Security Operations Analyst

Job Title: Security Operations Analyst
Location: Northampton (Minimum of 2 days onsite required)
Contract: Inside IR35
Hours/Duration: Full-time, 5 days per week. Overall project expected to be 3 months in duration.

The Role of Security Operations Analyst
Our client, who is one the UK's leading trade suppliers, is seeking an experienced Security Governance Analyst to join the Security Team to assist with managing alerts and incidents, developing automation, and ensuring the effective operation of the security monitoring infrastructure.

This role is expected to last for 3 months in duration, and the successful candidate will need to attend the client site in Northampton 2 days a week minimum, with the remainder worked from home, this work arrangement is essential based on the role requirements.

Key Responsibilities

• Handle and resolve ITSM incidents and service requests related to security operations, ensuring they are properly tracked, prioritised, and closed within SLA
• Manage and respond to Microsoft Sentinel security incidents, including triage, analysis, escalation, and coordination with stakeholders
• Create, develop, and fine-tune Sentinel alerts, analytics rules, hunting queries, and playbooks for automation using Kusto Query Language (KQL) and Logic Apps
• Build and maintain automated workflows to streamline incident response and reduce manual effort in security operations
• Collaborate with threat intelligence, IT, and compliance teams to refine detection strategies, improve alert fidelity, and enhance the overall security posture

About you
The successful candidate will have previously fulfilled a similar role as a Security Operations Analyst and have hands-on experience in Microsoft Sentinel and ITSM tools, who is passionate about monitoring, detecting, and responding to security incidents in a fast-paced environment.

You will also have the following skills:

• An ability to manage and respond to security incidents effectively
• Knowledge of network protocols, firewalls, intrusion detection systems, and network monitoring tools
• Be able to analyse and interpret threat intelligence to identify potential security threats
• Knowledge of programming languages like Python, PowerShell, or Bash for automating tasks and analysing security data
• Proficient in using SIEM tools to monitor and analyse security events

We are looking for candidates who are available to start work immediately and must hold the required experience outlined above. We aim to respond to all applicants within 5 working days - to avoid missing out please apply today, and one of our Team will be in touch.