136 Cybersecurity Analyst jobs in London

• Lead and manage the day-to-day operations of the cybersecurity monitoring and incident response teams.
• Develop, implement, and maintain advanced threat detection strategies using SIEM, IDS/IPS, and EDR solutions.
• Conduct in-depth investigations of security incidents, perform root cause analysis, and develop remediation plans.
• Oversee vulnerability scanning and penetration testing efforts, prioritizing and tracking remediation activities.
• Design and implement security controls for cloud environments (AWS, Azure, GCP).
• Stay current with the latest threat intelligence, attack vectors, and security best practices.
• Develop and document security policies, procedures, and incident response playbooks.
• Mentor and guide junior cybersecurity analysts, fostering their professional development.
• Collaborate with IT infrastructure, application development, and business teams to ensure security is integrated into all aspects of the organization.
• Participate in security awareness training initiatives.
• Prepare regular reports on security posture, incident trends, and key performance indicators for senior management.

• Bachelor's degree in Computer Science, Information Security, or a related field; Master's degree preferred.
• Minimum of 7 years of experience in cybersecurity, with at least 2 years in a lead or senior analyst role.
• In-depth knowledge of security principles, protocols, and technologies (TCP/IP, firewalls, VPNs, encryption, authentication mechanisms).
• Hands-on experience with SIEM platforms (e.g., Splunk, QRadar), EDR solutions, and vulnerability management tools.
• Strong understanding of cloud security concepts and best practices for AWS, Azure, or GCP.
• Experience with incident response methodologies and digital forensics.
• Relevant certifications such as CISSP, CISM, CEH, or GSEC are highly desirable.
• Excellent analytical and problem-solving skills, with the ability to think critically under pressure.
• Strong leadership, communication, and interpersonal skills.
• Ability to work effectively in a hybrid team environment.

• Lead threat intelligence gathering, analysis, and dissemination.
• Oversee and execute incident response procedures; conduct post-incident analyses.
• Manage vulnerability scanning, assessment, and remediation efforts across the infrastructure.
• Develop and implement security policies, standards, and guidelines.
• Conduct regular security audits and compliance checks.
• Design and manage security controls for network, systems, and applications.
• Mentor and guide junior cybersecurity analysts.
• Collaborate with IT and development teams to integrate security into the SDLC.
• Contribute to security awareness programs and training initiatives.
• Stay current with emerging cybersecurity threats and technologies.

• Bachelor's degree in Computer Science, Cybersecurity, or a related field; Master's degree or relevant certifications (e.g., CISSP, CISM) are highly desirable.
• Minimum of 7 years of experience in information security, with at least 2 years in a lead or senior analyst role.
• Demonstrated expertise in threat detection, incident response, and vulnerability management.
• Proficiency with SIEM tools, EDR solutions, firewalls, IDS/IPS, and other security technologies.
• Strong understanding of network protocols, operating systems, and common attack vectors.
• Excellent analytical, problem-solving, and critical-thinking skills.
• Effective communication and interpersonal skills, with the ability to present complex technical information clearly.
• Experience in a hybrid work environment is beneficial.

• Monitor security alerts and events from various sources, including SIEM, IDS/IPS, and endpoint detection systems.
• Conduct in-depth analysis of security incidents to determine root cause, impact, and recommend remediation strategies.
• Develop and refine security detection rules, threat intelligence feeds, and incident response playbooks.
• Perform vulnerability assessments and penetration testing, providing actionable insights for mitigation.
• Contribute to the development and implementation of security policies, procedures, and best practices.
• Stay current with emerging threats, vulnerabilities, and cybersecurity trends.
• Collaborate with IT and development teams to ensure security is integrated into system lifecycles.
• Provide technical guidance and mentorship to junior security analysts.
• Participate in incident response activities, including containment, eradication, and recovery.
• Generate comprehensive reports on security posture, incident trends, and recommended improvements.

• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• 5+ years of experience in a cybersecurity operations or analysis role.
• Demonstrable experience with SIEM platforms (e.g., Splunk, QRadar, LogRhythm).
• Proficiency in threat hunting, malware analysis, and incident response methodologies.
• Strong understanding of network security principles, protocols, and technologies.
• Knowledge of common attack vectors and mitigation techniques.
• Relevant certifications such as CISSP, CEH, GIAC, or OSCP are highly desirable.
• Excellent analytical, problem-solving, and critical thinking skills.
• Exceptional communication and collaboration abilities, crucial for a remote work environment.
• Experience with scripting languages (e.g., Python, PowerShell) for automation is a plus.

• Developing and implementing comprehensive cybersecurity strategies for aviation systems.
• Conducting vulnerability assessments, penetration testing, and risk analysis on aviation IT and OT infrastructure.
• Monitoring network traffic and security systems for suspicious activities and potential breaches.
• Investigating security incidents, analyzing root causes, and leading response and remediation efforts.
• Designing and implementing security controls to protect sensitive aviation data and critical systems.
• Staying current with emerging cybersecurity threats, vulnerabilities, and technologies relevant to the aviation industry.
• Ensuring compliance with aviation-specific security regulations and standards (e.g., EASA, FAA guidelines).
• Developing and delivering cybersecurity awareness training to aviation personnel.
• Collaborating with IT, engineering, and operational teams to integrate security best practices.
• Maintaining accurate documentation of security policies, procedures, and incident reports.

• Bachelor's or Master's degree in Cybersecurity, Computer Science, Information Technology, or a related field.
• Minimum of 5 years of experience in cybersecurity, with a focus on critical infrastructure or aviation systems.
• Strong understanding of network protocols, security architectures, and cybersecurity frameworks.
• Experience with threat intelligence, incident response, and digital forensics.
• Knowledge of relevant aviation security regulations and compliance requirements.
• Proficiency in security tools such as SIEM, IDS/IPS, firewalls, and endpoint detection and response (EDR).
• Excellent analytical, problem-solving, and critical thinking skills.
• Strong written and verbal communication abilities, with the capacity to explain complex technical issues clearly.
• Relevant cybersecurity certifications (e.g., CISSP, CISM, GSEC) are highly desirable.

• Monitor security information and event management (SIEM) systems for potential security threats and anomalies.
• Conduct in-depth analysis of security alerts and events to identify and confirm security incidents.
• Perform threat hunting activities to proactively identify sophisticated threats that may have bypassed existing security controls.
• Develop and refine security detection rules and use cases for SIEM and other security tools.
• Analyze malware, conduct forensic investigations, and contribute to incident response efforts.
• Assess vulnerabilities in systems and applications and recommend appropriate remediation measures.
• Stay abreast of the latest cybersecurity threats, vulnerabilities, and industry best practices.
• Develop and maintain documentation for security procedures, policies, and incident response playbooks.
• Collaborate with IT teams and other stakeholders to implement security controls and enhancements.
• Provide technical guidance and mentorship to junior cybersecurity analysts.
• Participate in security awareness training initiatives.

• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field; relevant certifications (CISSP, CEH, OSCP) are highly desirable.
• Minimum of 5 years of hands-on experience in cybersecurity operations, incident response, or threat analysis.
• Proficiency with SIEM platforms (e.g., Splunk, QRadar, LogRhythm), EDR solutions, and other security monitoring tools.
• Strong understanding of networking protocols, TCP/IP, firewalls, IDS/IPS, and common cyberattack techniques.
• Experience with cloud security concepts and technologies (AWS, Azure, GCP).
• Excellent analytical, problem-solving, and critical-thinking skills.
• Strong written and verbal communication skills, with the ability to explain technical concepts clearly.
• Demonstrated ability to work independently and manage time effectively in a remote setting.
• Experience with scripting or programming languages (e.g., Python, PowerShell) is a plus.

• Monitor security alerts and threat intelligence feeds to detect and analyze potential security incidents.
• Investigate complex security events, conduct forensic analysis, and determine the scope and impact of breaches.
• Develop and maintain threat intelligence reports, providing actionable insights to the security team and senior management.
• Proactively hunt for threats within the network and systems, identifying vulnerabilities and attack vectors.
• Contribute to the development and enhancement of security tools and technologies, including SIEM, IDS/IPS, and endpoint detection and response (EDR) solutions.
• Collaborate with incident response teams to contain and eradicate threats.
• Stay current with the latest cybersecurity threats, vulnerabilities, and mitigation techniques.
• Develop and deliver security awareness training to employees.
• Participate in security audits and compliance activities.
• Mentor junior security analysts and contribute to the growth of the security team.

• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• 5+ years of experience in cybersecurity, with a strong focus on threat intelligence and incident response.
• In-depth knowledge of common cyber attack methods, malware, and threat actor tactics, techniques, and procedures (TTPs).
• Proficiency in using SIEM platforms, vulnerability scanners, and other security monitoring tools.
• Experience with network forensics, endpoint analysis, and log analysis.
• Understanding of cloud security principles (AWS, Azure, GCP) is a plus.
• Relevant security certifications such as CISSP, GIAC, CEH, or OSCP are highly desirable.
• Excellent analytical, problem-solving, and communication skills.
• Ability to work effectively in both independent and team-oriented environments, including a hybrid work model.

• Lead the threat intelligence program, including strategy, operations, and team management.
• Conduct in-depth research and analysis of cyber threats, vulnerabilities, and actor TTPs.
• Develop actionable threat intelligence reports and briefings for various stakeholders.
• Manage and optimize threat intelligence platforms and data sources.
• Collaborate with incident response and security operations teams to provide timely intelligence.
• Build and maintain relationships with external threat intelligence communities and vendors.
• Stay current with the latest cybersecurity trends, tools, and techniques.

• Bachelor's degree in Computer Science, Cybersecurity, or a related field; Master's degree preferred.
• Minimum of 7 years of experience in cybersecurity, with at least 3 years focused on threat intelligence.
• Proven leadership experience managing security analysts.
• Expertise in threat intelligence methodologies, tools, and frameworks (e.g., MITRE ATT&CK).
• Strong understanding of network security, malware analysis, and incident response.
• Excellent analytical, problem-solving, and communication skills.
• Ability to work independently and effectively in a remote, collaborative environment.

• Proactively research, identify, and analyze emerging cyber threats, attack vectors, and adversary tactics, techniques, and procedures (TTPs).
• Develop and maintain high-quality threat intelligence reports, briefings, and alerts for technical and non-technical audiences.
• Leverage a variety of threat intelligence sources, tools, and platforms (e.g., OSINT, commercial feeds, government partnerships) to gather and correlate information.
• Conduct in-depth investigations into security incidents and suspicious activities to determine attribution and impact.
• Develop and implement threat hunting methodologies and exercises to uncover advanced persistent threats (APTs) and zero-day vulnerabilities.
• Provide strategic recommendations for enhancing the organization's defensive posture based on threat intelligence findings.
• Collaborate closely with security operations center (SOC) analysts, incident responders, security architects, and other security teams to integrate threat intelligence into security operations.
• Develop and maintain metrics to measure the effectiveness of threat intelligence programs.
• Mentor junior analysts and contribute to the professional development of the threat intelligence team.
• Stay current with the latest cybersecurity trends, research, and technologies.
• Participate in industry forums and information-sharing communities to enhance organizational intelligence.
• Contribute to the development and refinement of threat intelligence collection requirements and processes.

• Proven experience (5+ years) in cybersecurity, with a strong focus on threat intelligence, incident response, or security operations.
• Deep understanding of threat actor methodologies, malware analysis, and network security principles.
• Proficiency with threat intelligence platforms (TIPs), SIEM systems, and relevant analytical tools.
• Experience with scripting languages (e.g., Python, PowerShell) for automation and data analysis.
• Excellent analytical, critical thinking, and problem-solving skills.
• Strong written and verbal communication skills, with the ability to present complex information clearly and concisely.
• Experience in conducting threat hunting operations.
• Relevant certifications such as CISSP, GIAC (GCTI, GCFA, GCIH), or equivalent are highly desirable.
• Ability to work independently and as part of a distributed, global team.
• Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent work experience.

We are Vitesse – the treasury and payment partner of choice for insurance.  

Formed in 2014 by a team of proven FinTech entrepreneurs, we are an FCA-regulated business providing global claim funds management and payment solutions. Operating one of the largest banking and payment settlement networks in the world, we give our customers direct access to 200 countries and currencies. Through a single integration, insurers can use this network to pay claims in as fast as 45 seconds and deliver a superior claimant experience. Our market-leading treasury proposition provides insurers with transparency and control over their claim funds, even when delegated to third-parties, allowing them to have their money in the right place, at the right time, to make that all-important payment when customers need it most.

With over 260 employees across our London headquarters, Europe, and the US, $93m Series C funding secured, our US licence approved and exceeding £15bn in processed transactions, we are only just getting started.

We are collaborative, customer centric and work with integrity, whilst partnering with some of the biggest insurance leaders including Lloyd’s of London and Many Pets. We take huge pride in our company culture, ensuring that everyone has a part to play, an opportunity to be heard, be involved, and the ability to make a real difference.  As we continue to scale up, we want like-minded humans to join us on this exciting journey. Are you ready? 

Your Mission:

We are seeking a skilled and motivated Information Security Analyst to join our team, reporting into the CISO. You will play a crucial role in safeguarding our organisations digital assets and infrastructure from cyber threats. You will be responsible for analysing security measures, identifying vulnerabilities, and help implement effective solutions to mitigate risks.

This role has a requirement for the jobholder to be part of an out of hours call-out rota, which will usually be 1 in 4 or 5 weeks, in addition to being available for short-term assignments in the US to support our North American business.

The role will require at least 2 days onsite in our London office.

The ideal candidate will have a strong understanding of information security principles, excellent analytical skills, and the ability to adapt to evolving threats in the cybersecurity landscape.

Your Responsibilities:

Governance: Risk / Compliance / Assurance:

• Monitor security systems including intrusion detection, firewalls, and SIEM. Collaborate with our external SOC to detect and respond to security incidents in a timely manner.
• Participate in incident response activities, including incident triage, containment, eradication, and recovery efforts.
• Conduct thorough investigations of security incidents and provide detailed reports on findings and recommendations for remediation.

• Help contribute to regular security assessments and audits to identify vulnerabilities and weaknesses in systems, networks, devices, and applications.
• Serve as a subject matter expert on security-related matters, providing guidance and support to other teams and departments as needed, and as reported through the help desk system.
• Collaborate with IT teams and other stakeholders, contributing to the design and implementation of security controls and measures to protect against cyber threats.
• Stay up to date with the latest security trends, technologies, and best practices, and provide recommendations for continuous improvement.
• Assist with the management of security awareness training and workshops for employees to educate them about security risks and best practices for maintaining a secure work environment.
• Participate in the development and maintenance of disaster recovery plans to ensure the organisation's ability to respond to and recover from security incidents.
• Collaborate with internal teams during due diligence exercises to ensure that key security controls are documented as part of each submission.

Requirements

• Certifications such as CISSP, CISM, or CompTIA Security+, certifications are highly desirable.

• Proven experience working in information security, with a good understanding of security principles, protocols, and technologies.
• Experience with information security standards including ISO 27001, NIST and Cyber Essentials.
• Experience with security assessment tools and techniques, including vulnerability scanning and penetration testing.
• Good understanding of Microsoft Azure, Office 365 and Microsoft E5 security tooling.
• Strong analytical and problem-solving skills, with the ability to analyse complex systems and identify security risks and vulnerabilities.
• Excellent communication and interpersonal skills, with the ability to effectively convey technical information to non-technical stakeholders.
• Ability to work independently and collaboratively in a fast-paced environment, with a strong sense of accountability and attention to detail.
• Sound judgment and decision-making abilities, especially in high-pressure situations requiring quick and accurate assessments.
• High ethical standards and a commitment to maintaining confidentiality.

Benefits

• 25 days Holiday per year (increasing by 1 day per years' service, up to 30 days) + Bank Holidays  
• Hybrid working arrangements – minimum 2 days in the office, Tuesday - Thursday 
• Contributory pension scheme  
• Enhanced Parental leave   
• Cycle to Work Scheme  
• Private Medical Insurance with AXA 
• Unlimited access to therapy sessions through our partner, Oliva   
• Discounted Gym membership through Gympass 
• Financial Coaching with Octopus Wealth  
• 2 days of volunteering leave per year  
• Sabbatical after 5 years’ service   
• Life Assurance - MetLife (UK employees only)
• Ongoing Learning and Development to support you reach your career goals  

We are Vitesse – the payment provider of choice for the insurance and treasury industry.  

Formed in 2014 by a team of proven FinTech entrepreneurs, we are an FCA regulated payments business that is driven to be the payment partner of choice for the insurance market, by providing global payment services and treasury optimisation.  Operating one of the largest domestic banking and payment settlement networks in the world, we give our customers direct access to more than 170 countries and territories, covering over 110 currencies. Through a single integration, insurers can use this network to pay claims in as fast as 45 seconds, delivering a better customer experience to their claimants.  Our market-leading treasury optimisation service brings complete control and transparency to insurers and allows them to have their money in the right place, at the right time, to make that all important payment - fast, and when their customers need it most.   

With now over 160 employees across Europe and our London headquarters, $26m series B funding in 2022 in the bag and approaching £8bn in processed transactions, we are only just getting started.     

We are collaborative, customer centric and work with integrity, whilst partnering with some of the biggest insurance leaders including Lloyd’s of London and Many Pets. We take huge pride in our company culture, ensuring that everyone has a part to play, an opportunity to be heard, be involved, and the ability to make a real difference.   

As we continue to scale up, we want like-minded humans to join us on this exciting journey.  Are you ready?  

Vitesse at our best – our values 

The Vitesse values are a true reflection of what it takes to thrive in our business, so it’s important to us that any employee who joins our business is aligned with these 3 attributes 

Confident Humility 

We don’t do ego and we know that unless we all win, none of us win. We admit when we’re wrong, ask for help and always think about the wider business before ourselves.

Driven to Succeed 

We see the opportunity ahead of us and we won’t stop until we fulfil the potential we know we have. We hold ourselves to high standards and deliver high quality outcomes for Vitesse and our customers.  

Tenacious Responsibility 

We take ownership for our actions and decisions, and face into the challenges that come our way. We are committed to seeing things through to completion, even in the face of adversity. 

We are an Equal Opportunity Employer   We are committed to creating an inclusive environment that enables everyone to perform at their best, where we recognise the rights of all individuals to mutual respect and where there is an unbiased acceptance of others. Our policies and practices aim to promote an environment that is free from all forms of Unfair discrimination and values the diversity of all people. At the heart of our policy, we seek to treat people fairly and with dignity and respect.