CybaVerse
Cyber Operator - Remote

How your CV stacks up
Upload your CV to see how well it fits this job role
?%
About The Role
Job Title: Cyber Operator (#CyberSecurity #CyberDefence #SOC #Investigation #IncidentResponse #Automation #ThreatIntelligence)
Location: UK (Remote, SC Cleared)
Salary: Up to £60,000 GBP
Reports To: Head of SOC & IR
Type: Full-time, Permanent
Operating Model: 4-on-4-off, 12hr Shifts
CybaVerse operates a lean, automation-driven security operations function built on our CybaOps platform. We do not run a traditional tiered SOC. There is no conveyor belt of copy-paste alerts, no rigid escalation chain, and no ceiling on what you can get involved in.
As a Cyber Operator, you will work directly within the operations function, handling real investigations, contributing to detection improvement, and getting hands-on with the tooling that powers the service. You will be expected to think, not just triage. When you spot something that should be automated or improved, you will have the space to say so and help fix it.
This role suits someone who has a solid grounding in security operations, is hungry to develop beyond alert handling, and wants to work in an environment where quality of thinking matters more than time-on-console.
We are not looking for someone to sit in a queue. We are looking for someone who wants to understand what they are seeing, improve how we see it, and get better every day.
What You Will Be Doing
- Actively contributing to the improvements of our customers' security posture and the CybaOps platform
- Conducting structured, threat-led investigations across endpoint, network, cloud, and identity environments using the CybaOps platform. You will:
- Build timelines
- Identify root causes
- Produce clear, actionable findings for our customers
- Leading and supporting Incident Response activities, including containment, eradication, and post-incident documentation and review
- Working with actionable Threat Intelligence to enhance response and identify emerging attacker Tactics, Techniques and Procedures (TTPs)
- Documenting and communicating findings to a very high standard for both internal records and customer-facing engagements
- Collaborating with the Head of SOC & IR and wider team to improve:
- Processes
- Runbooks
- Automation workflows
Reasons to use Rodeo
I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant — 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.
What We Are Looking For
Essential
- Deep passion for Cyber Security, and all things Cyber Defence
- Automation-led mindset – anything that can be automated should be automated
- Customer improvement-led mindset – ensuring that customer success is at the heart of your decision-making
- Genuine curiosity about how things work, and why attackers succeed
- Strong English written and verbal communication skills, with the ability to communicate technical findings to non-technical stakeholders
Desirable
- Experience within a multi-platform, vendor agnostic environment
- Exposure to SOAR tooling or any scripting/automation for operational tasks (Python, PowerShell)
- Experience leading Incident Response activities
- Familiarity with cloud environments: Azure, AWS, or GCP log sources and common misconfigurations
- Experience with network traffic analysis or IDS/IPS incident investigation
- Relevant certifications (useful context, but not a barrier)


Get help with your application
Your very own career expert that helps elevate your application to the next level.
How We Work
- A small team with varied work – You will not remain stuck in a defined lane before opportunities arise. From early on, you will:
- Handle real investigations
- Contribute to improvements
- Work alongside senior practitioners who will invest in your development
- Automation tackles repetitive tasks, allowing the team to focus on work requiring judgment
- Ideas for improvements are encouraged and valued
- No rigid tier-1 alert queue with no room for independent thinking
- No siloed role with a narrow remit and no path to growth
- A culture where junior team members are truly heard
What You Will Find Here
- Real investigations from day one – no filtered-down leftovers
- A team that values quality of thinking over volume of tickets closed
- Genuine support for your development and a clear progression path into more senior work
- A company in active growth with:
- Interesting clients
- A product actively evolving
“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”
Jessica, London
Skills