Cyber Security Analyst (United Kingdom)

Title : Cyber Security Analyst

Job Type : Contract (Inside Ir35)

Level of Clearance : SC/DV (Mandate)

Dual Nationals considered : No

Location : Erskine / Farnborough (Complete Remote is fine)

Job Description Summary –

The Tier 2 Cyber Security Analyst is a mid-Tier position within the Cyber Threat Analysis Centre (CTAC), responsible for advancing the initial work conducted by Tier 1 Analysts and providing more in-depth analysis of potential threats to the organization. This role is crucial in the escalated investigation, triage, and response to cyber incidents while supporting the development and training of Tier 1 Analysts. The Tier 2 Analyst works closely with senior and junior analysts to ensure a seamless SOC operation and acts as a bridge between foundational and advanced threat detection and response functions.

Experience Required

• Understands advanced networking concepts, including IP addressing, basic network protocols, and how traffic flows within a network.
• Advanced knowledge of Windows and Linux operating environments, including standard commands, file systems, and user authentication mechanisms.
• Competence in using SIEM solutions (e.g., ArcSight, Azure Sentinel) for monitoring and log analysis; some exposure to additional analysis tools such as basic XDR platforms.
• Able to demonstrate proficient knowledge using Kusto Query Language (KQL) to search and filter logs effectively.
• Familiar with open-source intelligence (OSINT) techniques to aid in identifying potential threats and gathering information.
• Able to communicate clearly and efficiently with team members and stakeholders, both internally and externally, under direction from senior analysts.
• Can communicate simple technical issues to non-technical individuals in a clear and understandable way.
• Able to create concise, structured reports that outline findings from preliminary investigations and daily monitoring activities.
• Able to manage personal workload effectively to ensure timely completion of assigned tasks within the SOC.
• Willing to collaborate with team members, accepting guidance and learning from more experienced analysts.
• Shows initiative in learning new technologies and techniques, leveraging internal resources and training to grow professionally.
• Able to function efficiently during high-pressure situations, following procedures to ensure consistent performance in incident management.

Education and Professional Experience

• University Degree/Diploma in Cyber Security or Equivalent experience
• Other IT certifications or experience such as CISSP, COMPTIA CySA+, GCIA, GCIH Desirable
• IT certifications such as CASP or ITIL
• Experience in a SOC or SOC equivalent
• SC / DV clearance Other Requirements
• Be willing to undertake SC and / or DV clearance with multiple agencies
• Full Driving Licence
• Fluent in written and spoken English