Cybersecurity Analyst- Defence and Aerospace

We are seeking a proactive and detail-orientedCybersecurity Analystto join a leading engineering and technology organisation operating across Defence, Aerospace, and Industrial sectors. This role is critical in safeguarding digital assets, ensuring compliance with regulatory standards, and supporting secure operations across complex, high-assurance environments. This is an exciting opportunity to join a new team to help grow and define your career!

• Monitor, detect, and respond to cybersecurity threats across enterprise and operational networks.
• Conduct vulnerability assessments and penetration testing to identify and mitigate risks.
• Support the development and implementation of cybersecurity policies, procedures, and standards.
• Collaborate with engineering and IT teams to ensure secure-by-design principles are embedded in systems and products.
• Maintain and update security tools including SIEM, endpoint protection, and identity management systems.
• Investigate security incidents, perform root cause analysis, and recommend corrective actions.
• Assist in compliance efforts with standards such as ISO 27001, NIST, and MOD-specific frameworks (e.g., JSPs, DEFSTANs).
• Contribute to risk assessments and the development of RMADS and other assurance documentation.
• Stay current with emerging threats, technologies, and regulatory changes.

• Proven experience in cybersecurity operations, ideally within Defence, Aerospace, or other regulated sectors.
• Strong understanding of network security, threat intelligence, and incident response.
• Familiarity with SIEM platforms, firewalls, IDS/IPS, and endpoint protection tools.
• Experience with regulatory frameworks such as ISO 27001, NIST SP800, and MOD standards.
• Ability to interpret and apply security controls in complex, multi-vendor environments.
• Excellent analytical, communication, and stakeholder engagement skills.

• Certifications such as CISSP, CISM, CEH, or Security+.
• Experience with secure cloud environments (Azure, AWS).
• Knowledge of secure software development practices and DevSecOps.
• Exposure to cross-domain solutions and secure communications systems.