Cyber Operations Analyst

About The Position

Requirements

• Basic familiarity with SIEM platforms and the ability to monitor, triage, and document security alerts in a structured SOC environment
• Ability to perform initial analysis of security alerts and events, following established runbooks and escalating incidents according to defined procedures
• Foundational understanding of common security incidents such as phishing emails, endpoint alerts, and basic network anomalies
• Ability to recognize common malware indicators and suspicious activity using alerts from endpoints, proxies, IDS, and network security tools
• Understanding of core cybersecurity concepts, including attack lifecycles, basic threat types, and the importance of defense-in-depth
• Risk and controls
• Change and transformation
• Business acumen
• Strategic thinking
• Digital and technology
• Job-specific technical skills

Nice To Haves

• Basic knowledge of operating system fundamentals (Windows & Linux) and introductory networking concepts such as TCP/IP, DNS, and HTTP
• Familiarity with common attacker techniques and indicators of compromise from a defensive (blue-team) perspective
• Awareness of cloud computing concepts and basic security considerations in platforms such as AWS, Azure, or Google Cloud

Responsibilities

• Management of security monitoring systems, including intrusive prevention and detection systems, to alert, detect and block potential cyber security incidents, and provide a prompt response to restore normal operations with minimised system damage.
• Identification of emerging cyber security threats, attack techniques and technologies to detect/prevent incidents, and collaborate with networks and conferences to gain industry knowledge and expertise.
• Management and analysis of security information and event management systems to collect, correlate and analyse security logs, events and alerts/potential threats.
• Triage of data loss prevention alerts to identify and prevent sensitive data for being exfiltrated from the banks network.
• Management of cyber security incidents including remediation & driving to closure.
• Perform prescribed activities in a timely manner and to a high standard consistently driving continuous improvement.
• Develop technical expertise in work area, acting as an advisor where appropriate.
• Partner with other functions and business areas.
• Takes responsibility for end results of a team’s operational processing and activities.
• Escalate breaches of policies / procedure appropriately.
• Take responsibility for embedding new policies/ procedures adopted due to risk mitigation.
• Advise and influence decision making within own area of expertise.
• Take ownership for managing risk and strengthening controls in relation to the work you own or contribute to.
• Deliver your work and areas of responsibility in line with relevant rules, regulation and codes of conduct.
• Maintain and continually build an understanding of how own sub-function integrates with function, alongside knowledge of the organisations products, services and processes within the function.
• Demonstrate understanding of how areas coordinate and contribute to the achievement of the objectives of the organisation sub-function.
• Make evaluative judgements based on the analysis of factual information, paying attention to detail.
• Resolve problems by identifying and selecting solutions through the application of acquired technical experience and will be guided by precedents.
• Guide and persuade team members and communicate complex / sensitive information.
• Act as contact point for stakeholders outside of the immediate function, while building a network of contacts outside team and external to the organisation.

Benefits

• medical
• dental
• vision coverage
• 401(k)
• life insurance
• other paid leave for qualifying circumstances
• incentive award