Cyber Operations Purpose
Cyber Operations supports safe care and builds NHS England’s cyber resilience, supporting the Transformation Directorate’s purpose of delivering the best care and outcomes for the NHS.
Responsibilities
* Multi-Platform Threat Hunting at Scale – Run hunting queries and analytics across large datasets using a variety of cloud-based and hybrid security solutions.
* Custom Analytic and Detection Development – Write and review custom rules to deploy against national monitoring solutions to provide specialised monitoring to NHS bodies against common threat actor tactics and techniques.
* Specialist Incident Support – Provide technical support to CSOU IM function and NHS organisations during high complexity incidents.
Main Duties Of The Role
* Threat Hunt in Extended Detection and Response (XDR) and SIEM tooling.
* Deputise for the Cyber Security Senior Analyst (Threat Hunting) in their absence.
* Develop capability in support of Threat Operations requirements, including coding and technology development.
* Act as technical support in advanced forensic investigations in support of Security Operations function.
* Simulate adversary tactics, techniques, and procedures in support of detection development.
* Perform dynamic & static analysis of malicious programs and tools to support detection development.
* Develop automation workflows and playbooks to support threat hunting team workload.
Contact
Name: Anna Evans – Security Lead (Analyst) – england.cyberoperationsrecruitment@nhs.net
#J-18808-Ljbffr