Job summary
The Senior Security Analyst (Ops) sits within the Protective Monitoring function of the Cyber Security Operations Centre (CSOC). The CSOC is made up of Protective Monitoring, Incident Management, Threat Operations, Engineering and Consultancy. The role is a Tier 3 analyst in the Cloud Protective Monitoring Sub team.
Main duties of the job
* Provide Tier 3 security analytics and incident response for service‑specific security monitoring.
* Deputise for Security Lead (Analyst) in their absence.
* Act as an escalation point for Tier 2 analysts for incidents and investigations.
* Offer mentorship and guidance to Tier 2 analysts to support others and their own growth and development.
* Keep up to date with the latest security and technology developments, including researching and evaluating emerging cyber security threats and ways to manage them.
* Use advanced analytic tools including SIEMs and Cloud Consoles to determine emerging threat patterns and vulnerabilities.
* Apply experience and knowledge to assist with investigations of triggered security alerts.
* Support with the development and automation of SOC processes, to mature the security monitoring service.
* Assist with the refinement of Use Cases and identification of areas for improvement of overall security posture.
Residency and Security Clearance Requirements
All NHS England Cyber Security personnel must hold Security Clearance level as a minimum. To meet National Security Vetting requirements, SC clearances require 5 years continuous UK residency. In certain cases, this can be reduced to three years continuous UK residency, with additional overseas checks for the previous two years. Candidates who were posted abroad for service with HM Government, Armed Forces or within a UK government role – will still be considered.
Applicants must meet these requirements before applying. Failure to achieve the required Security Clearance after an offer will result in the job offer being withdrawn.
Knowledge (Essential)
* Working knowledge of concept, procedures and processes of Security Information and Event Management (SIEM); ability to utilise related applications to protect organisational networks from cyber risks.
* Proven knowledge of tools, techniques and processes of intrusion detection and prevention; ability to detect, resolve and prevent intrusion behaviours to protect organisational networks.
Knowledge (Desirable)
* Working knowledge of concept, issues and techniques of cloud security; ability to ensure security compliance of cloud infrastructure in various circumstances.
Skills & Experience (Essential)
* Extensive knowledge of techniques, approaches and processes of digital threats; ability to detect, monitor, analyse and prevent digital threats.
Skills & Experience (Desirable)
* Working knowledge of concept, issues and techniques of endpoint security; ability to ensure security compliance of endpoint infrastructure in various circumstances.
Qualifications (Essential)
* Masters level degree in Cyber Security or a relevant subject, or equivalent level of experience.
Recruitment and Retention Premia (RRP)
The post of Senior Security Analyst has been awarded a Recruitment and Retention Premia (RRP) in response to current labour market conditions. In recognition of this, the role attracts an additional monthly RRP payment equal to 20 % per annum. Please be aware that RRP is non‑contractual and subject to review.
Disclosure and Barring Service Check
This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.
#J-18808-Ljbffr