Senior Cyber Defence Analyst

• Act as an escalation point for complex investigations or potential security incidents.
• Manage the resolution of major incidents in line with agreed incident response plans.
• Respond to urgent security events or incidents out of hours as part of an on-call rota.
• Cover the daily responsibilities of other Cyber Defence Analysts when required, including security alert triage, analysis of phishing reports, and resolution of security requests.
• Identify and implement tuning to support the maintenance of detection use cases.
• Identify, design, and implement new detection use cases.
• Identify, design, and implement new SOAR automation playbooks.
• Develop and review standard operating procedures (SOPs), playbooks, and runbooks.

Do you have experience in Time management?, Join the Close Brothers Security and Resilience Team where you will to protect the business form the impact of cyber threats. Working as part of the Security and Resilience team our ideal team member will have previous experience in continuous security monitoring, cyber incident response, detection engineering, threat hunting, automation development, and metric reporting with excellent time management and organisation skills., * Demonstrable experience working in an advanced level 2/3 security analyst role in a security operations centre (SOC) or cyber defence centre (CDC).

• Excellent and up-to-date knowledge of IT infrastructure (hardware, databases, operating systems, networking devices etc) and cyber security controls around them.
• Experience executing cyber response plans.
• Experience with SIEM operation and administration.
• Experience with a variety of cyber security technologies such as EDR, intrusion detection and prevention, email and web filtering.
• Excellent attention to detail by applying quality standards to all tasks undertaken.
• The ability to work independently to fully formulate and assure plans and reports before escalation.

IT IS NOT ESSENTIAL BUT IT WOULD BE GREAT IF YOU HAVE:

• Experience working in a SOC within the financial sector.
• Familiarity with public cloud providers (e.g. AWS; Azure).
• Experience with SOAR technologies, including administration and playbook creation.
• Knowledge of Threat Hunting techniques and processes.
• Knowledge of Digital Forensics techniques and processes.
• Knowledge of industry data security legislations and cyber security law.
• Knowledge of programming languages, such as Bash, PowerShell, JavaScript, and Python.

At Close Brothers we support employees to balance their work life priorities and in this role you will be able to enjoy a mixture of hybrid working. Close Brothers is a leading UK merchant banking group providing lending, deposit taking and securities trading. We employ approximately 3,000 people, principally in the United Kingdom and Ireland. Close Brothers Group plc is listed on the London Stock Exchange and is a constituent of the FTSE 250., At Close Brothers Group, we are all connected by our mission to be the best place in the UK for wealth professionals and their clients. We believe that everyone should think ahead, have a financial plan and invest wisely. Our clients are professionals, business owners, individuals, charities, families, and employers, who rely on our clear financial advice and investment management services to preserve and grow their long-term savings and investments. We are a team of about 900 people based in 15 offices across the UK. Our geographic footprint means we can combine a local approach with face-to-face services to enable strong, long-term relationships with our clients. Sustainability is fundamental to our purpose and we have a responsibility to help address the social, economic and environmental challenges facing our business, colleagues and clients. We strive to do the right thing and are dedicated to helping the charities that matter most to our people. Our vision is to develop an open and inclusive company that ensures everyone is valued, respected and included, so that in years to come our business will represent a diverse and inclusive workforce from the top down. We look to recruit individuals from all different backgrounds. If this job is of interest to you but you do not meet every criteria then we encourage you still to apply as we are open to providing training opportunities.   You must create an Indeed account before continuing to the company website to apply