Cyber Security Analyst

Cyber Security Analyst - GIAC, ISACA, ISC2, XDR, EDR, SIEM, SOAR, IDS/IPS

Our leading global law firm client are currently looking to take on a new Cyber Security Analyst (GIAC, ISACA, ISC2, XDR, EDR, SIEM, SOAR, IDS/IPS) to join their team on a permanent basis. The firm are an extremely modern law firm which offer a fully remote working experience

This Cyber Security Analyst (GIAC, ISACA, ISC2, XDR, EDR, SIEM, SOAR, IDS/IPS) role, will be responsible for the day to day operations of existing security solutions and uses tools to identify, investigate and resolve any security events detected.

To be considered for this Cyber Security Analyst (GIAC, ISACA, ISC2, XDR, EDR, SIEM, SOAR, IDS/IPS) role, it's ideal you have:

• 3 + years within a similar role
• Ideal but not required law firm experience
• Security qualifications such as CISSP, CISM, CEH, CompTIA Sec+ or others

Duties, Responsibilities & Person Specification

• Monitor and analyze security events and alerts across the organization’s networks, endpoints, and cloud infrastructure using SIEM, EDR, and other security tools within documented SLAs.
• Investigate, respond to, and resolve security incidents and tickets, ensuring timely detection, containment, and mitigation.
• Perform triage and root cause analysis of security incidents and collaborate with IT and other teams to identify and address security-related issues.
• Perform email threat analysis through manual and tool-assisted research.
• Participate in security sub-programs such as Vulnerability Management and CTI programs, among others, to identify and mitigate emerging threats before they impact the organization.
• Apply cybersecurity and networking knowledge to analyze risk and support security operations, including understanding common vulnerability types, attack lifecycles and tactics, and core networking concepts such as protocols, services, and attack techniques.
• Apply sound judgment and attention to detail to assess security issues, prioritize work, communicate clearly and professionally, maintain situational awareness of threat activity, and contribute collaboratively while demonstrating initiative and flexibility.
• Follow and maintain documented procedures, stay current on policies and tooling, identify and document process gaps, contribute to security operations documentation, and support operations through accurate metric reporting as needed.
• Demonstrate effective prioritization and consistently meet established deadlines.
• Participate in an on-call roster to provide incident response support during off hours as needed.
• Dedicated to staying aware of current threat landscape and ongoing threat campaigns.
• Competencies in the following areas: vulnerability analysis, security alert analysis, email threat analysis, incident response, ability to read and understand essential scripting and database languages (PowerShell, python, SQL, KQL, etc) desired
• Bachelor’s degree in computer science, information systems, cybersecurity or related field optional.
• GIAC, ISACA, CompTIA, and/or ISC2 technical certifications preferred
• Participate in occasional weekend or holiday coverage, as necessary.
• Perform additional duties as appropriate to support the CISO-org.