Senior Cybersecurity Analyst - Incident Response & SIEM

About Realty Income

Realty Income (NYSE: O), an S&P 500 company, is a real estate partner to the world's leading companies. Founded in 1969, we invest in diversified commercial real estate and have a portfolio of 15,600 properties in all 50 U.S. states, the UK and six other countries in Europe, with a gross book value $58bn. We are known as The Monthly Dividend Company and have a mission to deliver stockholders dependable monthly dividends that grow over time. Since our founding, we have declared 656 consecutive monthly dividends and are a member of the S&P 500 Dividend Aristocrats index, having increased our dividend for the last 30 consecutive years.

You will be joining one of the largest Real Estate Investment Trusts in the world as we rapidly expand into the UK and European markets, including moving into new offices at 3 St. James's Square.

The European portfolio, including the UK, has grown significantly since our first international acquisition, a £429m 12-property portfolio from Sainsbury's in 2019. In just five years the portfolio now includes investments of over €11bn, and 483 distinct properties.

Be a part of this growth story for a world leading Real Estate Investment Trust! Working in this global role you will contribute to the Info Sec team's expansion in Europe, empowering your career and allowing you to take on additional responsibility and challenges, whilst you broaden your experience and skillsets.

Position Overview

Reporting to the Associate Director, European IT and operating under the supervision of the global Information Security program, the Senior Information Security Analyst supports the day to day operations of the global Information Security program, with a focus on security alert triage, incident investigation, and operational effectiveness across the environment.

This role is responsible for monitoring and responding to security alerts, performing assigned operational tasks, and optimizing security tooling to improve detection quality and reduce false positives. The position operates within a centralized global security function and collaborates across regions to ensure consistent handling of security incidents.

The Senior Information Security Analyst contributes to the continuous improvement of information security processes and procedures, supporting compliance activities aligned with frameworks and standards such as the NIST Cybersecurity Framework, GDPR and SOX.

Key Responsibilities

• Monitor, triage, and investigate security alerts in coordination with the Security Operations Center (SOC) and internal teams.
• Analyze and validate potential security incidents, ensuring accurate classification, documentation, and escalation.
• Perform daily operational information security tasks, including the management and resolution of ServiceNow incidents assigned to the Information Security team.
• Support incident response efforts through investigation, coordination, and detailed documentation of findings.
• Participate occasionally in an on call rotation as required to support timely response and escalation of security incidents outside of business hours, ensuring appropriate handover, documentation, and continuity of incident management.
• Tune and optimize security tools, including SIEM and endpoint protection platforms, to improve alert fidelity and reduce false positives.
• Collaborate with internal technology teams to ensure appropriate logging, monitoring, and alerting capabilities are in place across systems.
• Work closely with the IT Service Desk, Operations, and development teams to support vulnerability identification and ensure remediation is prioritised and delivered within agreed SLAs.
• Work closely with global and regional stakeholders to support consistent security operations and incident handling across time zones.
• Support security awareness initiatives through participation in training, workshops, and knowledge sharing activities.
• Partner with the global Information Security team to review, streamline, and develop security processes, procedures, and incident response playbooks, while maintaining accurate, current documentation aligned with approved standards.
• Promote a culture of security across the organization through engagement and collaboration.
• Performs other duties as assigned.

Candidate Requirements Knowledge, Skills, and Abilities Must have for the role:

• Suitable experience in an Information Security role.
• Some previous relevant experience in a technical IT role (System Administration/Network Administration/DevOps).
• While we do not set upper or lower limits of experience for any of our vacancies, candidates with at least 4 - 8 years' suitable experience are likely to have the right level of knowledge and experience. Combination of education, training, experience, skills and other characteristics that would provide the requisite knowledge and abilities in support of the essential job functions.
• Must have Cybersecurity certification(s) (CISSP, Sec+, CCSP, CEH) or equivalent.
• Knowledge of security frameworks and regulatory compliance standards (NIST CSF, SOX ITGC, GDPR, etc.).
• Working technical knowledge and hands on experience securing enterprise IT environments within predominantly Windows based and cloud hosted ecosystems, with experience applying Zero Trust security principles across identity, endpoint, and access domains.
• Demonstrated experience in incident response, threat detection, vulnerability management, and securing workloads operating at enterprise scale.
• Strong ability to analyze, prioritize, and respond to security alerts and vulnerabilities within the context of business operations and risk tolerance.
• Experience with incident response processes and best practices, including investigation, escalation, and documentation.
• Knowledge of cloud security principles, particularly within Microsoft Azure environments.
• Strong written and verbal communication skills include the ability to clearly document findings and risks to technical and non technical stakeholders.
• Demonstrate commitment to continuous learning, staying current with emerging threats, technologies and industry trends.
• Hybrid working arrangements, in the office Monday / Tuesday / Wednesday / Thursday.
• May require infrequent travel to remote sites.
• Make yourself available outside of normal working hours for security incidents.

Desirable but not essential:

• Experience working in the financial services or investment industries.
• Bachelor's degree in information security or related field or equivalent combination of education and experience.

This role is subject to enhanced compliance and disclosure requirements comparable with those of a regulated financial services organization, including conflict of interest disclosures and personal trading policies.

Our Mission & Values

For more than 50 years, Realty Income has been guided by our mission to invest in people and places to deliver dependable monthly dividends that increase over time. We do this by nurturing long term, meaningful relationships that enable people to achieve a better financial outlook. We understand that when individuals succeed financially, they are able to provide for their families, support local businesses and pursue their greatest ambitions-creating a lasting positive impact on communities.

Realty Income is committed to diversity and inclusion and welcomes all applicants regardless of age, disability, gender reassignment, marriage and civil partnership, pregnancy and maternity, race, religion or belief, sex, sexual orientation or educational background.