Asta Capital Limited

About the Company

Asta is the leading third party managing agent at Lloyd's and our principal activity is the start-up and management of Lloyd's syndicates. We are able to provide syndicate management on a permanent basis or under a turnkey arrangement leading to eventual migration to full independence and the syndicate's own managing agency platform.

By combining the traditional values of client service with modern, effective ways of doing business and unrivalled resources we have created the Asta Advantage.

- Asta currently manages eighteen Lloyd's syndicates, seven Syndicates-in-a-Box, one SPA, two MGAs and £5.5 billion of GWP.

- Asta has over a decade of experience setting up Lloyd's businesses, with a first class track record of approvals from Lloyd's.

- Asta has a team of experienced insurance professionals with proven success in their specialist fields, backed by dedicated support staff.

Listed Jobs

Company Name

Asta Capital Limited

Job Title

Senior Security Analyst

Job Description

**Job Title:** Senior Security Analyst **Role Summary:** Senior Security Analyst responsible for enhancing organizational security posture through security engineering, incident response, and vulnerability management. Focused on infrastructure hardening, threat detection, Microsoft 365 security optimization, and compliance with global standards (ISO 27001, NIST). Requires collaboration across IT, DevOps, and risk teams to drive automation, threat hunting, and operational resilience. **Expectations:** Proven experience in security engineering/incident response, expertise in infrastructure hardening (IAM, PAM, network security), and managing Microsoft 365 security. Ability to lead incident triage, containment, and remediation. Must possess strong automation, threat intelligence, and compliance (e.g., SOC2, ISO 27001) skills. **Key Responsibilities:** - Implement and optimize infrastructure security controls (IAM, PIM, PAM), zero-trust architectures, and security automation in CI/CD pipelines. - Monitor SIEM, EDR, and network tools for real-time threat detection, triage alerts, respond to incidents, and drive remediation. - Manage Microsoft 365 security policies, address alerts (Defender for Office 365, Azure AD Identity Protection), and track improvements. - Conduct vulnerability assessments (Tenable, Pentera) and coordinate remediation with IT teams. - Collaborate on threat intelligence, detection rule tuning, and proactive threat hunting. - Support compliance audits (ISO 27001, SOC2), maintain security documentation, and prepare risk/metrics reports. - Enable operational resilience via business continuity planning and post-incident reviews. **Required Skills:** - Infrastructure security (hardening, zero-trust, SIEM/EDR tools). - Microsoft 365 security (conditional access, identity protection). - Incident response, threat intelligence, and vulnerability management. - Automation of security controls (CI/CD pipelines, policy enforcement). - Strong communication for technical/non-technical stakeholders. **Required Education & Certifications:** - Bachelor’s in Computer Science, Cybersecurity, or related field. - Certifications: CISSP, CISA, CEH, or equivalent (preferred). - Experience: 5+ years in cybersecurity, including Microsoft 365 and SOC2 compliance.

London, United kingdom

Hybrid

Senior

23-02-2026