Senior Security Operations Analyst

PPRO is seeking a highly motivated and experienced Security Operations Analyst to join our dynamic and growing security team. This role is critical to defending PPRO against a constantly evolving threat landscape. You’ll be responsible for detecting, analyzing and responding to security alerts, with a primary focus on developing and refining our detection capabilities through Security Incident & Event Management (SIEM) rule creation. You’ll be proactive, hands‑on and self‑driven, with a strong background in operational security and a passion for tackling complex challenges using cutting‑edge technologies. This role has scope and freedom to get involved in lots of different areas surrounding security operations in a dynamic, cloud‑native environment.

• Threat Detection and SIEM Management:
• Design, develop and implement custom detection rules, alerts and dashboards within our SIEM platform to identify emerging threats across both end‑user and production environments.
• Continuously tune and optimize existing rules to improve detection accuracy and reduce false positives.
• Proactively hunt for threats within our environment by analyzing logs and security data from various sources.
• Incident Response:
• Conduct thorough investigations of security alerts generated by endpoint detection & response systems, SIEM and cloud platforms.
• Manage the full lifecycle of security events from initial detection and triage to containment, eradication and post‑incident analysis.
• Clearly document and report on lessons learned from security events and incidents, design and implement recommendations for improving our security posture.
• Operational Security:
• Monitor, maintain and enhance our security tooling, ensuring optimal performance and coverage.
• Collaborate with Technology teams to integrate security monitoring and alerting into the CI/CD pipeline.
• Contribute to the development and improvement of security operations procedures and playbooks.
• Innovate, experiment, enhance Security Operations by making use of cloud‑native tools, AI and automation to build a best‑of‑breed SOC.
• Ownership:
• Must be highly capable of working autonomously and be a self‑starter, willing to take ownership and responsibility of all tasks. Evaluate and recommend new security technologies and tools to address both known and unknown gaps in our defenses.

• Strong hands‑on experience with SIEM platforms, including the creation and tuning of complex detection rules.
• Demonstrable experience with Endpoint Detection and Response (EDR) tools.
• Solid understanding of cloud security principles, CI/CD processes and DevSecOps environments.
• In‑depth knowledge of incident response methodologies and best practices.
• A proactive mindset with the ability to take ownership of tasks and projects and drive them to completion.
• Excellent analytical and problem‑solving skills, with a keen eye for detail.
• Scripting or programming skills (e.g., Python, PowerShell) for automation and analysis.
• Empathetic, thoughtful and business‑focused approach to understand how Security controls impact other business functions and customers.
• An understanding of regulatory compliance frameworks such as PCI DSS, DORA, SOC2, GDPR is a bonus.

We offer a hybrid structure with a 3 days / week on site expectation, so you can strike the balance between office and home working. In addition to our 28‑day holiday allowance, we also provide a work from abroad policy, enabling employees to work remotely for up to another 30 days per year.

We offer a GBP 1,000 annual budget to support your professional growth—because investing in your development benefits us all. In addition, we provide leadership cafés, on‑the‑job training, and other opportunities to help you grow your skills and thrive in your role.

Because better safe than sorry – we want our employees to benefit from various insurances including a medical insurance (BUPA health care plan) and a 5% matching pension plan through Now Pensions.

We understand the importance of family – that’s why we offer enhanced family leave to support you during key life moments.

Save on childcare through salary exchange.

PPRO helps contribute toward the costs of your gym membership, supporting your physical fitness journey while easing the burden on your wallet.

We’ve teamed up with a top well‑being platform to provide one‑on‑one therapy, chat therapy, therapist‑led courses, guided meditations, and more.

On Procter Street, is a short walk from Holborn, Farringdon and Covent Garden so if you’re a foodie there’s plenty nearby. The office is befitting a tech business and is set up for cross‑team collaboration.

Because work is better with your paw‑tners by your side.

We get things done: We are courageous; we take ownership, make decisions and get things done.

We act with trust and integrity: We listen first and challenge respectfully. We seek out and leverage diverse perspectives. We welcome and offer honest and open feedback, always assuming positive intent.

We put the customer first: We are laser focused on delivering outstanding outcomes for our customers. We put the customer at the heart of what we do.

We make things better: We boldly explore new ideas and have an unwavering commitment to continuous improvement.

We work as a team: We collaborate closely and value team success over individual achievement.