CrawlJobs Logo
Hunter Bond Logo Hunter Bond · IT - Software Development

Technical Business Analyst (Detection and Response)

United Kingdom, London 625.00 GBP / Day · Job Posted May 30, 2026
Apply Position
Job Link Share

Job Description

An Elite Investment Firm is looking for a talented Technical Business Analyst with experience in network detection and response as well as general cyber security. The team is made up of some of the smartest individuals around who have worked at some elite firms. This team have an unlimited tech budget and promote a great culture!

Job Responsibility

  • Working closely with Security and Network Engineers, other Business Analysts and stakeholders on a large-scale greenfield cyber security project
  • Being involved in re-architecting the whole detection and response ecosystem
  • A chance to truly be entrepreneurial

Requirements

  • Experience in the finance sector is essential
  • Knowledge of network detection and response is essential
  • Strong Cyber Security experience is essential
Hunter Bond - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Technical Business Analyst (Detection and Response)

8 matching positions

Incident Response and SOC Analyst

The role supports the Cyber Security Operations Centre for the EU critical infra...
Location
Location
Belgium , Brussels
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong incident response methodology and hands-on experience in end-to-end incident handling in multinational settings
  • Advanced knowledge of XSOAR playbook creation and automation
  • Proficiency in designing and adapting automated workflows and enrichment
  • Python programming skills
  • Ability to present technical and business information effectively to diverse EC stakeholders
  • High standards for incident documentation, KPI reporting, and compliance with security frameworks
  • Familiarity with cloud-native services (AWS, Azure), EDR, SIEM-SOAR platforms, and container security
  • Excellent communication skills for working in multicultural teams and liaising with technical and non-technical audiences
  • Certifications or experience in relevant security technologies (e.g., Palo Alto Cortex XSOAR, Splunk, Microsoft SC-200, AWS Security Specialty)
  • Level 6 European Qualification Framework (Bachelor's degree or higher) for senior profiles
Job Responsibility
Job Responsibility
  • Define incident handling procedures, automation requirements, and playbook logic aligned with the needs
  • Prepare incident response workflows, automated enrichment steps, and technical documentation for standardized alert handling
  • Handle cybersecurity incidents from detection through escalation, containment, and resolution
  • Develop and maintain XSOAR playbooks, integrations, and automations across platforms such as Splunk, AWS, Azure Sentinel, Carbon Black Cloud, and Sysdig
  • Coordinate and review playbook updates, incident reports, and cross-team collaboration
  • Report key performance metrics, including FPTP rate, MTTH, escalation rate, automation coverage, time saved, and error reductions
  • Assist training analysts on playbook usage and incident response methods
  • Collaborate with CSIRC, CATCH analysts, infrastructure teams, and external stakeholders to validate playbook coverage and share threat intelligence.
What we offer
What we offer
  • Mobility options (including a company car)
  • Insurance coverage
  • Meal vouchers
  • Eco-cheques
  • Continuous learning opportunities through the Sopra Steria Academy
  • Participation in team events.
  • Fulltime
Read More
Arrow Right

Cybersecurity Manager - Detection and Response

Microsoft Incident Response – the Detection and Response Team (DART) – part of t...
Location
Location
United Kingdom , Multiple Locations
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field
  • OR Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field and several years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection and several years of experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field and several years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection OR equivalent experience
  • Many years of people management and/or informal/indirect team leadership experience
  • Strong analytic, qualitative, and quantitative reasoning skills
  • Track record of successfully managing a technical business group and maintaining consistent growth
  • Recognized as a strategic leader who can hire, retain and motivate diverse quality talent
  • Experience leading both a services organization and product development function
  • Develop business strategy and provide technical thought leadership
  • Manage customer engagements escalations to ensure customer satisfaction
Job Responsibility
Job Responsibility
  • People Management: Responsible for mentoring, managing and leading a team of cyber security analysts, engineers, developers, leads and incident managers
  • Managers deliver success through empowerment and accountability by modeling, coaching, and caring
  • Strategic Initiatives: Secure partner relationships and work closely with internal product and services groups as well as co-delivering with Microsoft’s Partner ecosystem
  • Develop and mentor individual contributors through open communication, training and development opportunities and performance management processes
  • Develop and maintain objectives, metrics and KPIs supporting the department’s strategic direction and continuously improve incident response technical capabilities
  • Communicate complex and technical issues to diverse audiences, verbally and in writing, in an easily understood, authoritative, and actionable manner
  • Present to a wide range and size of audiences from IT Pro, to CxO, to business decision makers
  • Technical leadership and executive presence to establish Trusted Technical Advisor to influence senior decision makers to mature and promote customer’s security posture across the overall technology landscape
  • Drive investigative teams to exhaust all investigative leads in the expectation of discovering novel attacker techniques
  • Investigate and research these techniques, and partner with threat intelligence and security engineering to drive security tooling and product enhancements
  • Fulltime
Read More
Arrow Right

Security Engineer

As a SOC Engineer at NTT DATA, you will play a crucial role in defending clients...
Location
Location
United Kingdom , Birmingham
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven hands-on experience with SIEM platforms such as Splunk, QRadar, Sentinel, Microsoft Defender, or Chronicle
  • Expertise with SIEM query languages (e.g., KQL, SPL, AQL) and strong knowledge of log normalization and parsing
  • Proficiency in scripting (e.g., Python, PowerShell) to automate tasks and build SOC efficiencies
  • Deep familiarity with cyber threat detection techniques related to frameworks like MITRE ATT&CK and vulnerability management
  • Experience managing ITIL processes, including Incident, Problem, and Change Management
  • CISSP, GIAC, SC-200, Splunk Power User/Admin, QRadar Specialist, or Chronicle Security Engineer certifications preferred
  • Candidates must be eligible to obtain UK SC clearance
  • Strong analytical and communication skills to present complex information to technical and non-technical stakeholders
  • Experienced in collaborative team dynamics and independent problem-solving
  • Proven ability to transfer knowledge and mentor junior SOC team members effectively
Job Responsibility
Job Responsibility
  • Deploy, configure, and maintain SIEM platforms such as Splunk, QRadar, Sentinel, and Chronicle to enable robust threat detection
  • Normalize and onboard diverse log sources from cloud and on-premises environments for seamless monitoring
  • Develop and continually refine SIEM rules and queries for use cases involving advanced threat behaviors and anomaly detection
  • Design and implement incident response playbooks for threats such as phishing, lateral movement, malware infections, and more
  • Integrate response automation into SOAR platforms (e.g., XSOAR, Azure Logic Apps), reducing response times and manual overhead
  • Use feedback from simulated incidents and threat intelligence to refine existing playbooks and workflows
  • Monitor security alerts for potential threats, investigate incidents, and coordinate cross-team response activities
  • Collaborate with threat intelligence teams to enhance detection logic and fine-tune resolution processes
  • Perform root-cause analysis (RCA) of recurring incidents and help define corrective actions to reduce future risks
  • Perform threat modeling using industry frameworks such as MITRE ATT&CK, STRIDE, or the Cyber Kill Chain
What we offer
What we offer
  • We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing
  • Our Learning and Development team ensure that there are continuous growth and development opportunities for our people
  • We also offer the opportunity to have flexible work options
Read More
Arrow Right

Csirt analyst

We are hiring a CSIRT / Cybersecurity Incident Response Analyst to assist one of...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong knowledge of cybersecurity operations, SOC/CDOC environments, and incident response processes
  • Proven ability to coordinate across technical and non-technical stakeholders
  • Experience in incident management, escalation handling, and mitigation tracking
  • Ability to translate business needs into technical cybersecurity requirements
  • Strong communication, facilitation, and coordination skills
  • Autonomous, proactive, and solution-oriented mindset
  • Experience or Knowledge of products Sentinel and Logic Apps
Job Responsibility
Job Responsibility
  • Serve as the local cybersecurity management contact
  • Maintain close proximity to on-site teams to understand operational need, critical assets, operational priorities and constraints
  • Act as a trusted relay between stakeholders and central CDOC/SOC teams
  • Facilitate and coordinate incident escalations to appropriate teams
  • Act as an escalation point for complex cases requiring expert arbitration or cross-team coordination
  • Ensure follow-up of mitigations, remediation plans, and corrective actions
  • Intervene in complex or critical cybersecurity incidents that fall outside standard response procedures and require advanced incident response expertise
  • Support and, when required, lead complex operational response actions, from containment to threat eradication
  • Oversee and validate technical remediation and system restoration, ensuring secure and controlled recovery of the information system
  • Guarantee alignment between technical risks, business impacts, and client priorities throughout incident handling
What we offer
What we offer
  • Hybrid working mode and Work-from-Abroad benefits
  • 18 days of Annual leave
  • Comprehensive coverage including General Practitioner, hospitalization, dental, and optical
  • Annual bonus based on individual performance
  • Training programs, certification opportunities, and training incentives to support career growth
  • Regular team-building activities and social events
  • Fulltime
Read More
Arrow Right

Cybersecurity Operations Analyst II

Piper Companies is seeking a Cybersecurity Operations Analyst II to join a growi...
Location
Location
Salary
Salary:
120000.00 - 140000.00 USD / Year
pipercompanies.com Logo
Piper Companies
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in Security Operations, Incident Response, Threat Detection, or a related field
  • Hands-on experience with SIEM, EDR, and network security technologies
  • Strong understanding of threat actors, attack techniques (MITRE ATT&CK), and security best practices
  • Ability to analyze logs, packets, system telemetry, and behavioral indicators
  • Excellent communication skills, written and verbal
Job Responsibility
Job Responsibility
  • Monitor and triage alerts from SIEM, EDR, email security, and network monitoring tools
  • Investigate escalated events from MSSPs or automated detections
  • Conduct threat hunting activities leveraging IOCs, suspicious patterns, and cyber threat intelligence
  • Lead response activities for medium-to-high severity security incidents
  • Perform root cause analysis and develop detailed post-incident reports
  • Collaborate with IT and business teams to contain, eradicate, and recover from threats
  • Maintain and tune SIEM, EDR, and additional security tools to improve detection accuracy
  • Build and refine custom detection rules, dashboards, alerts, and reporting capabilities
  • Oversee the vulnerability management lifecycle, including scanning, analysis, prioritization, and remediation tracking
  • Validate and categorize vulnerabilities based on exploitability and business impact
  • Fulltime
Read More
Arrow Right

Senior Business Analyst, Data Analytics & CPM

Under limited supervision, specialized knowledge and skills obtained through tra...
Location
Location
United States , St Petersburg, Florida
Salary
Salary:
Not provided
raymondjames.com Logo
Raymond James
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • OneStream, Hyperion (HFM), or other CPM system experience strongly preferred
  • Strong knowledge of financial processes, including experience with financial reporting, financial close, consolidations, and FP&A
  • Bachelor’s degree with technical or business specifications and three (3) to five (5) years’ experience including any combination of the following: systems administration, technical customer support, application administration, software development, project management, technical consulting, software upgrade/implementation, technical analysis, general finance or accounting
  • Any equivalent combination of experience, education, and/or training approved by Human Resources
  • OneStream, Hyperion (HFM), or other CPM system certifications
  • Strong knowledge of financial processes, including experience with financial close, consolidations, financial reporting, and FP&A
  • Principles, practices, and procedures of internal systems and processes
  • Project Management processes and procedures
  • Business Process Improvement Processes and Procedures preferred
  • Skill in Operating standard office equipment and using required software applications to produce correspondence, reports, electronic communication, spreadsheets, and databases at an intermediate level
Job Responsibility
Job Responsibility
  • Provide guidance, drive business transformation and strategic change, and create value by driving initiatives that reinvent the core of the business
  • Partner across the enterprise to introduce, enable, and adopt transformation methodologies and concepts within the product model
  • Model effectively—with deep understanding—agile execution, change management, and transformation advocacy across the business
  • Specialize in scaling transformation efforts across the organization, often leading multiple initiatives
  • Help more traditional companies transform to be product- or customer-led
  • Provide administration and support for the accounting systems and applications
  • Participate in the development and delivery of training curriculum to educate users on system functionalities and best practices
  • Support projects and establishes requirements to meet the information and process needs of the organization related to the business area
  • Acts as liaison to the business areas and systems users
  • Supports project teams for special projects which may impact multiple business units and oversees with business process improvements, many of which will have significant financial impact on the entire company
What we offer
What we offer
  • medical, dental, and vision
  • life insurance
  • critical illness insurance and accident insurance
  • disability benefits
  • retirement savings
  • paid time off (including vacation, holidays, and sick leave)
  • and parental leave
  • Fulltime
Read More
Arrow Right

Senior Analyst, Cyber Security

The Senior Analyst, Cyber Security supports the Manager, Cybersecurity & Network...
Location
Location
Canada , Vancouver
Salary
Salary:
90300.00 - 129000.00 USD / Year
canfor.com Logo
Canfor
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree or diploma in IT or related field
  • 5+ years enterprise experience across multi-site environments
  • Professional-level Security certifications preferred
  • Strong troubleshooting, documentation, and communication skills
  • Hands‑on experience with Microsoft Defender, Sentinel, Purview, or equivalent
  • Experience managing cloud security for Azure/M365/SaaS
  • Demonstrated ability to collaborate with MDR/SOC teams
  • Experience with privacy legislation (PIPEDA, BC PIPA)
  • Experience developing or maintaining incident response playbooks
  • Threat-informed defense (MITRE ATT&CK familiarity)
Job Responsibility
Job Responsibility
  • Plan, design, and implement enterprise security solutions
  • Resolve Tier 3 incidents and outages
  • Execute security projects and coordinate vendors
  • Maintain accurate documentation, runbooks, and inventories
  • Support for Zero Trust architecture, including network segmentation, identity hardening, and continuous monitoring
  • Responsibilities related to cloud security across Azure, M365, SaaS, and hybrid workloads
  • Oversight of third‑party risk, recognizing increased vendor dependence
  • Work with MDR (Managed Detection & Response) providers such as Arctic Wolf to improve detection, triage, and response maturity
  • Responsibilities related to governance frameworks (NIST CSF 2.0, CIS Controls v8)
  • Integration with privacy compliance (PIPEDA, BC PIPA) and corporate policy governance
What we offer
What we offer
  • performance-based incentive plans
  • recognition programs
  • benefits
  • paid leaves
  • pension plans with base and matching contributions
  • savings options
  • robust health & well-being initiatives
  • development of our talent
  • value proposition that promotes diversity, equity and inclusion
  • Fulltime
Read More
Arrow Right

Security Analyst Detect & Respond

Become a Security Guardian! We are seeking a highly motivated Security Analyst (...
Location
Location
Poland , Łódź
Salary
Salary:
Not provided
arrive.com Logo
Arrive
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of hands-on experience in a Security Analyst, SOC, or Incident Response role
  • Strong experience with SIEM platforms (e.g., Splunk, Sentinel, Crowdstrike, Rapid7)
  • Hands-on experience with EDR tools (e.g., CrowdStrike, Defender, SentinelOne)
  • Strong understanding of networking fundamentals, security principles, and common attack vectors
  • Excellent analytical, communication, and collaboration skills, with the ability to translate technical findings into business-impact language
Job Responsibility
Job Responsibility
  • Investigate and analyze security alerts from SIEM, EDR, Dark Web Monitoring & Cloud Security Tools
  • Provide comprehensive support for incident response activities, including containment, eradication, and recovery
  • Perform thorough root cause analysis and document incident findings
  • Develop and refine incident response playbooks
  • Work effectively and collaboratively with our Managed Security Service Provider (MSSP)
  • Conduct hypothesis-driven threat hunting across endpoint, network, and cloud environments
  • Leverage EDR tooling to detect lateral movement and suspicious activity
  • Stay continuously up-to-date on emerging threat intelligence and attacker behaviors
  • Managing the incident from the moment it is escalated by Tier 1 until final closure, ensuring adherence to established frameworks like the NIST or SANS incident response lifecycles
  • Acting as the primary technical point of contact during an active incident. This involves directing IT operations, network engineers, or system administrators on exactly what systems need to be isolated, patched, or restored
  • Fulltime
Read More
Arrow Right