Cyber Security Analyst Job Description Template for Recruiters and Hiring Managers

A Cyber Security Analyst protects an organisation's information assets by identifying, analysing and responding to security incidents. Candidates with technical background in IT or information security, strong analytical skills and a methodical approach to risk are encouraged to apply.

Cyber Security Analyst Job Profile

The Cyber Security Analyst is responsible for monitoring security posture, detecting threats and coordinating incident response activities. This role focuses on protecting systems and data through continuous monitoring, vulnerability assessment and collaboration with technical teams to implement and maintain security controls.

The purpose of the role is to reduce risk to the organisation by identifying weaknesses, responding to incidents promptly and improving security processes. The postholder will provide timely analysis and clear reporting to technical and non-technical stakeholders.

Cyber Security Analyst Job Description

The Cyber Security Analyst will operate within a security operations or IT environment to maintain situational awareness across networks, systems and applications. Typical activities include analysing alerts and logs, triaging potential incidents, performing root cause investigations and coordinating remediation actions with system owners.

The role requires regular assessment of vulnerabilities and security controls, participation in risk assessments and contribution to the development and review of security policies and procedures. The analyst is expected to produce accurate incident reports, maintain documentation of investigations and recommend technical or procedural improvements to reduce recurrence.

Effective communication with IT teams, business stakeholders and third parties is essential. The role may involve working to incident response plans, supporting audits and compliance checks, and participating in on-call rotations as required by the organisation.

Cyber Security Analyst: Duties and Responsibilities

• Continuously monitor security alerts and system logs to detect suspicious activity and policy violations.
• Triages security incidents, performs initial analysis and escalates incidents according to defined procedures.
• Conducts detailed investigations to determine scope, impact and root cause of security events.
• Coordinates remediation efforts with infrastructure and application teams to contain and resolve incidents.
• Performs vulnerability assessments and prioritises findings based on risk and business impact.
• Supports patch management and configuration hardening initiatives to reduce exposure.
• Maintains incident records, documents evidence and prepares clear incident reports for stakeholders.
• Contributes to the development and review of security policies, standards and procedures.
• Assists with threat hunting activities and analysis of emerging threats and attack techniques.
• Participates in security testing, reviews of architecture and configuration audits to strengthen defences.
• Supports compliance activities and provides input for internal and external security assessments.
• Delivers security awareness input to colleagues and assists in promoting secure working practices.
• Maintains up to date documentation of systems, controls and incident response playbooks.
• Works collaboratively with cross functional teams to ensure security requirements are integrated into projects.

Cyber Security Analyst: Requirements and Qualifications

• Bachelor's degree in computer science, information security, or related technical discipline, or equivalent practical experience.
• Proven experience in a security operations, incident response or information security role.
• Strong understanding of network fundamentals, operating systems and common attack vectors.
• Experience analysing logs and security events from multiple sources and prioritising incidents.
• Knowledge of vulnerability assessment concepts and risk-based remediation prioritisation.
• Familiarity with incident response processes, digital evidence handling and reporting requirements.
• Good problem solving skills and the ability to work calmly under pressure during incidents.
• Effective verbal and written communication skills with the ability to explain technical issues to non-technical audiences.
• Attention to detail and a methodical approach to maintaining accurate records and documentation.
• Ability to work both independently and as part of a multi-disciplinary team to deliver security outcomes.
• Understanding of relevant regulatory and compliance requirements applicable to information security.
• Basic scripting or automation skills to support analysis and routine tasks are desirable.
• Professional certification in information security or related field is desirable but not mandatory.