• Review and respond to security alerts and tickets generated from the client’s monitoring and security platforms • Investigate and triage alerts related to endpoint security, email threats, suspicious authentication attempts, and network security events • Perform incident response activities including documentation, remediation actions, and escalation handling • Validate email and phishing-related incidents using Mimecast and other workflows • Monitor endpoint alerts and investigate identity/authentication alerts from Microsoft environments • Support security investigations involving firewall alerts and authentication platforms

• Development of use cases and detection rules. • Assisting in the conception and design of detection strategies. • Collaboration with the SOC for use case validation and acceptance. • Refinement and optimization of existing detection rules. • Creating dashboards and reports for customers or the internal SOC. • Contributing to internal knowledge sharing and process development.

Role Description Make a difference. Every role at CQC contributes to our mission. If you’re looking for a new role in Cyber Security that gives a true sense of meaning and purpose, then you’ve found it! Our team helps keep CQC’s systems and data safe, so we can focus on improving health and care for everyone. Picture this: You’re working in a supportive team, investigating security alerts, making sense of complex information, and helping reduce risks across the organisation. Your work helps keep systems safe and ensures we respond quickly to emerging threats. As a Security Operations Analyst, you will: - Lead the early investigation of a suspected data breach, analysing information from multiple systems to provide clear recommendations that protect sensitive data. - Carry out in-depth research into cyber threats and trends, using advanced tools to identify patterns and suggest improvements to strengthen our security approach. The role involves: - Managing security incidents: Act as a key contact for security alerts, queries, and incidents, ensuring they are logged, assessed, and handled quickly to reduce risk. - Investigating and analysing threats: Carry out detailed investigations into cyber incidents, including root cause analysis, and suggest clear actions to prevent repeat issues. - Improving security and resilience: Work with internal teams and partners to fix vulnerabilities, strengthen defences, and support the ongoing development of our security tools and processes. Qualifications - Experience investigating and responding to cyber security incidents, including analysing data and recommending actions to reduce risk. - Hands-on experience using Microsoft security tools such as Sentinel, Defender XDR, or Entra to monitor, detect, and respond to threats. - Experience working with recognised security standards or frameworks (such as ISO 27001, GDPR, or similar) and applying them in day-to-day work. Requirements - To progress your application, you’ll need to provide evidence of your right to work in the UK. Without valid right to work you won’t be eligible for the role. - We are unable to offer sponsorship for this role. - Some roles may also be subject to a satisfactory DBS check. Benefits - Annual leave starting at 27 days per year, rising to 32.5 days with service, plus bank holidays (usually 8 days per year). - Training and development opportunities. - Wellbeing initiatives, such as gym discounts and meditation. - NHS pension scheme, with around 14% employer contribution. - Discount schemes (including eligibility for a Blue Light card, at a cost of £4.99 and valid for 2 years), reward vouchers, car leasing and more!

Role Description In this role, you will be part of the Global Information Security team within Kinaxis. You will support various functions including: - Security Operations - Digital Forensics - Threat Intelligence - Risk Assessments - Security Audits Overall, you will assist and contribute to the global team in day-to-day analysis tasks and in fun wider team security projects. This will allow you to learn and gain experience in both analytical and interpersonal skills. Qualifications - Currently enrolled in a program where information security is the primary focus - Good understanding of non-technical aspects of information security - Basic understanding of industry standards and best practices related to Systems, Networks, Identity, and Security management - Good understanding of Cloud platforms and services especially as it relates to Security - Strong problem-solving and analytical skills - Excellent verbal and communication skills - Self-starter Requirements - Participate in the Security Incident Response Process - Conduct review of security logs from systems - Correlate and identify potential incidents or areas of risk - Analyze suspicious e-mails when required - Support vulnerability and penetration tests on target systems - Identify compromised systems on the network and assist with containment and mitigation - Identify and propose key information security program priorities, initiatives, plans, practices and tools - Provide guidance (e.g., information security risk severity assessments / relative cost benefit analysis / business impact analysis etc.) and provide recommendations regarding prioritization of investments and projects that mitigate risks, strengthen defenses and reduce vulnerabilities - Implement and support approved information security projects - Support internal and external security audits - Collaborate across the company to ensure information security risks in both ongoing and planned operations are properly considered and that all compliance matters are being adhered to as required - Monitor information security trends and evolving technologies and keep senior management informed about related information security issues and implications for the Company - Understand potential and emerging information security threats, and vulnerabilities and communicate this information to appropriate team members throughout the Company on a timely basis - Assist with disaster recovery and business continuity planning - Perform technical risk assessments and reviews of new and existing applications and systems, including data center physical security and environment - Train users and promote security awareness to improve defenses and the security culture within the organization - Document and update operational security procedures and diagrams Benefits - Flexible vacation and Kinaxis Days (company-wide days off) - Flexible work options - Physical and mental well-being programs - Regularly scheduled virtual fitness classes - Mentorship programs, training, and career development - Recognition programs and referral rewards - Hackathons