Associate Security Analyst - Investigation, EDR, Splunk, SIEM, Threat, London, Hybrid, SC Cleared

We are seeking an experienced SC cleared Associate Security Analyst to join our team. You will support the cybersecurity operations, incident investigation, and response efforts within a dynamic environment. Your responsibilities will include investigating security alerts, analyzing threats, supporting incident response activities, and contributing to ongoing improvements in security processes

Key Responsibilities:

Triage and investigate cybersecurity alerts and user reportsAnalyze systems, files, network traffic, and cloud environments to determine the nature and extent of cyber incidentsSupport technical response activities including containment, eradication, and recoveryAssist in coordinating cyber incident responsesContribute to post-incident reviews and identify lessons learnedSupport continual improvement initiatives for incident investigation and response capabilitiesCollaborate with Cyber Defence teams to enhance overall security postureContribute to internal plans, playbooks, and knowledge base documentationLine management of apprentice security analysts

Experience & Skills Required:

2-3 years' experience in cyber security incident investigation and responseStrong knowledge of cyber security threats and attack techniquesHands-on experience with security tools such as EDR, SIEM (Splunk preferred, Microsoft Sentinel or equivalent acceptable)Understanding of threat actor tactics, techniques, and proceduresGood analytical, problem-solving, and troubleshooting skills

Hands-on experience with SplunkExperience working within an Agile environmentFamiliarity with cloud platforms such as AWS

Please note active SC clearance is required for this role

Minorities, women, LGBTQ+ candidates, and individuals with disabilities are encouraged to apply.

Interviews will take place next week, so please apply immediately to be considered for this contract role.