Digital Forensic & Incident Response Senior Analyst

End Date

Salary Range

We support flexible working – click here for more information on flexible working options

Flexible Working Options

Job Description Summary

Job Description

JOB TITLE: Digital Forensic & Incident Response Analyst

SALARY: £45,954 - £51,060

LOCATION(S): Edinburgh

HOURS: Full-time

WORKING PATTERN: Our work style is hybrid, which involves spending at least two days per week currently, or 40% of our time, at our office location.

About this opportunity

We are recruiting a new Security Analyst to support across one of these three core services: Threat Hunting, Incident Response, Malware Analysis and Digital Forensic Investigations. The successful candidate will need to have a strong technical background with experience in at least one of the three disciplines detailed above, as well as significant and in-depth knowledge of specific Cyber Security applications and/ or processes. The candidate would also be expected to act as a Subject Matter Expert ("SME") for security incidents and provide support and guidance as required.

We love to do things differently in Chief Security Office (CSO). We encourage our employees to challenge the status quo and to come up with new and innovative idea. We're focused on creating a values-led culture and are committed to building a workforce which reflects the diversity of the customers and communities we serve. Together we’re building a truly inclusive workplace where all our colleagues can make a real difference.

Sounds an exciting prospect, right? 

What you’ll be doing as our new Security Analyst:
As our Security Analyst you’ll support across one of three core services within the Digital Forensics and Incident Response (DFIR) team; Incident Response, Malware Analysis, Digital Forensic Investigations and Threat Hunting. You will have a proven technical background with experience in at least one of the three disciplines detailed above, as well as significant and in-depth knowledge of specific Cyber Security applications and/ or processes. You would also be expected to act as a Subject Matter Expert for security incidents and is 'on point' to provide support and guidance as required.

The Digital Forensics and Incident Response (DFIR) team’s role is to ensure the integrity of the Lloyds Banking Group corporate network whilst maintaining situational awareness. This is done by hunting for unidentified threats, responding to and containing cyber security incidents, and performing forensic analysis where required in order to protect the bank, our colleagues and its customers.

The day to day as our Security Analyst:

• Manage your own workload effectively, keeping all stakeholders engaged and updated when working on an incident, including confirming timescales of activity

• Complete comprehensive and robust investigation of the case or task in hand, ensuring where an active threat has been identified that it is escalated/contained in a timely, effective manner

• Always consider the risks to the Group

• Identify shortcomings and suggest improvements to existing processes and procedures

• Maintain the highest levels of confidentiality

• Keep yourself up to date with changes to the external threat landscape and how that impacts the team

Why Lloyds Banking Group

Like the modern Britain we serve, we’re evolving. Investing billions in our people, data, and tech to transform the way we meet the ever-changing needs of our 26 million customers. We’re growing with purpose. Join us on our journey and you will too.

What you’ll need

• Experience within Security Operations or a similar role

• Awareness of Cyber Security industry related standard methodology

• Good knowledge and understanding of Windows and Linux operating systems

• Good understanding of TCP/IP and underlying network protocols

• Knowledge and experience of investigating using any Event Detection and Response (EDR) and Security Information and Event Management (SIEM) toolsets

• Knowledge of any scripting languages (e.g. Python, Perl, Shell, VBA)

• Produce quality and timely reporting for incidents and forensic investigations

• Strong attention to detail

• Diagnostic skills and an ability to analyse technical information from various sources

• Knowledge of threats from both internal and external sources

• Demonstrable systematic and analytical approach to problem solving with the ability to resolve specific security issues or events

Any experience of these would be really useful

• Knowledge of CISSP, CISM, GIAC, CEH and similar security related qualifications

• Good understanding of other technologies (e.g. firewalls, proxies, IDS/IPS)

• Knowledge of processes and toolsets used in forensics investigations

• Knowledge of processes and toolsets used in security incident detection and handling

• Experience of performing analysis during security incidents to support the response procedures

About working for us

Our focus is to ensure we're inclusive every day, building an organisation that reflects modern society and celebrates diversity in all its forms. We want our people to feel that they belong and can be their best, regardless of background, identity, or culture. We were one of the first major organisations to set goals on diversity in senior roles, create a menopause health package, and a dedicated Working with Cancer initiative. And it’s why we especially welcome applications from under-represented groups. We’re disability confident. So, if you’d like reasonable adjustments to be made to our recruitment processes, just let us know.

We also offer a wide-ranging benefits package, which includes:

• A generous pension contribution of up to 15%

• An annual performance-related bonus

• Share schemes including free shares.

• Benefits you can adapt to your lifestyle, such as discounted shopping.

• Generous holiday allowance, with bank holidays on top

• A range of wellbeing initiatives and generous parental leave policies

Want to do amazing work, that’s interesting and makes a difference to millions of people? Join our journey.

At Lloyds Banking Group, we're driven by a clear purpose; to help Britain prosper. Across the Group, our colleagues are focused on making a difference to customers, businesses and communities. With us you'll have a key role to play in shaping the financial services of the future, whilst the scale and reach of our Group means you'll have many opportunities to learn, grow and develop.

We keep your data safe. So, we'll only ever ask you to provide confidential or sensitive information once you have formally been invited along to an interview or accepted a verbal offer to join us which is when we run our background checks.  We'll always explain what we need and why, with any request coming from a trusted Lloyds Banking Group person. 

We're focused on creating a values-led culture and are committed to building a workforce which reflects the diversity of the customers and communities we serve. Together we’re building a truly inclusive workplace where all of our colleagues have the opportunity to make a real difference.