Cyber Security Analyst; Security Advisor​/Analyst

Job Summary

Cyber Operations supports safe care and builds public trust by improving NHS England’s cyber resilience and enabling the wider health system to be cyber resilient, supporting the Transformation Directorate’s purpose to deliver the best care and outcomes for the NHS.

• Deputise for Senior Analysts in their absence, supporting oversight of cloud security monitoring and response activity.
• Act as an escalation point for Tier 1 Junior Analysts for cloud security incidents, alerts and investigations.
• Offer mentorship and guidance to Tier 1 Junior Analysts to build capability in cloud threat monitoring, investigation and response.
• Keep up to date with the latest security and cloud technology developments, including researching and evaluating emerging cyber threats affecting cloud services and platforms.
• Use advanced analytic tools, including SIEM and cloud security platforms, to identify emerging threat patterns, suspicious activity and vulnerabilities across cloud environments.
• Apply experience and knowledge to support the investigation and triage of cloud security alerts, incidents and anomalous activity.
• Assist with the refinement of cloud detection use cases and identify opportunities to improve monitoring coverage and overall security posture.
• Provide technical support to NHS organisations in investigating and responding to cloud security incidents.

• Supervise and mentor Tier 1 Junior Analysts.
• Investigate and triage cloud security alerts and incidents.
• Research and evaluate emerging cloud threats.
• Refine detection use cases and improve monitoring coverage.
• Collaborate with NHS organisations on incident response.

• Working knowledge of Security Information and Event Management (SIEM) concepts, procedures and processes; ability to utilise related applications to protect organisational networks from cyber risks.
• Proven knowledge of intrusion detection and prevention tools, techniques and processes; ability to detect, resolve and prevent intrusion behaviours.

• Knowledge of methods and processes to monitor, analyse and respond to network attacks, intrusions or unauthorised actions; ability to use techniques and tools to perform network defence.
• Knowledge of Information Security Operation Centre (ISOC) modules, processes and technologies; ability to detect, respond and utilise related platforms and applications for cyber security initiatives.

• Proven knowledge of techniques, approaches and processes of digital threats; ability to detect, monitor, analyse and prevent digital threats.

• Introductory knowledge of forensics investigation technologies, methods and tools for IT security violations or potential threats; ability to identify, uncover and evaluate violations, warning reports, suspected incidents and insidious events.

• Bachelor’s Degree in Cyber Security or a relevant subject, or equivalent level of experience.

All NHS England Cyber Security personnel must hold Security Clearance (SC) as a minimum. A minimum of five years continuous UK residency is required for SC clearance, with certain conditions allowing a reduction to three years with additional overseas checks.

The post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975, requiring a Disclosure to the Disclosure and Barring Service to check for any previous criminal convictions.

Employer:

NHS England
Address:
Wellington Place Leeds/Hexagon House Exeter, Leeds/Exeter, LS1 4AP
, United Kingdom