Junior Cyber Security Analyst

Cyber Operations purpose is to support safe care and build public trust by building NHS England's cyber resilience and enabling the wider health system to be cyber resilient, supporting Transformation Directorate's purpose of delivering the best care and outcomes for the NHS.

The Cyber Operations sub-directorate consists of four operational areas:

• Cyber Security Operations Unit (CSOU & SIO)
• Cyber Delivery Unit (CDU)
• Cyber Improvement Programme
• Chief Information Security Office Function (CISO)

This is for a role within the NHS England CSOC, the Cybersecurity Operations Centre with a national remit across publicly funded healthcare in England.

Please be aware that should you be successful in this position, you will be hired to the job title of Security Officer and this job title is advertised to attract the right skills needed for the role.

Main duties of the job

You will be performing first line alert triage from our cybersecurity monitoring tooling, evaluating and investigating the alert before reaching a conclusion to supply back to the relevant external healthcare organisations or internal stakeholders.

You will have access to extensive technical monitoring tooling across networks, cloud environments, endpoint telemetry, collaboration and identity management services working to protect healthcare nationally.

You will be empowered to develop or use knowledge of cybersecurity tooling to automate and refine our systems to improve detection rates by developing new detection rules, or alleviate pain points for the SOC by tuning or automating existing content. You may review or guide the B5 analysts within your work area, as well as create and update standard process documentation and triage guides. You will support other areas of the CSOC team in assessing alerts and ensuring they are escalated and handled with the correct level of technical understanding for successful remediation by the affected organisations.

In the event of a major incident, depending on your experience, you may also support the incident response activities and onwards more detailed investigations.

The CSOC has an excellent training pathway for onwards development in our chosen toolsets, combining on the job training with industry recognised certifications and vendor qualifications which you will follow as part of a program of development and upskilling.

Person Specification Knowledge

• Knowledge of concept, procedures and processes of Security Information and Event Management (SIEM); ability to utilise related applications to protect organisational networks from cyber risks.
• Knowledge of tools, techniques and processes of intrusion detection and prevention; ability to detect, resolve and prevent intrusion behaviours to protect organisational networks.
• Knowledge of technologies, methods and tools of forensics investigations for IT security violations or potential threats; ability to identify, uncover and evaluate violations, warning reports, suspected incidents and insidious events.
• Knowledge of modules, processes and technologies of Information Security Operation Centre (ISOC); ability to detect, response and utilise related platform and applications to perform cyber security initiatives.

Skills and Experience

• Knowledge of techniques, approaches and processes of digital threats; ability to detect, monitor, analyse and prevent digital threats.
• Knowledge of methods and processes to monitor, analyse and respond to network attacks, intrusions or any unauthorised actions; ability to use techniques and tools to perform network defence.

Qualifications

• Post-graduate level degree in Cyber Security or relevant subject, or equivalent level of experience.

Disclosure and Barring Service Check

This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.

Employer name

NHS England

Address

£43,955 to £52,929 a yearper annum (this includes a RRP payment of 10%)

Contract

Permanent

Working pattern

Full-time

Reference number

990-TDD-CY-EC2533-E