UK CTAC Analyst Tier 2

CTAC Analyst Tier 2 focuses on conduct escalated triage and analysis on security events from tier 1, determining threat severity and advising on initial response actions.

What the role involves

• Conduct escalated triage and analysis on security events from Tier 1, determining threat severity and advising on initial response actions.
• Escalate critical threats to Tier 3 Analysts with detailed analysis for rapid response and adherence to SLOs.
• Monitoring the threat landscape and document findings on evolving threat vectors, sharing insights with CTAC teams.
• Coordinating with Tier 3 Analysts and management to refine detection and response workflows, contributing to continuous SOC maturity.

Skills and requirements

• Candidates must besole UK nationals (British citizens only)and haveresided continuously in the UK for the past 10 yearsto meet current security clearance requirements.
• Competence inSIEM solutions(e.g., ArcSight, Azure Sentinel) for monitoring and log analysis.
• Experience in a SOC or SOC-equivalent environment.
• Full UK Driving Licence.

Confirmed role details

• This role isonsite in Erskine (Scotland) and requires coverage of12-hour rotational shiftson a4 on/4 off pattern.
• Identify gaps in current detection content and work with Senior Analysts to develop and validate new detection rules and use cases.
• Test configurations when necessary.
• Act as a mentor to Tier 1 Analysts, offering guidance on triage and analysis techniques.

Candidate fit

• Effective workload management to ensure timely task completion.

Additional role context

• Tier 2 Cyber Security Analystis a mid-level position within the.
• Advance initial work from Tier 1 Analysts.
• Provide deeper analysis of potential threats.