Cyber Security Engineer

Salary: £75,000 - 75,000 per year

• Eligibility for un-caveated UK SC Clearance.
• At least 2 years of experience as a Cyber Security Operations Analyst or an equivalent role.
• Hands‑on experience with Splunk.
• Experience across the end‑to‑end incident response lifecycle.
• Detection engineering and alert development expertise.
• Strong scripting or programming skills in Python, Bash, C/C++, or Java.
• Solid grounding in cybersecurity fundamentals, including network security, cloud security, cryptography, and forensics.
• Understanding of common network protocols and attacker abuse patterns.
• Awareness of current APT groups and their TTPs.
• Knowledge of analysis techniques for Windows and/or Linux environments.
• Familiarity with threat intelligence frameworks and methodologies.
• Experience with cloud endpoints and networks.
• Technical background with strong engineering instincts and a proactive mindset.

• Develop, maintain, and optimise detection content, primarily within Splunk SIEM, to identify threats across cloud, endpoint, and network environments.
• Collaborate across security functions to identify gaps in logging, alerting, and detection coverage aligned to business risk.
• Improve Sec Ops processes by recommending enhanced logging, identifying trends, and driving operational optimisation.
• Conduct security monitoring, alert triage, and continuous improvement of detection rules on a rotating schedule.
• Lead and support incident response investigations, ensuring high‑quality documentation and escalation.
• Mentor and support junior analysts through guidance, coaching, and technical oversight.
• Serve as a technical SME on client engagements and present findings and recommendations to senior stakeholders.
• Participate in alert testing, readiness exercises, and incident response tabletop sessions.
• Stay current on emerging threat intelligence, attacker techniques, and relevant research.
• Provide approximately one week per month of on‑call availability for high‑priority incident response, with additional compensation provided.

• Bash
• Cloud
• Cryptography
• Support
• Java
• Linux
• Network
• Python
• Security
• Splunk
• Windows

We are a high-performing Blue Team operating at the forefront of modern security operations, seeking an accomplished Senior Cyber Operations Analyst to join us in Manchester on a hybrid basis. This is a technically demanding role for an experienced analyst with strong engineering instincts, hands‑on coding capability, and deep expertise in incident response, detection engineering, and adversary tradecraft. We offer a salary of up to £75,000 plus on‑call compensation, and the on‑call frequency may vary by client.

This role is ideal for someone who has grown from an engineering background and is ready to make a significant impact in a senior, client‑facing security operations environment.