A Senior Security Analyst safeguards an organisation’s computer systems and networks from cyber threats. This role involves identifying vulnerabilities, monitoring suspicious activities, and implementing robust security measures to protect critical data and infrastructure.

Security Monitoring & Incident Response
• Monitor security alerts from SIEM, EDR, IDS/IPS, and other security tools
• Investigate and analyse security incidents to determine scope, impact, and remediation steps
• Lead incident response efforts, including containment, eradication, and recovery

Threat Hunting & Intelligence
• Perform proactive threat-hunting activities to identify hidden threats in the environment
• Analyse threat intelligence and apply findings to improve detection and response
• Develop use cases, detection rules, and correlation searches in SIEM platforms

Forensics & Malware Analysis
• Conduct memory, disk, and network forensics to investigate security breaches
• Analyse malware behaviour and reverse engineer threats as needed

Security Automation & Optimisation
• Develop and enhance security playbooks, scripts, and automation to boost SOC efficiency
• Work with SOAR (Security Orchestration, Automation, and Response) platforms to automate responses

Compliance & Reporting
• Ensure adherence to security frameworks such as MITRE ATT&CK, MITRE D3FEND, and NIST
• Document and report incidents, investigation findings, and ongoing security improvements

Experience:
• 5+ years in a SOC, cybersecurity, or incident response role
• Hands-on experience with SIEM tools (e.g., Splunk, ELK), EDR, IDS/IPS, and firewalls

Technical Skills:
• Strong understanding of network protocols, security architectures, and Windows/Linux operating systems
• Proficiency in log analysis, threat intelligence, and attack techniques (MITRE ATT&CK, MITRE D3FEND)
• Experience with scripting languages (Python, PowerShell, Bash) and security automation
• Knowledge of cloud security (Azure, Kubernetes) and container security