Senior Cyber Defence Analyst

Overall Summary
At Close Brothers we look to recruit individuals from all different backgrounds and encourage you to apply even if you don't tick every box. We celebrate diversity, promote inclusivity and are open to discuss flexible work options to help you balance your work and home life. Vacancies are available on a part-time, job-share or full-time basis because we know the best person for the job isn't always available full-time. Our aim is to facilitate requests wherever possible and managers will consider requests on an individual basis.

Join the Close Brothers Security and Resilience Team where you will to protect the business form the impact of cyber threats. Working as part of the Security and Resilience team our ideal team member will have previous experience in continuous security monitoring, cyber incident response, detection engineering, threat hunting, automation development, and metric reporting with excellent time management and organisation skills.

Responsibilities

• Act as an escalation point for complex investigations or potential security incidents.
• Manage the resolution of major incidents in line with agreed incident response plans.
• Respond to urgent security events or incidents out of hours as part of an on-call rota.
• Cover the daily responsibilities of other Cyber Defence Analysts when required, including security alert triage, analysis of phishing reports, and resolution of security requests.
• Identify and implement tuning to support the maintenance of detection use cases.
• Identify, design, and implement new detection use cases.
• Identify, design, and implement new SOAR automation playbooks.
• Develop and review standard operating procedures (SOPs), playbooks, and runbooks.

WE WOULD LOVE TO HEAR FROM YOU IF YOU HAVE:

• Demonstrable experience working in an advanced level 2/3 security analyst role in a security operations centre (SOC) or cyber defence centre (CDC).
• Excellent and up-to-date knowledge of IT infrastructure (hardware, databases, operating systems, networking devices etc) and cyber security controls around them.
• Experience executing cyber response plans.
• Experience with SIEM operation and administration.
• Experience with a variety of cyber security technologies such as EDR, intrusion detection and prevention, email and web filtering.
• Excellent attention to detail by applying quality standards to all tasks undertaken.
• The ability to work independently to fully formulate and assure plans and reports before escalation.

IT IS NOT ESSENTIAL BUT IT WOULD BE GREAT IF YOU HAVE:

• Experience working in a SOC within the financial sector.
• Familiarity with public cloud providers (e.g. AWS; Azure).
• Experience with SOAR technologies, including administration and playbook creation.
• Knowledge of Threat Hunting techniques and processes.
• Knowledge of Digital Forensics techniques and processes.
• Knowledge of industry data security legislations and cyber security law.
• Knowledge of programming languages, such as Bash, PowerShell, JavaScript, and Python.

We are an inclusive organisation and committed to ensuring our recruitment process is as accessible as possible to everyone. We will make adjustments for people who have a disability or long-term condition. If you need the job description or application form in an alternative format or would like to discuss the recruitment process with us, please email us at or request a call back.

About Us
At Close Brothers we support employees to balance their work life priorities and in this role you will be able to enjoy a mixture of hybrid working.

Close Brothers is a leading UK merchant banking group providing lending, deposit taking and securities trading. We employ approximately 3,000 people, principally in the United Kingdom and Ireland. Close Brothers Group plc is listed on the London Stock Exchange and is a constituent of the FTSE 250.

To find out more about Close Brothers, please visit our careers page:

To find out more about life at Close Brothers:

To find out more about our benefits:

To find out more about our commitment to creating an inclusive environment:
Our Responsibility - Diversity and inclusion ¦ Close Brothers Group