Security Analyst

We're seeking a Senior Cyber Security Analyst to join a key government cyber defence team supporting state-wide initiatives in cyber threat detection, incident response, and the uplift of security operations. This is a contract role ideal for a hands-on cyber professional with a deep understanding of SOC workflows and a passion for protecting critical systems at scale.

This opportunity offers you the chance to work across a large and complex digital environment, contributing to the development of modern cyber defence capabilities that help reduce the risk of cyber threats to public services.

Key Responsibilities:

• Deliver and enhance Security Operations Centre (SOC) services, including SIEM, External Attack Surface Management, and Vulnerability Management.

• Lead and coordinate security incident responses, ensuring timely containment and remediation.

• Conduct advanced investigations using digital forensics, malware analysis, and root cause analysis techniques.

• Tune and optimise detection rules for accurate threat identification and reduced false positives.

• Develop and maintain operational documentation and Standard Operating Procedures (SOPs).

• Drive the continuous improvement of SOC processes in line with industry best practices.

• Mentor junior SOC analysts and contribute to building overall team capability.

• Collaborate with technical teams and SMEs to identify vulnerabilities and proactively hunt for threats.

• Participate in knowledge-sharing forums, standups, and cross-functional cyber security initiatives.

What We're Looking For:

• Proven experience in a Security Operations Centre (SOC) environment with strong technical capabilities across threat intelligence, vulnerability management, and incident response.

• Hands-on experience with Microsoft Sentinel or similar SIEM platforms, including rule creation, tuning, and dashboard/report development.

• Strong knowledge of security frameworks such as NIST, Mitre ATT&CK, and D3FEND.

• Experience developing and maintaining SOPs, with a focus on process maturity and operational efficiency.

• Familiarity with case tracking and service management tools.

Desirable Skills & Experience:

• Scripting or programming knowledge (e.g., Python, PowerShell, Perl).

• Experience with forensic and packet analysis tools (e.g., Autopsy, Wireshark, SANS SIFT).

• Exposure to both Linux/UNIX and Windows environments.

• Knowledge of key security standards and frameworks including ACSC ISM, ISO27001, PCI DSS, and Information Standard 18.

• Relevant industry certifications (e.g., CISSP, GCIA, GCIH, CEH) and/or postgraduate qualifications in ICT, Information Systems, or Cyber Security.

To be considered please click apply now, or contract David Reynolds at [email protected]