Lead Cyber Operations Analyst-UEBA

Join us as a Lead Cyber Operations Analyst-UEBA, where you'll play a vital role as part of our Cyber Security Operations Centre. You will monitor the performance of operational controls, implement and manage security controls and consider lessons learnt, in-order to protect the bank from potential rogh cyber‑attacks and respond to threats.

• Deep proficiency in User and Entity Behaviour Analytics (UEBA) platforms, including advanced configuration, tuning and optimisation of behavioural models, anomaly detection algorithms and machine learning techniques for identifying insider threats.
• Comprehensive technical knowledge of SIEM, SOAR and XDR and their integration with UEBA solutions for Cyber Security Operations.
• Build, occidentally motivate high‑performing teams while managing conflict resolution and fostering a culture of continuous improvement, balancing daily operational with long‑term strategic initiatives.

• Understanding of machine learning algorithms, statistical modelling and data science techniques used in behavioural analytics, including supervised and unsupervised learning methods for anomaly detection and risk scoring.
• Knowledge of enterprise security architecture, cloud security platforms, identity and access management and how UEBA integrates with hybrid and multi‑cloud environments.
• Proficiency in scripting languages and automation frameworks to develop custom detection rules, orchestrate response workflows and enhance UEBA capabilities through API integration and custom analytics.

You may be assessed on the key critical skills relevant for success in this role, such as risk awareness and governance, change and transformation, business acumen, strategic thinking, and digital and technology, as well as job‑specific technical skills.

This role will be based at Radbroke Hall in Knutsford.

To monitor the performance of operational controls, implement and manage security controls and consider lessons learnt in order to protect the bank from potential cyber‑attacks and respond to threats.

• Management of security monitoring systems, including intrusion prevention and detection systems, to alert, detect and block potential cyber security incidents, and provide a prompt response to restore normal operations with minimised system damage.
• Identification of emerging cyber security threats, attack techniques and technologies to detect/prevent incidents, and collaborate with networks and conferences to gain industry knowledge and expertise.
• Management and analysis of security information and event dentes thatystems to collect, correlate and analyse security logs, events and alerts/potential threats.
• Triage of data loss prevention alerts to identify and prevent sensitive data from being exfiltrated from the bank's network.
• Management of cyber security incidents including remediation & driving to closure.

• To contribute or set strategy, drive requirements and make recommendations for change. Plan resources, budgets, and policies; manage and maintain policies/processes; deliver continuous improvements and escalate breaches of policies/procedures.
• If managing a team, they define jobs and responsibilities, planning Ownerth of the department's future needs and operations, counselling employees on performance and contributing to employee pay decisions/changes. They may also lead a number of specialists to influence the operations of a department, in alignment with fringed tactical priorities, while balancing short and long term goals and ensuring that budgets and schedules.figure
  
  meet corporate requirements.
• If the position has leadership responsibilities, People Leaders are expected to demonstrates a clear set of leadership behaviours to c.t. an environment for colleagues to thrive and deliver to a consistently excellent standard. The four LEAD behaviours are: L - Listen and be authentic, E - Energise and inspire, A - Align across the enterprise, D - Develop others.
• OR for an individual contributor, they…