Senior Cyber Security Analyst - Incident Response

At Aberdeen, our ambition is to be the UK’s leading Wealth & Investments group. The Senior Cyber Security Analyst role is an exciting and integral part of the Cyber Security Operations team. This role is technical and will support the Cyber Response Lead in responding to escalated security alerts from L1 and L2 analysts, and proactively developing and tuning detection rules. The role reports directly to the Cyber Response Lead and is based in Edinburgh. The role holder will work closely with the Cyber Security Operations Centre and with other security functions as well as specialist third-party security suppliers and the global IT and business teams.

Key Responsibilities

• Conduct thorough investigations to determine the root cause, scope, and impact of security alerts escalated from L1 and L2 security analysts.
• Monitor detection and response KPIs.
• Support detection rule management, implementing new rules and tuning out false positives.
• Maintain incident response plans and playbooks.
• Document incidents and response actions in detailed post-incident reporting.
• Manage the Information Security Queue in relation to Cyber Response tickets.
• Coordinate and collaborate with internal and external stakeholders, such as IT, business, and audit teams on security-related matters.
• Recommend and implement security posture improvements, collaborating with IT teams to ensure security measures are integrated into systems.

About The Candidate

• Experience in Cyber Security, ideally within an international asset management or similar large organisations.
• Passion for security and self-development to keep up to date with the evolving threat and vulnerability landscape, new technologies and service improvements.
• Able to work in an international matrix organisation with complex and dynamic drivers and constraints.
• Comfortable with a fast paced multi-threaded working environment.
• Proficiency in Microsoft Security Stack – Strong hands-on experience with Microsoft’s security ecosystem, including the Microsoft Defender suite (MDE, MDO, MDA, MDI) and related identity protection technologies (Azure AD Identity Protection, Conditional Access).
• Proficiency with Microsoft Sentinel (SIEM/SOAR) for security monitoring, detection, and incident response. Experience configuring, tuning, and maintaining these solutions, analysing alerts and incidents, developing advanced hunting queries (KQL), developing automation playbooks, and integrating with other security controls and solutions.
• Experience with security tools outside the Microsoft ecosystem, such as IDS/IPS, vulnerability scanners, web and email filtering, webapp firewalls and DDoS protections, proxies, host-based protections and malware analysis engines.
• Good understanding of Cyber Detection and Response Concepts such as the MITRE ATT&CK framework for mapping adversary behaviours and improving detection coverage.

Our Benefits

There is more to working life than salary. We offer an environment where you can learn, get involved and be supported. Benefits include 40 days’ annual leave, a 16% employer pension contribution, a discretionary performance-based bonus (where applicable), private healthcare and a range of flexible benefits such as gym discounts, season ticket loans and access to an employee discount portal.

Our Business

Enabling our clients to be better investors drives everything we do. Our business is structured around three distinct areas – Interactive Investor, Investments, and Adviser – each focusing on meeting and adapting to our clients’ evolving needs.

An Inclusive Way of Working

Aberdeen supports a blended working approach, combining in-office collaboration with flexible remote work. We are committed to an inclusive culture where diverse perspectives drive our actions, and we welcome applicants from all backgrounds. If you need assistance or an adjustment to your interview arrangements, please let us know.

Seniority level

• Mid-Senior level

Employment Type

• Full-time

Job function

• Information Technology