Senior Security Analyst

As a Senior Security Analyst, you will be a cornerstone of our expanding security function. This role is pivotal in maturing our technical security posture, driving key security projects, and acting as a senior technical authority within the team. You will be responsible for the effective management and optimisation of our security toolsets and for providing expert guidance across the business, ensuring that security controls remain robust, effective, and aligned with our security objectives.

• →Lead and mature the firm’s technical security capabilities across key domains, with a particular focus on:
  • →Incident Management and Response
  • →Intrusion Detection and Prevention (IDS/IPS)
  • →Cloud Security (IaaS / PaaS / SaaS environments)
  • →Identity and Access Management (IAM) and Privileged Access Management (PAM)
• →Act as a senior technical authority within the security team, providing guidance and direction on security tooling, controls, and technical approaches.
• →Serve as the primary senior escalation point for technical security queries, incident reports (including phishing analysis), and requests for guidance from general staff and technical teams (e.g. DevOps).
• →Oversee the implementation, management, and continuous optimisation of the security technology stack, including but not limited to:
  • →IAM / PAM solutions
  • →Endpoint / Extended Detection and Response (XDR)
  • →Vulnerability Management platforms
  • →SIEM / SOAR platform
  • →Multi-Factor Authentication (MFA) and authentication mechanisms
  • →Application Security (AppSec) tooling
• →Ensure security platforms are operating effectively, are well-integrated, and provide appropriate coverage, detection, and response capabilities.
• →Drive improvements to tooling, detection logic, and response processes to continuously raise the organisation’s security maturity
• →Drive the continuous improvement of security projects, translating strategic security goals into effective technical execution.
• →Actively contribute to the development of the security function by training and mentoring junior analysts and other technical staff on security best practices, tools, and procedures.
• →Participate in the on-call rota (as agreed with Recruitment/PeopleOps) and support incident response in line with the incident response process and call tree.
• →Contribute to the ongoing development and maintenance of the Incident Response call tree, escalation paths, and operational response processes.

• Demonstrable experience across two or more significant security domains (e.g. incident response, cloud security, endpoint security, IAM/PAM, vulnerability management, SIEM/SOAR).
• Proven experience leading or owning technical security capabilities or platforms.
• Strong hands-on experience implementing, operating, and optimising security tooling in a modern environment.
• Experience acting as a senior escalation point for incidents and complex security issues.
• Experience contributing to or leading security improvement initiatives or projects.

• Strong technical investigation, troubleshooting, and analytical skills.
• Ability to design, improve, and operate security controls and detection/response capabilities.
• Excellent communication skills, with the ability to advise both technical and non-technical stakeholders.
• Strong documentation and process improvement mindset.
• Ability to prioritise, manage workload, and operate effectively during incidents..