Senior Security Analyst

The Senior Security Analyst role will work within our Cyber Security team to detect potential security events, manage risk and drive an effective response. The role offers the opportunity to help grow the Cyber Security team’s capabilities, which are highly visible across the business and have a direct impact on protecting Square Enix’s games, systems and data.

Day to day, the Senior Security Analyst will be responsible for identifying, prioritising, and reducing organisational cyber risk through proactive exposure management, investigating alerts and responding to incidents. The role will be maintaining and optimising Cyber Security tooling as well as contributing towards the increased use of automation and AI. The role’s analytical and risk skills will be applied across the whole Cyber Security team to ensure vulnerabilities and exposures are identified, prioritised by risk, and remediated efficiently and to assist with security improvements and risk management activities. This role suits someone with broad cyber security experience who is looking to deepen their expertise and make a measurable impact in an exciting, fast-moving industry.

Roles, Responsibilities, and KPIs

• Own and continuously improve our Vulnerability Management process, including the use of automation and AI to support efficient triage, analysis and remediation.
• Drive Exposure Management initiatives including vulnerability discovery, prioritisation and remediation tracking, focusing on risk‑based outcomes.
• Monitor internal and external attack surface exposure including cloud, on‑prem, and third‑party assets.
• Work closely with system owners to help them manage their vulnerabilities.
• Assist them in implementing any resolution actions in a risk focused and timely manner.
• Support the Security Risk Management function with risk analysis activities, including third party risk assessments.
• Design and implement automation‑supported workflows and explore the practical use of AI‑assisted features within security tools to improve efficiency and consistency.
• Maintain and enhance our tools and platforms to continuously improve our intelligence, detection and response capability.
• Perform in‑depth investigation and analysis of security alerts to identify and promptly respond to security events.
• Collaborate with key stakeholders during investigations to gather further information and coordinate response actions.
• Derive value from relevant threat intelligence to drive proactive action.
• Influence the strategic direction of our team by presenting insight into the security events, alerts and incidents we handle.
• Maintain a broad understanding of IT/online environments and key company assets to enhance decision making and response to incidents.
• Support the detection of game specific abuses such as leaks, cheats, piracy, copyright abuse, player account compromise and rogue sites.

Performance Measures

• Mitigation time for Critical and High risk vulnerabilities
• Mean time for business recovery to C1 (Highest criticality) level security incidents
• Security event triage time
• Game/brand leak detection timeframes

Experience and Qualifications

• Experience in cyber security, security operations, risk, IT, engineering, or similar environment, with exposure to security monitoring and response.
• Experience responding to or handling major cyber security incidents.
• Relevant Security Operations, Incident Response, or Risk Management certifications are welcomed (or equivalent practical experience).

Interpersonal and Technical Skills

• Effective communication skills with non-technical stakeholders and executives.
• Able to stay focused during incidents and work methodically with the support of the wider team.
• Curious about how automation and AI‑assisted capabilities can support Cyber Security work and improve ways of working.
• Comfortable prioritising work, making sound risk‑based recommendations, and knowing when to seek input.
• Familiarisation with common Incident Response frameworks such as NIST.
• Strong appreciation of attacker tactics, techniques and procedures.
• Occasional flexibility may be needed for urgent incidents; we aim to plan work sustainably.
• Knowledge and hands-on experience with Cyber Security tools, such as Vulnerability/Exposure Management, SOAR and SIEM platforms.
• Able to query and analyse structured log data.