Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
LSEG (London Stock Exchange Group)

Senior Attack Monitoring Analyst, GSOC

LSEG (London Stock Exchange Group)

Senior Attack Monitoring Analyst responsible for identifying and responding to cyber security incidents. Joining Global Security Operations team at London Stock Exchange Group in London, United Kingdom.

Posted 4/17/2026full-timeLondon • 🇬🇧 United KingdomSeniorWebsite

Tech Stack

Tools & technologies
Cyber SecurityJavaPythonSplunkTCP/IP

About the role

Key responsibilities & impact
  • Triage security events and employ a methodical and coherent response to security incidents adopting playbooks where necessary.
  • Competently operate a chosen SIEM (e.g., Splunk/QRadar/LogRhythm) for incident investigations, or for the development of monitoring dashboards.
  • Utilise playbooks, existing knowledge and accurate online resources for guidance when responding to incidents.
  • Utilise online resources for researching and collecting threat intelligence to improve the SOC’s abilities to detect cyber-attacks.
  • Develop new, or improve existing run books and use cases based on investigations and knowledge of modern attacks.
  • Stay up to date with current vulnerabilities, attacks, and countermeasures.
  • Identify, respond and remediate cyber events generated through monitoring technologies.

Requirements

What you’ll need
  • Preferred experience with operating or administrating a SIEM (e.g., Splunk/QRadar/LogRhythm).
  • Solid understanding of networks including the TCP/IP stack, typical organisation architectures, and common protocols abused by malware.
  • Experience in security event analysis & triage, incident handling and root-cause identification.
  • Understanding of tools, techniques and procedures that attackers use to compromise organisations, ideally from direct experience.
  • Knowledge of cyber security either academically or within corporate environments.
  • Ability to work in a fast-paced and demanding environment while remaining calm.
  • Strong verbal and written communication and collaboration skills.
  • Security industry specific and core technical accreditations such as OSCP, GIAC, CCNA.
  • Certification demonstrating SIEM operational competences.
  • Proficient with one or more programming languages (e.g., Python, PowerShell, Java, C#).

Benefits

Comp & perks
  • Healthcare
  • Retirement planning
  • Paid volunteering days
  • Wellbeing initiatives

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
SIEMSplunkQRadarLogRhythmTCP/IPincident handlingroot-cause identificationprogramming languagesPythonPowerShell
Soft Skills
calm under pressureverbal communicationwritten communicationcollaboration
Certifications
OSCPGIACCCNASIEM operational competence