Date live:20/08/2025
Business Area:Chief Information Security Office
Area of Expertise:Technology
Contract:Permanent
Reference Code:JR-0000065789
Join us as Cyber Operations Analyst -The Cyber Operations team’s mission, is to deliver 24x7x365 continuous and real-time Monitoring, Analysis, Incident Response, Threat Hunting and Intelligence services globally, across the Barclays enterprise – providing a coordinated suite of integrated functions; enabling us to identify, prevent, monitor and respond to threats against our customers, colleagues and the Barclays estate. There is an opportunity to work with a wide range of technologies across varying incident types
You will do 1st/2nd line analysis, triage and escalation of security events within the SIEM, through to escalation and remediation of detected security incidents. In addition, you will coordinate and support remediation activities within scope and utilise existing processes and technologies in place, to detect, respond and prevent malicious electronic attacks to Barclays’ networks and network estate; provide guidance to identify attacks, attacker’s suitable mitigation techniques.

To be successful as a Cyber Operations Analyst, you should have experience with

• Proficiency in SIEM technologies & usability in a Large & Complex Computing Environment.
• Analysis and response of detected security incidents, timely escalation, and drive to ensure the closure of incidents.
• Identify attacks and malware (Trojans, Ransomware, and others.) analysing event data generated from proxy, endpoints, IDS, MPS, network devices and others.

Some other highly valued skills may include

• In-depth knowledge of the Cyber Kill-Chain, Intelligence-driven defence and security architectures.
• Proficiency of Operating System fundamentals and OS Security (Windows & Linux); Networking Principles, Protocols, & Practices.
• Understanding of Ethical Hacking from the perspective of a Blue-team member; the countermeasures and mitigation controls which can be implemented to minimise the threat landscape and risk to an organisation.

You may be assessed on the key critical skills relevant for success in role, such as risk and controls, change and transformation, business acumen strategic thinking and digital and technology, as well as job-specific technical skills
This role will be based out of our Knutsford office

ACCOUNTABILITIES

• Management of security monitoring systems, including intrusive prevention and detection systems, to alert, detect and block potential cyber security incidents, and provide a prompt response to restore normal operations with minimised system damage.
• Identification of emerging cyber security threats, attack techniques and technologies to detect/prevent incidents, and collaborate with networks and conferences to gain industry knowledge and expertise.
• Management and analysis of security information and event management systems to collect, correlate and analyse security logs, events and alerts/potential threats.
• Triage of data loss prevention alerts to identify and prevent sensitive data for being exfiltrated from the banks network.
• Management of cyber security incidents including remediation & driving to closure.

To monitor the performance of operational controls, implement and manage security controls and consider lessons learnt in order to protect the bank from potential cyber-attacks and respond to threats.