At a Glance
- Tasks: Lead security incidents, design risk-based solutions, and enhance cloud security.
- Company: Join a global cyber security team backed by strong Private Equity investment.
- Benefits: Flexible working options, competitive pay, and opportunities for professional growth.
- Other info: Dynamic role with opportunities to influence security architecture and practices.
- Why this job: Make a real impact in a hands-on role within a regulated environment.
- Qualifications: Extensive experience in security operations and cloud security expertise required.
The predicted salary is between 60000 - 80000 € per year.
We are seeking a highly experienced Level 3 Security Analyst to join a global cyber security function in an organisation that has recently had strong Private Equity investment, with a dual remit as a Security Architect. This is a senior, hands-on role within a regulated environment where security, data protection, and operational resilience are business critical.
Reporting to the Head of IT Security, you will act as a key technical authority for complex security incidents while shaping and strengthening our long-term security controls across endpoints, cloud platforms, identity, and data. You will work closely with IT, Engineering, and senior stakeholders to design pragmatic, risk-based security solutions that enable the business while meeting regulatory and compliance expectations.
Security Operations & Incident Response
- Act as the L3 escalation point for security alerts and incidents, leading end-to-end response activities including investigation, containment, eradication, and post-incident reviews.
- Design, tune, and operationalise Microsoft Defender for Endpoint (EDR/XDR) use cases.
Data Protection & Insider Risk
- Own and mature Microsoft Purview controls, including Data Loss Prevention (DLP) and Insider Risk Management.
- Lead policy design, tuning, and investigations to protect sensitive and regulated data throughout its lifecycle.
Cloud & Infrastructure Security
- Provide security leadership across AWS, Azure, and GCP, including logging and visibility, identity and access guardrails, and secure cloud architecture patterns.
- Conduct security architecture and design reviews for cloud workloads and platform changes.
Vulnerability & Risk Management
- Ensure effective scan coverage, risk-based prioritisation, remediation tracking, and clear reporting aligned to regulatory expectations.
Security Architecture & Change Enablement
- Act as a security architect for projects and change initiatives.
- Perform threat modelling where appropriate and define proportionate, practical controls across endpoints, cloud, identity, and data.
- Partner with IT and Engineering teams to enhance security telemetry, logging standards, and SIEM-driven detections.
Required Skills and Experience
- Significant hands-on experience in senior (L3) security operations, including leading complex incident investigations in enterprise or regulated environments.
- Strong cloud security expertise across AWS, Azure, and/or GCP, including identity, logging, and native security services.
- Proven experience with EDR/XDR, ideally Microsoft Defender for Endpoint, including deployment, tuning, investigation, and response.
- Hands-on experience with Microsoft Purview, including DLP and Insider Risk Management policy design and investigations.
- Strong understanding of networking and security fundamentals (DNS, VPNs, TLS, segmentation) and modern identity controls (MFA, conditional access).
- Ability to produce clear, pragmatic security architecture guidance and influence technical and non-technical stakeholders.
- Experience with Python, PowerShell, Bash, and/or SOAR exposure.
- Relevant certifications such as CISSP, CCSP, Security+, or GIAC.
- Exposure to application security concepts is beneficial but not essential.
Senior Security Analyst (Contract) in City of London employer: Spencer Rose
Join a dynamic and forward-thinking organisation that prioritises security and innovation in the heart of London. As a Senior Security Analyst, you will benefit from a collaborative work culture that values employee growth and offers opportunities to shape cutting-edge security solutions in a hybrid or remote setting. With strong backing from Private Equity, this role not only provides competitive remuneration but also the chance to make a significant impact on the organisation's security posture while working alongside industry experts.
StudySmarter Expert Advice🤫
We think this is how you could land Senior Security Analyst (Contract) in City of London
✨Tip Number 1
Network like a pro! Attend industry meetups, webinars, or conferences where you can connect with other security professionals. Don't be shy—introduce yourself and share your passion for security; you never know who might have a lead on your dream job!
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your projects, incident responses, or any security solutions you've designed. This is a great way to demonstrate your hands-on experience and technical authority to potential employers.
✨Tip Number 3
Prepare for interviews by brushing up on common security scenarios and incident response strategies. Practice articulating your thought process and decision-making in past incidents—this will help you shine when discussing your experience with stakeholders.
✨Tip Number 4
Don't forget to apply through our website! We love seeing candidates who are genuinely interested in joining our team. Tailor your application to highlight how your skills align with the role of Senior Security Analyst and show us why you're the perfect fit!
We think you need these skills to ace Senior Security Analyst (Contract) in City of London
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Senior Security Analyst role. Highlight your experience with security operations, cloud security, and incident response. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're the perfect fit for this role. Share specific examples of your past experiences that relate to the job description. We love a good story!
Show Off Your Technical Skills:Don’t hold back on showcasing your technical expertise! Mention your hands-on experience with tools like Microsoft Defender for Endpoint and your knowledge of cloud platforms. We’re keen to see how you can contribute to our security landscape.
Apply Through Our Website:We encourage you to apply through our website for a smoother process. It helps us keep track of your application and ensures you don’t miss any important updates. Plus, we love seeing applications come directly from our site!
How to prepare for a job interview at Spencer Rose
✨Know Your Stuff
Make sure you brush up on your knowledge of security operations, especially around EDR/XDR and Microsoft Defender for Endpoint. Be ready to discuss specific incidents you've handled and how you approached them, as this role requires a hands-on understanding of complex security scenarios.
✨Showcase Your Cloud Expertise
Since the job involves cloud security across AWS, Azure, and GCP, be prepared to talk about your experience with these platforms. Highlight any projects where you’ve designed secure architectures or implemented logging and visibility controls, as this will demonstrate your capability in a critical area of the role.
✨Communicate Clearly
You’ll need to influence both technical and non-technical stakeholders, so practice explaining complex security concepts in simple terms. Think of examples where you’ve successfully communicated security risks and solutions to different audiences, as this will show your ability to bridge the gap between tech and business.
✨Prepare for Scenario Questions
Expect scenario-based questions that test your problem-solving skills in real-time. Prepare by thinking through potential security incidents you might face in this role and how you would lead the response. This will help you demonstrate your strategic thinking and practical approach to security challenges.
