Cyber Security Analyst in UNITED KINGDOM

L2 SOC Analyst - UK, Fully Remote:

This position is open to candidates who have the right to work and reside in the UK.

We're CyberOwl, a dynamic start-up that operates globally with colleagues based in the UK, Greece, Singapore, Malaysia, Poland and the Philippines. Recently, we were acquired by DNV giving us access to a much wider maritime ecosystem and opportunities for further growth.

CyberOwl helps maritime and CNI asset operators gain visibility, cybersecurity, and compliance of systems on their distributed, remote assets. We work with ship owners and managers where our technologies provide near-real-time visibility of the onboard IT and OT assets and their communication patterns, raises early warning of cyber-attacks, suspicious behaviours and monitors for non-compliance. We complement this with a managed service (SOC) and specific cybersecurity advisory services to further support the asset operator.

Our team is 50+ Owls strong and always growing. We’re expecting another significant growth phase imminently. We’re recognised as market innovators - we have a bias for action, and our team prides itself on their ability to plan, execute, and iterate at a rapid pace. We value the ability to challenge each other, hold each other to account, develop each other personally and professionally, and celebrate each other’s successes. Our culture is at the heart of everything that we do and we live by our values; BE OWLS.

We celebrate diversity with 13 nationalities, 17 languages, many more dialects, and lots of Owls. We are spread across 2 continents and 6 countries.

The Role:

We are looking for a dedicated and skilled L2 SOC Analyst to join our team of security experts across Asia and Europe. This role requires a proactive professional to work alongside the global Head of SOC, the EMEA Lead SOC Analyst, and other security analysts to deliver and continuously improve security services for our customers. The L2 SOC Analyst will play a critical role in monitoring, analysing, and responding to malicious or anomalous behaviour within customer environments, conducting threat hunting activities, producing detailed reports, and participating in online customer-facing meetings.

The Person:

You will be passionate about all things cybersecurity with a thirst for knowledge and a curiosity in always knowing why. Your ideal work environment is a smaller multinational team where you can learn but also teach and share your experience. You're highly collaborative, but also able to work effectively as a sole contributor. Values and culture matter immensely to you.

Shift Pattern & Remote Working / Location:

We currently operate a shift pattern of 8am - 4pm and 2pm - 10pm Mon to Fri. Analysts also work rotational short shifts on an on-call basis to cover weekends.

This is a fully remote position with the possibility of working outside your home country location for short durations each year.

Key Responsibilities

Threat Assessment & Analysis:

• Assess threats, vulnerabilities, and network asset behaviour for indicators of suspicious or abnormal activity.
• Conduct detailed analysis of data captured by monitoring systems and respond to alerts raised by proprietary toolsets.
• Perform research into threat indicators and contribute to threat indicator module development within the product's software architecture.

Customer Engagement & Reporting:

• Generate detailed, customer-focused security reports, providing actionable insights.
• Present findings, analyses, and recommendations at virtual customer meetings.
• Keep customers informed of emerging threats.

Product & Strategy Development:

• Collaborate with the development team to enhance threat indicator modules within the product.
• Contribute to the strategy and execution of the security intelligence centre of excellence, supporting the leadership team in defining and executing the threat indicator R&D roadmap.
• Partner with UI/UX and front-end developers, providing insights on incident detection, remediation, and prevention processes.

Cross-functional Collaboration:

• Engage with other internal teams, customers, and partners on product and service delivery.
• Represent the Company at cybersecurity conferences, exhibitions, and workshops, as directed by the leadership team.
• Support the leadership team in strategic initiatives to grow and enhance the Company.

Industry Awareness:

• Stay up-to-date on emerging technologies, tools, and trends in cybersecurity.

Team Collaboration:

• Foster effective communication and collaboration within the SOC team, working toward understanding customer needs to maximise service value.

Desirable:

• Knowledge or certification in industrial control systems (CNI)
• Exposure, ideally working knowledge of at least one scripting or programming language.
• Previous commercial experience of using Kabana
• A good working understanding of Elastic

Equality Diversity & Inclusion:

CyberOwl is an equal opportunities employer and welcomes applications from all suitably qualified persons, regardless of their race, sex, disability, religion/belief, sexual orientation, gender, marriage/civil partnerships, pregnancy, maternity, or age.

Applicants may request reasonable adjustments to facilitate their application and the selection process.

Data Protection:

When you apply for a job, the personal data contained in your application will be collected by CyberOwl Limited (“Controller”), which is located at 1 Colmore Square Birmingham and can be contacted by emailing info@cyberowl.io. Your personal data will be processed for the purposes of managing CyberOwl’s recruitment related activities, which include setting up and conducting interviews and tests for applicants, evaluating and assessing the results thereto, and as is otherwise needed in the recruitment and hiring processes. Such processing is legally permissible under Art. 6(1)(f) of Regulation (EU) 2016/679 (General Data Protection Regulation) as necessary for the purposes of the legitimate interests pursued by the Controller, which are the solicitation, evaluation, and selection of applicants for employment.

Your personal data will be retained by CyberOwl Limited for as long as CyberOwl determines it is necessary to evaluate your application for employment. Under the GDPR, you have the right to request access to your personal data, to request that your personal data be rectified or erased, and to request that processing of your personal data be restricted. You also have the right to data portability. In addition, you may lodge a complaint with an EU supervisory authority.

We regret that we are unable to reply to all applications.