that has recently had strong Private Equity investment, with a dual remit as a Security Architect. This is a senior, hands-on role within a regulated environment where security, data protection, and operational resilience are business critical.
Reporting to the Head of IT Security, you will act as a key technical authority for complex security incidents while shaping and strengthening our long-term security controls across endpoints, cloud platforms, identity, and data. You will work closely with IT, Engineering, and senior stakeholders to design pragmatic, risk-based security solutions that enable the business while meeting regulatory and compliance expectations.
Security Operations & Incident Response
- Act as the L3 escalation point for security alerts and incidents, leading end-to-end response activities including investigation, containment, eradication, and post-incident reviews.
- Design, tune, and operationalise Microsoft Defender for Endpoint (EDR/XDR) use cases.
Data Protection & Insider Risk
- Own and mature Microsoft Purview controls, including Data Loss Prevention (DLP) and Insider Risk Management.
- Lead policy design, tuning, and investigations to protect sensitive and regulated data throughout its lifecycle.
Cloud & Infrastructure Security
- Provide security leadership across AWS, Azure, and GCP, including logging and visibility, identity and access guardrails, and secure cloud architecture patterns.
- Conduct security architecture and design reviews for cloud workloads and platform changes.
Vulnerability & Risk Management
- Ensure effective scan coverage, risk-based prioritisation, remediation tracking, and clear reporting aligned to regulatory expectations.
Security Architecture & Change Enablement
- Act as a security architect for projects and change initiatives.
- Perform threat modelling where appropriate and define proportionate, practical controls across endpoints, cloud, identity, and data.
- Partner with IT and Engineering teams to enhance security telemetry, logging standards, and SIEM-driven detections.
Required Skills and Experience
- Significant hands-on experience in senior (L3) security operations, including leading complex incident investigations in enterprise or regulated environments.
- Strong cloud security expertise across AWS, Azure, and/or GCP, including identity, logging, and native security services.
- Proven experience with EDR/XDR, ideally Microsoft Defender for Endpoint, including deployment, tuning, investigation, and response.
- Hands-on experience with Microsoft Purview, including DLP and Insider Risk Management policy design and investigations.
- Strong understanding of networking and security fundamentals (DNS, VPNs, TLS, segmentation) and modern identity controls (MFA, conditional access).
- Ability to produce clear, pragmatic security architecture guidance and influence technical and non-technical stakeholders.
- Experience with Python, PowerShell, Bash, and/or SOAR exposure.
- Relevant certifications such as CISSP, CCSP, Security+, or GIAC.
- Exposure to application security concepts is beneficial but not essential.
Microsoft Security Analyst in City of London employer: Spencer Rose
Join a forward-thinking organisation in London that prioritises security and innovation, offering a dynamic work culture where your expertise as a Microsoft Security Analyst will be valued. With strong backing from Private Equity, we provide exceptional employee growth opportunities, a collaborative environment, and the flexibility of hybrid or remote working arrangements, ensuring you can thrive both personally and professionally while making a significant impact on our security posture.
StudySmarter Expert Advice🤫
We think this is how you could land Microsoft Security Analyst in City of London
✨Tip Number 1
Network, network, network! Get out there and connect with people in the industry. Attend meetups, webinars, or even just grab a coffee with someone who works in security. You never know who might have a lead on your dream job!
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects, especially those related to Microsoft Defender or cloud security. This gives potential employers a taste of what you can do beyond your CV.
✨Tip Number 3
Prepare for interviews by brushing up on common security scenarios and incident response strategies. Practice articulating your thought process clearly, as this will help you stand out when discussing complex security incidents.
✨Tip Number 4
Don’t forget to apply through our website! We’re always on the lookout for talented individuals like you. Plus, it’s a great way to ensure your application gets the attention it deserves.
We think you need these skills to ace Microsoft Security Analyst in City of London
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Microsoft Security Analyst role. Highlight your experience with security operations, cloud security, and any relevant certifications. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about security and how your background makes you a great fit for our team. Keep it concise but impactful – we love a good story!
Showcase Your Technical Skills:Don’t forget to mention your hands-on experience with tools like Microsoft Defender for Endpoint and Microsoft Purview. We’re keen on seeing how you’ve tackled complex incidents and designed security solutions in the past.
Apply Through Our Website:We encourage you to apply through our website for the best chance of getting noticed. It’s super easy, and you’ll be one step closer to joining our awesome team at StudySmarter!
How to prepare for a job interview at Spencer Rose
✨Know Your Stuff
Make sure you brush up on your knowledge of Microsoft Defender for Endpoint and Microsoft Purview. Be ready to discuss specific use cases you've worked on, especially around EDR/XDR and DLP. This role is all about hands-on experience, so be prepared to share examples that showcase your expertise.
✨Understand the Business
This position is not just about technical skills; it's also about understanding how security fits into the broader business context. Familiarise yourself with the company's recent investments and how they impact security strategy. Show that you can design risk-based solutions that align with business goals.
✨Prepare for Scenario Questions
Expect to face scenario-based questions that test your incident response skills. Think through past incidents you've managed and be ready to explain your thought process during investigation, containment, and eradication phases. Highlight your leadership in these situations to demonstrate your L3 capabilities.
✨Communicate Clearly
As a senior analyst, you'll need to influence both technical and non-technical stakeholders. Practice explaining complex security concepts in simple terms. This will show your ability to bridge the gap between IT and business, which is crucial for this role.
