We are seeking a Senior CIRT Analyst to join our Cyber Defence team in London, UK. The role requires a detail-oriented, critical thinker with a strong grasp of cyber security and attacker tactics, techniques, and procedures (TTPs).

Requirements

Coordinate and triage response to cybersecurity events and conduct forensic analysis across endpoints, networks, cloud, and SaaS.
Integrate threat intelligence into investigations (e.g., enrich IOCs, map activity to MITRE ATT&CK, identify likely threat actors/TTPs, and assess potential impact).
Understand the threat landscape through collaboration with industry peers, FS-ISAC, trust groups, and commercial/open-source intelligence, translating insights into actionable recommendations.
Develop, maintain, and operationalize Incident Response playbooks and SOPs; include PIRs (Priority Intelligence Requirements), collection plans, and feedback loops to refine detections.
Work closely with the SOC to investigate incidents and deliver containment, remediation, and root cause analysis; produce high-quality intel-informed incident reports.
Create and tune detections (e.g., SIEM/SOAR, EDR) using intelligence signals (TTPs, behaviors, YARA/Sigma where applicable).
Produce and present consumable intelligence outputs (e.g., flash alerts, threat overviews, executive briefs) tailored to technical and non-technical stakeholders.
Contribute to vulnerability/threat surfacing (e.g., emerging CVEs, exploit trends) and advise on risk-based prioritization.
Deliver actionable incident and hunting metrics to management; assess detection coverage and recommend improvements.
Follow the end-to-end incident response lifecycle and support post-incident lessons learned with intelligence-driven enhancements.
Build an understanding of key S&P technology, systems, and business practices to contextualize threats and drive pragmatic defenses.
Participate in information-sharing activities (e.g., FS-ISAC submissions) in line with TLP and legal/compliance requirements.

Benefits

Health & Wellness
Flexible Downtime
Continuous Learning
Invest in Your Future
Family Friendly Perks
Beyond the Basics

Requirements

Coordinate and triage response to cybersecurity events and conduct forensic analysis across endpoints, networks, cloud, and SaaS.

Integrate threat intelligence into investigations (e.g., enrich IOCs, map activity to MITRE ATT&CK, identify likely threat actors/TTPs, and assess potential impact).

Understand the threat landscape through collaboration with industry peers, FS-ISAC, trust groups, and commercial/open-source intelligence, translating insights into actionable recommendations.

Develop, maintain, and operationalize Incident Response playbooks and SOPs; include PIRs (Priority Intelligence Requirements), collection plans, and feedback loops to refine detections.

Work closely with the SOC to investigate incidents and deliver containment, remediation, and root cause analysis; produce high-quality intel-informed incident reports.

Create and tune detections (e.g., SIEM/SOAR, EDR) using intelligence signals (TTPs, behaviors, YARA/Sigma where applicable).

Produce and present consumable intelligence outputs (e.g., flash alerts, threat overviews, executive briefs) tailored to technical and non-technical stakeholders.

Contribute to vulnerability/threat surfacing (e.g., emerging CVEs, exploit trends) and advise on risk-based prioritization.

Deliver actionable incident and hunting metrics to management; assess detection coverage and recommend improvements.

Follow the end-to-end incident response lifecycle and support post-incident lessons learned with intelligence-driven enhancements.

Build an understanding of key S&P technology, systems, and business practices to contextualize threats and drive pragmatic defenses.

Participate in information-sharing activities (e.g., FS-ISAC submissions) in line with TLP and legal/compliance requirements.

Senior CIRT Analyst

About the Company

Job Description

Requirements

Benefits

Similar Jobs

Senior CIRT Analyst

Cyber Security Risk Analyst

SOC Insider Threat Lead Analyst (VP)

Senior CIRT Analyst

About the Company

Job Description

Requirements

Benefits

Similar Jobs

Senior CIRT Analyst

Cyber Security Risk Analyst

SOC Insider Threat Lead Analyst (VP)

Job Details

About S&P Global - Internal