Cyber Security Specialist - Security Operations
Location:
We are seeking a Cyber Security Specialist to support and enhance day-to-day security operations across our client's digital environment. This role is well suited to a junior-mid level cyber professional looking to grow, or a more senior hands-on specialist who enjoys mentoring and uplifting a security operations function.
You will work closely with IT and business stakeholders to detect, investigate, and respond to security threats, while continuously improving detection capabilities, automation, and response workflows.
Key Responsibilities
Security Monitoring & Threat Detection
* Monitor networks, systems, and applications using advanced security tools to identify threats, suspicious activity, and vulnerabilities.
* Analyse alerts from SIEM, vulnerability management, and endpoint security platforms.
* Triage and prioritise security events based on risk and business impact.
Incident Response & Investigation
* Investigate security incidents by analysing logs, alerts, and threat intelligence sources.
* Execute incident response playbooks and contribute to containment, remediation, and recovery activities.
* Leverage automation and orchestration where possible to accelerate response times.
Security Operations Improvement
* Continuously improve security operations by tuning detections, optimising tool configurations, and reducing false positives.
* Contribute to the development and enhancement of incident response playbooks and operational procedures.
* Collaborate with IT infrastructure, cloud, and application teams to uplift security maturity.
Vulnerability Management
* Support vulnerability scanning, assessment, and remediation activities.
* Work with stakeholders to prioritise and track remediation of identified risks.
* Assist with reporting on vulnerabilities, incidents, and operational metrics.
Skills & Experience
Essential
* Experience in a Security Operations / SOC / Cyber Operations role.
* Hands-on experience monitoring and responding to security alerts.
* Understanding of common cyber threats, attack techniques, and defensive controls.
* Familiarity with incident response processes and playbooks.
* Strong analytical and problem-solving skills.
Highly Desirable
* Experience with Microsoft Sentinel (SIEM).
* Experience with Tenable or similar vulnerability management platforms.
* Exposure to automation or SOAR capabilities.
* Experience working in hybrid or cloud environments (Azure preferred).
* Ability to work collaboratively with technical and non-technical stakeholders