Cyber Security & Automation Analyst
Full TimeJob Overview
The Cyber Security & Automation Analyst is a key member of cybersecurity operations team, responsible for protecting internal and client environments across both Managed Service Provider (MSP) and Managed Security Service Provider (MSSP) services. Acting as the front line of defense, this role is focused on monitoring, analysing, and responding to security events, while also leveraging intelligent automation to enhance speed, accuracy, and service efficiency.
The Cyber Security & Automation Analyst is a key member of cybersecurity operations team, responsible for protecting internal and client environments across both Managed Service Provider (MSP) and Managed Security Service Provider (MSSP) services. Acting as the front line of defense, this role is focused on monitoring, analysing, and responding to security events, while also leveraging intelligent automation to enhance speed, accuracy, and service efficiency.
Key Responsibilities :
- Cyber Security:
- Assist in comprehensive security assessments, risk evaluations, and compliance audits.
- Conduct proactive threat hunting, incident response, and vulnerability remediation.
- Develop tailored security strategies for client environments along-side Cyber Security Leads.
- Ensure all work aligns with CIS cybersecurity frameworks and is performed to best practise standards.
- Automation:
- Build and maintain PIA and n8n automations to enhance service and security operations.
- Integrate PSA, RMM, SIEM, and M365 systems through automation workflows.
- Continuously evaluate opportunities to improve detection, response, and reporting efficiency through automation.
- Maintain clear documentation and change control for all automations implemented.
Requirements:
- Experience:
- 2–4 years’ experience in cybersecurity operations, SOC analysis, or incident response roles within an MSP/MSSP or enterprise environment.
- Demonstrated experience using or supporting SOC & SIEM platforms and Endpoint Detection & Response (EDR) tools such as Microsoft Defender for Endpoint.
- Exposure to automation and workflow tools, particularly PIA.ai, n8n, or similar platforms, or a proven understanding for automation and workflows.
- Deep understanding of the Microsoft ecosystem and security products.
- Skills Cyber Security:
- Security Monitoring & Response: Skilled in investigating SIEM alerts, Defender notifications, and security logs to identify potential threats, false positives, or misconfigurations.
- Vulnerability Management: Familiar with scanning, interpreting, and remediating vulnerabilities using tools such as Nessus, Defender Vulnerability Management, or Qualys.
- Cloud Security: Understanding of Microsoft 365 Defender, Azure Security Center, or equivalent cloud-based protection and compliance tools.
- Incident Management: Execute rapid triage, containment, and remediation of security events following best-practice frameworks.
- Skills Automation & Workflow Development:
- Automation & Integration: Design, build, and maintain workflow automations using PIA and n8n to enhance MSP/MSSP service delivery, reduce manual workloads, and improve response times.
- Process Engineering: Identify repetitive tasks and operational inefficiencies, proposing data-driven automation improvements.
- Scripting & Logic: Apply PowerShell, Python, or low-code tools to develop integration logic between platforms (e.g., PSA, RMM, SIEM).
- Service Optimisation: Collaborate with the service desk and infrastructure teams to implement scalable, secure, and auditable automation practices.
- Qualifications (Preferred):
- Preferred Certifications
- Microsoft Certified: SC-100, SC-200, SC-300 or AZ-500.
- Microsoft Certified: CCSP. o AZ104 - Azure Administrator Associate.
- Certified information systems security professional: CISSP.