Description
We are committed to the development of our workforce. This position is only available to applicants who already work for Surrey County Council. We thank you for your interest in our roles and would encourage you to review our vacancies which are open to all.
This role has a starting salary of £53,713 per annum, for working 36 hours per week.
We are excited to be recruiting a Senior Security Analyst to join our fantastic team based at Woodhatch Place in Reigate. We offer a hybrid working model with a minimum of two office days per week.
Our Offer to You
1. 26 days' holiday, rising to 28 days after 2 years' service and 31 days after 5 years' service (prorated for part time staff)
2. Option to buy up to 10 days of additional annual leave
3. A generous local government salary related pension
4. Up to 5 days of carer's leave and 2 paid volunteering days per year
5. Paternity, adoption and dependents leave
6. An Employee Assistance Programme (EAP) to support health and wellbeing
7. Learning and development hub where you can access a wealth of resources
8. Wellbeing and lifestyle discounts including gym, travel, and shopping
9. A chance to make a real difference to the lives of our residents.
About The Role
As a Senior Security Analyst, you will play a central role in strengthening Surrey County Council's cyber resilience. Your day-to-day work will include proactive security monitoring across our hybrid cloud and on premises environment, triaging and investigating alerts, and supporting coordinated incident response activities. You will operate our vulnerability management processes, translate threat intelligence into actionable defences, and contribute to the improvement of detection content and security controls. You will also work closely with IT colleagues and suppliers to address risks, gather evidence for audits, and prepare clear reporting on security posture and emerging trends.
This role does not include direct line management responsibilities, but you will regularly provide specialist guidance, coaching, and support to colleagues across IT&D and partner teams.
Over the next 12 to 18 months, you will contribute to several high impact initiatives including:
10. Establishing a more mature, risk based vulnerability management lifecycle and reducing exposure windows across critical systems
11. Enhancing incident response readiness through improved playbooks, scenario testing, and lessons learned processes
12. Uplifting monitoring coverage and the effectiveness of SIEM/EDR/NDR tooling, including tuning and detection improvements
13. Strengthening supplier assurance processes, especially for cloud and SaaS services
14. Supporting the development of updated cyber security policies, standards and operating procedures
This is a pivotal role for a motivated cyber professional who wants to make a measurable difference. You will directly influence Surrey County Council's operational security posture and help reduce risk across services that support residents, communities, and frontline operations. Your insights and expertise will shape decision making, improve control maturity, and contribute to a safer, more resilient public service environment.
Your Application
In order to be considered for shortlisting, your application will clearly evidence the following skills and align with
15. Strong experience in cyber security operations, including alert triage, investigation, and incident response
16. Demonstrable capability in vulnerability management and translating technical risk into meaningful actions
17. Ability to analyse complex information and present clear, concise reports and recommendations
18. Proven ability to work collaboratively with technical and non technical stakeholders
19. Commitment to continuous professional development and staying current with emerging threats
20. High-level proficiency with security tooling (SIEM, EDR, cloud security tools) and modern IT environments
21. Alignment with our values of accountability, teamwork, and inclusive service delivery
To apply, we request that you submit a CV and you will be asked the following 4 questions:
22. Give an example of how you have helped build a positive security culture across teams.
23. Describe a time when you led or contributed to triage, investigation, or response during a cyber security incident. What actions did you take, and what was the outcome?
24. Give an example of when you identified a significant technical vulnerability or risk. How did you communicate it to stakeholders, and what actions were taken as a result?
25. Tell us about a situation where you analysed complex security information or data and produced a report or recommendation. How did you ensure your findings were clear, concise, and actionable?
Before submitting your application, we recommend you read the job description and our to get an insight into working at Surrey.
Contact Us
Please contact us for any questions relating to the role. This could be to discuss flexible working requests, transferable skills or any barriers to employment.
The job advert closes at 23:59 on 24/03/2026, with interviews planned to follow shortly thereafter.
We look forward to receiving your application,