Intern supporting IT Security team at OneDigital with hands - on experience and mentoring. Engaging in real - world assignments and responsibilities within IT Security.
About the role
- Senior Security Analyst at Asta focused on security engineering and operational resilience in a hybrid role. Collaborating with various teams to enhance security protocols and manage incidents.
Responsibilities
- The Senior Security Analyst is responsible for strengthening Asta’s security posture through hands-on security engineering, continuous monitoring, and effective operational resilience.
- The role makes informed, risk based decisions during security incidents, prioritising alerts, coordinating containment actions, and recommending remediation strategies.
- It delivers infrastructure hardening, threat detection, vulnerability management and supports Microsoft 365 security improvements.
- The successful candidate will be part of the wider infrastructure team and work closely with development teams, clients, risk and compliance to drive security automation, threat detection, incident response, and risk reduction across the enterprise platform stack.
- The role makes informed, risk‑based decisions during security incidents, prioritising alerts, coordinating containment actions, and recommending remediation strategies.
- It delivers infrastructure hardening, threat detection, vulnerability management and supports Microsoft 365 security improvements.
Requirements
- 4 years + of hands-on experience in infrastructure cybersecurity, combining security tooling engineering and managing SOC operations or incident response with experience in regulated industry.
- Strong understanding of cybersecurity principles, attack vectors, defense strategies and the Mitre Attack framework
- Experience with cloud security (preferably Azure, IAM, secrets management, encryption, & certificate management.
- Experience with Microsoft 365 security suite including Microsoft Defender, Azure AD Identity Protection, threat analytics, and security compliance tools.
- Hands-on experience with SIEM platforms (Splunk, Crowdstrike (Falcon), Log Rhtyhm, Sentinel, or Microsoft Defender).
- Familiarity with EDR/XDR tools (CrowdStrike, SentinelOne, or Microsoft Defender) and endpoint security and configuration.
- Experience of working with tools such as Varonis, Tenable, Pentera & external and internal SOC processes
- Knowledge of operating systems (Windows, Linux) and security hardening techniques with strong scripting & automation skills (Python, Bash, PowerShell)
- Excellent written and verbal communication skills with ability to translate technical concepts for non-technical audiences, deliver training, and produce executive-level reports
- Proactive, self-motivated team player with strong analytical & problem-solving skills and hands-on technical credibility with meticulous attention to detail. Ability to work under pressure and manage multiple priorities during security incidents.
- Desirable: Security certifications (CISSP, CISM, OSCP, CCSP, Security+, CySA+, GCIH, GCIA, CompTIA Security+), experience with regulatory compliance frameworks (GDPR, ISO 27001, SOC2, PCI-DSS, cyber essentials), digital forensics knowledge, threat intelligence platform experience, AWS & GCP. Develop and maintain infrastructure-as-code for security configurations (Terraform, Ansible).
Benefits
- At Asta, you’ll enjoy a market-leading benefits package that puts your wellbeing, career development and financial future first. We combine flexible working, strong family-friendly policies and exceptional rewards to create a supportive, inclusive and high-performing workplace.
- Our benefits include:
- Work-life balance you can rely on
- 35-hour working week with hybrid and flexible working
- Generous holiday allowance that increases with service
- Your health & wellbeing covered
- Private medical insurance with virtual GP access
- Annual health screening, dental cover and eye care
- Subsidised gym or sports club membership
- Support for you and your family
- Enhanced maternity, paternity, adoption and shared parental pay
- Rewarding your contribution
- Highly competitive pension with up to 13% employer contribution
- Life assurance and income protection
- Discretionary annual bonus scheme
- Interest-free season ticket loan and salary sacrifice schemes
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Cyber Threat Intelligence Analyst at AIG specializing in cyber threat research and intelligence production. Collaborating with an interdisciplinary team to enhance cybersecurity situational awareness and reporting.
Senior Cyber Security Analyst protecting customers from cyber threats while enhancing cyber security services at technology firm. Focused on both security operations and technical delivery.
Cybersecurity Analyst assisting in the review and implementation of cybersecurity initiatives across a large environment at Kemper. Responding to cyber threats and improving processes and technologies.
Senior Information Security Analyst managing Information Security Management System at BMLL Technology. Supporting compliance with ISO 27001 and enhancing security measures.
Graduate Cyber Security Analyst at McKesson participating in a 24 - month Cyber Academy program. Monitor security alerts and contribute to incident response efforts while gaining mentorship.
Threat Intelligence Analyst role analyzing cyber threats and providing strategic recommendations. Working with cybersecurity teams at PwC Canada to safeguard client data and systems.
Contract Security Analyst specializing in security operations and incident response for cloud security at Embark. Focus on alert handling, detection engineering, and data loss prevention.
Cyber Security Analyst providing security operations support for USAF Cloud One project. Engaging in incident response and cybersecurity compliance activities within a hybrid environment.
Cybersecurity Analyst responsible for monitoring, analyzing, and responding to security incidents in SOC. Developing detection rules and conducting threat - hunting campaigns within a hybrid work setup.