
How your CV stacks up
Upload your CV to see how well it fits this job role
?%
Cyber Security Analyst
Cyber Security Analyst – ARCHANGEL™ Protective Monitoring (ProMon) Team
About the Role
We are looking for a Cyber Security Analyst to join our ARCHANGEL™ Protective Monitoring (ProMon) team.
Our ARCHANGEL™ services provide specialist technical cyber security support across key sectors including construction, government, defence, and aerospace. The team focuses on thorough initial investigations into anomalous network activity to identify potential security incidents.
Beyond ARCHANGEL™, our Cyber Security division within Leonardo is a global leader in safety-through-technology, delivering tailored solutions for public administration, public safety, critical infrastructure, transport, post, and logistics.
Join our highly skilled team working from the Yeovil site, Monday to Friday, with opportunities to contribute to Leonardo’s future, develop your skills, and grow your career.
Responsibilities
The key responsibilities include:
- Providing monitoring, alerting, and incident handling services in line with Service Level Agreements (SLAs)
- Acting as the initial analytical reference point for:
- Identifying security incidents
- Quantifying their nature and extent
- Offering initial professional advice on business impact
- Reducing Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR)
- Advising on incident containment measures, including recommended initial actions, in collaboration with the Incident Response (IR) Team
- Providing advice on potential mitigation measures to prevent or limit recurrence, in collaboration with the IR Team
- Gaining a strong understanding of:
- Incident Response
- Cyber Kill Chain
- Threat Modelling
- Attack Vectors
- Working collaboratively to:
- Develop pertinent playbooks
- Create use cases and other relevant documentation
- Conducting proactive analysis across client networks by staying informed about current threats and trends
- Developing and maintaining a credible knowledge of current and emerging threats that may impact the integrity of the managed service
- Reviewing false positives and assisting in:
- Tuning SIEM (LogRhythm, Arcsight, Splunk, etc.) and IDS (Snort) rules
- Reducing false alerts while maintaining strong security alerting
- Creating reporting for both management and clients on:
- Security incidents
- Threat intelligence trends
Reasons to use Rodeo
I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant — 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.
Requirements
To excel in this role, you will need:
Essential Skills and Experience
- Excellent communication skills across all levels, with a focus on working effectively with customers
- Experience in Cyber Security, specifically:
- Protective Monitoring
- Incident Response
- Security Engineering
- Experience with:
- SIEM tools (LogRhythm, Arcsight, Splunk)
- IDS (Intrusion Detection Systems) such as Snort
- Strong knowledge of:
- IT security best practices
- Common attack types
- Detection and prevention methods
- Experience in:
- Analysing system, security, and application logs
- Diagnosing faults
- Detecting abnormal behaviours
- Strong organisational skills and attention to detail
- Ability to:
- Work independently
- Function effectively as part of a cohesive team
- Highly motivated, with an aptitude to learn new skills
Desirable Additional Skills
- Certifications:
- SANS SEC 503 – Intrusion Detection in Depth
- SANS SEC 504 – Incident Handling, Hacker Tools and Techniques
- SANS SEC 508 – Advanced Incident Response, Threat Hunting, and Digital Forensics
- SANS SEC 511 – Continuous Monitoring and Security Operations
- Knowledge and experience in:
- IT Service Management (ITIL)
- Standards and guidelines such as ISO27001, GDPR, and GPG-13 (Global Security Principles)
- Threat Intelligence methods
- Report Writing
Security Clearance
This role is subject to pre-employment screening in line with the UK Government’s Baseline Personnel Security Standard (BPSS). An additional range of Personnel Security Controls referred to as National Security Vetting (NSV) may apply, including:
- Meeting the eligibility requirements for The Security Check (SC) or Developed Vetting (DV).


Get help with your application
Your very own career expert that helps elevate your application to the next level.
For more information, visit: Leonardo’s Security and Vetting page.
Why Join Leonardo?
At Leonardo, our people are at the heart of everything we do. We offer:
Wellbeing and Support
- Generous leave entitlements, including the opportunity to accrue 12 additional flexi-days per year
- Free access to mental health support and financial advice
- Employee-led networks championing inclusion and diversity, including:
- Enable (carers)
- Pride (LGBTQ+)
- Equalise (disability)
- **Armed Forces’
- Wellbeing teams
- Ethnicity network
Career Development and Rewards
- Award-winning pension scheme, providing up to 15% employer contribution
- Bonus scheme available for all employees at management level and below
- Free access to 4,000+ online courses via Coursera and LinkedIn Learning
- Refer a friend scheme offering financial rewards
- Flexible benefits per year, valued up to £500, including:
- Private healthcare
- Dental
- Family cover
- Tech & lifestyle discounts
- Gym memberships
Leonardo is a global leader in Aerospace, Defence, and Security, employing over 53,000 people worldwide, including 8,500 across 9 UK sites.
At Leonardo, we are committed to building an inclusive, accessible, and welcoming workplace, promoting diversity in its many forms to drive innovation, creativity, and better outcomes.
If you have any accessibility requirements during the recruitment process, please let us know.
The Opportunity to Be Part of Something Bigger
Apply now and join a company that values intellectual curiosity, technological innovation, and teamwork—where your contributions make a meaningful impact on safety, security, and the future.
Primary Location: Yeovil, UK Contract Type: Permanent Employee Working Style: Hybrid (Onsite focus)
Be part of Leonardo’s legacy of excellence—join us today! 🚀
“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”
Jessica, London
Skills
Location