Cyber Security Operations Analyst

Job Title: Cyber Security Operations Analyst

Experience: 5+ years
Department: Information Security
Job Type: Full-Time

Purpose of the Role

As a Cyber Security Operations Analyst, your primary responsibility is to protect the day-to-day operations of the organization by understanding and monitoring cybersecurity risks and threats. You will help ensure the correct protective, detective, and monitoring controls are in place while also playing a key role in cyber incident response activities. You will be a critical part of the Cyber Security Operations team, working closely with internal stakeholders and external partners (e.g., SOC MSSP) to safeguard the organisation's critical systems and data.

Key Responsibilities

• Respond to alerts and escalations from the Managed Security Service Provider (SOC MSSP) and internal systems.

• Investigate, triage, and resolve security incidents in a timely and effective manner.

• Develop and maintain documentation, including knowledgebase articles and playbooks to improve investigation and response efficiency.

• Support the Cyber Security Operations Manager with analysis and reporting, including regular metrics and insights to inform decision-making.

• Monitor the effectiveness of implemented security controls and ensure compliance with internal policies and industry standards.

• Recommend improvements in information security monitoring and controls based on threat trends and evolving business needs.

• Maintain up-to-date knowledge of the cybersecurity threat landscape and its potential impact on the organisation.

• Participate in incident response activities and contribute to post-incident reviews and lessons learned.

• Assist in improving cybersecurity policies and standards across the business.

Qualifications and Experience

Essential:

• Undergraduate degree in Cyber Security, Computer Science, Engineering, or a related field, or equivalent practical experience.

• Demonstrated understanding of security operations, threat detection, and incident response.

• Familiarity with IT system and network architecture.

Preferred:

• Experience working in a Security Operations Centre (SOC) or similar environment.

• Hands-on experience in investigating and responding to security incidents.

• Understanding of key IT service management and change management processes.

• Working knowledge of cybersecurity monitoring tools, SIEM platforms, and investigation techniques.

Skills and Attributes

• Strong analytical and problem-solving skills.

• Ability to adapt quickly to changing priorities and emerging threats.

• Excellent verbal and written communication skills for technical and non-technical audiences.

• Ability to work independently and collaboratively in a hybrid (remote/on-site) environment.

• High attention to detail and commitment to maintaining confidentiality and integrity.

Key Relationships

• Cyber Security Team

• Wider IT and Infrastructure Teams

• Business Managers and Senior Leaders

• External vendors and MSSP partners

About Encora

Encora is the preferred digital engineering and modernization partner of some of the world's leading enterprises and digital native companies. With over 9,000 experts in 47+ offices and innovation labs worldwide, Encora's technology practices include Product Engineering & Development, Cloud Services, Quality Engineering, DevSecOps, Data & Analytics, Digital Experience, Cybersecurity, and AI & LLM Engineering.

At Encora, we hire professionals based solely on their skills and qualifications, and do not discriminate based on age, disability, religion, gender, sexual orientation, socioeconomic status, or nationality.