Назад
Company hidden
1 дСнь назад

Lead Security Analyst (Cybersecurity)

65Β 000 - 80Β 000GBP
Π€ΠΎΡ€ΠΌΠ°Ρ‚ Ρ€Π°Π±ΠΎΡ‚Ρ‹
hybrid
Π’ΠΈΠΏ Ρ€Π°Π±ΠΎΡ‚Ρ‹
fulltime
Π“Ρ€Π΅ΠΉΠ΄
lead
Английский
c1
Π‘Ρ‚Ρ€Π°Π½Π°
UK
Вакансия ΠΈΠ· списка Hirify.GlobalВакансия ΠΈΠ· Hirify Global, списка ΠΌΠ΅ΠΆΠ΄ΡƒΠ½Π°Ρ€ΠΎΠ΄Π½Ρ‹Ρ… tech-ΠΊΠΎΠΌΠΏΠ°Π½ΠΈΠΉ
Для мэтча ΠΈ ΠΎΡ‚ΠΊΠ»ΠΈΠΊΠ° Π½ΡƒΠΆΠ΅Π½ Plus

ΠœΡΡ‚Ρ‡ & Π‘ΠΎΠΏΡ€ΠΎΠ²ΠΎΠ΄

Для мэтча с этой вакансиСй Π½ΡƒΠΆΠ΅Π½ Plus

ОписаниС вакансии

ВСкст:
/

TL;DR

Lead Security Analyst (Cybersecurity): Leading security operations and detection engineering for UK public sector digital services with an accent on threat hunting, incident response, and NCSC framework alignment. Focus on building team capability through pairing, designing robust telemetry pipelines, and serving as the primary technical interface for client security stakeholders.

Location: Must be based in the UK with the ability to work from office hubs in Bristol, London, Manchester, or Swansea.

Salary: Β£65,000 - Β£80,000 / year

Company

hirify.global helps UK public sector organisations build and run better digital services through expert cyber practice and software engineering.

What you will do

  • Set detection engineering standards by authoring and tuning detections in KQL, SPL, EQL, or Sigma.
  • Own the threat-landscape narrative, turning intelligence into actionable hunt themes and coverage priorities.
  • Establish and lead incident response practices, including playbook design and blameless post-mortems.
  • Design log and telemetry pipelines, ensuring high-fidelity signals from cloud environments.
  • Act as the trusted technical interface for client security stakeholders to communicate risks and coverage.
  • Mentor and grow L1/L2 analysts through structured pairing and coaching.

Requirements

  • Must hold SC (Security Check) eligibility (requires 5 years' UK residency and 5 years' employment history).
  • Senior-level experience in SOC operations, detection engineering, and incident response.
  • Proficiency in KQL, SPL, EQL, or Sigma and mapping coverage to MITRE ATT&CK.
  • Experience designing log/telemetry pipelines, preferably in AWS cloud environments.
  • Working knowledge of UK government security standards (NCSC CAF, GovAssure).
  • Professional certification such as CISSP, CISM, or CASP+ (or equivalent experience).

Nice to have

  • Familiarity with SOAR tooling and automation workflows.
  • Experience working in Kanban-led operating models.
  • Contribution to public-sector security communities like NCSC CISP.

Culture & Benefits

  • 30 days of paid annual leave.
  • Flexible working hours and part-time remote working options.
  • Flexible parental leave policies.
  • Individual benefits allowance for health care or pension plans.
  • Access to paid counselling and financial/legal advice.
  • Active social and wellbeing calendar.

Π‘ΡƒΠ΄ΡŒΡ‚Π΅ остороТны: Ссли Ρ€Π°Π±ΠΎΡ‚ΠΎΠ΄Π°Ρ‚Π΅Π»ΡŒ просит Π²ΠΎΠΉΡ‚ΠΈ Π² ΠΈΡ… систСму, ΠΈΡΠΏΠΎΠ»ΡŒΠ·ΡƒΡ iCloud/Google, ΠΏΡ€ΠΈΡΠ»Π°Ρ‚ΡŒ ΠΊΠΎΠ΄/ΠΏΠ°Ρ€ΠΎΠ»ΡŒ, Π·Π°ΠΏΡƒΡΡ‚ΠΈΡ‚ΡŒ ΠΊΠΎΠ΄/ПО, Π½Π΅ Π΄Π΅Π»Π°ΠΉΡ‚Π΅ этого - это мошСнники. ΠžΠ±ΡΠ·Π°Ρ‚Π΅Π»ΡŒΠ½ΠΎ ΠΆΠΌΠΈΡ‚Π΅ "ΠŸΠΎΠΆΠ°Π»ΠΎΠ²Π°Ρ‚ΡŒΡΡ" ΠΈΠ»ΠΈ ΠΏΠΈΡˆΠΈΡ‚Π΅ Π² ΠΏΠΎΠ΄Π΄Π΅Ρ€ΠΆΠΊΡƒ. ΠŸΠΎΠ΄Ρ€ΠΎΠ±Π½Π΅Π΅ Π² Π³Π°ΠΉΠ΄Π΅ β†’