Cyber Security Analyst

As a SOC Analyst, you are the first line of defence against cyber threats targeting Admiral Insurance.

You will work as part of a 24/7 global Security Operations Centre across three regions, monitoring, triaging, and escalating security alerts affecting critical financial systems, customer data, and user accounts. The role requires seamless collaboration across regions, ensuring continuous security coverage through effective handover.

You will follow structured processes while developing the skills needed to understand how attacks happen and how to investigate them effectively. This role is designed for individuals with a strong interest in cyber security and a willingness to learn quickly in a real-world environment.

Key Responsibilities

Alert Monitoring & Triage

• Monitor alerts from SIEM platforms, Endpoint detection tools, Identity and access systems.

​Perform initial triage

• Validate whether alerts are true or false positives
• Classify severity based on defined criteria
• Identify potential impact on financial systems or users

Investigation 

• Conduct investigations using available tools and playbooks
• Login activity and user behaviour, Endpoint activity (processes, files, connections) indicators of compromise and threat actor behaviours
• Gather relevant evidence before escalation

Escalation & Incident Handling

• Escalate suspicious or confirmed threats to L2 Analysts
• Provide clear, structured evidence including what was detected, what has been checked, why it is suspicious/anomalous/malicious
• Playbook execution following predefined runbooks and response procedures, perform response actions where appropriate, ensure consistency and accuracy in all actions

Regional Handover

Perform structured handovers at shift end, including:

• Clear summary of active incidents and investigations
• Outstanding actions, risks, and priorities
• Relevant evidence, timelines, and analyst observations
•  Ensure no loss of context or investigative continuity during handover
• Adhere to defined handover standards to maintain operational resilience

Documentation and Continuous Learning

• Maintain accurate and detailed case notes
• Log Investigation steps, Findings, Actions taken
• Ensure documentation meets audit and regulatory standards
• Build knowledge of common cyber threats phishing, malware, credential theft etc
• Participate in training sessions, simulated attack exercises, knowledge-sharing within the SOC

Required Skills & Experience

Essential

• 2 years minimum experience as a Cyber Security Analyst
• Hands on experience with SIEM or endpoint tools
• An understanding of Networking (IP, DNS, HTTP)
• Operating systems (Windows fundamentals)
• Strong attention to detail
• Ability to follow structured processes
• Good written and verbal communication skills

Desirable

• Cyber labs experience (e.g., TryHackMe, Hack The Box)
• Entry-level certifications (e.g., CompTIA Security+, SC-200)
• Basic scripting knowledge (PowerShell, Python)

Admiral: Where You Can

We take pride in being a diverse and inclusive business. It's a place where you can Be You, and show up as you are. We’re committed to fostering a people-first culture where everyone is accepted, supported, and empowered to be brilliant. You can, Grow And Progress at a pace and direction that suits you, Make A Difference for our customers and each other, and Share in Our Future with all colleagues eligible for up to £3,600 of free shares each year after one year of service.

Everyone receives 33 days holiday (including bank holidays) when they join us, increasing the longer you stay with us, up to a maximum of 38 days (including bank holidays). You also have the option to buy or sell up to an additional five days of annual leave.

We’re proud of our people-first culture. In fact, we've been recognised as a Great Place to Work for Women, a Great Place to Work for Wellbeing, and an overall Great Place to Work for over 25 years! We’re fully committed to making sure your progression is not slowed or halted by barriers related to race, gender, age, sexuality or any of the protected characteristics.

Our fantastic benefits make sure our colleagues have a great work-life balance; You can view some of our other key benefits here.

Disability Confident Leader

As a Disability Confident Leader, for candidates with a disability or long-term health condition, that opt into the Disability Confident scheme, we’ll invite a fair and proportionate number of applicants that meet the essential requirements of the role to the first stage of our selection process.

If you need any adjustments or support with your application or during the recruitment process, just let us know. Please do email us or contact us on 07386697107. This number is dedicated to supporting candidates that require reasonable adjustments or support during the application process.

#LI-GN1