Cyber Security Analyst
| Dyddiad hysbysebu: | 28 Mai 2026 |
|---|---|
| Cyflog: | £39,959 i £48,117 bob blwyddyn |
| Gwybodaeth ychwanegol am y cyflog: | £39959 - £48117 a year |
| Oriau: | Llawn Amser |
| Dyddiad cau: | 14 Mehefin 2026 |
| Lleoliad: | Sheffield, S6 1LX |
| Cwmni: | NHS Jobs |
| Math o swydd: | Parhaol |
| Cyfeirnod swydd: | C9457-26-0157 |
Crynodeb
The Cyber Security Analyst role is part of the Digital Technical Services team and reports directly to the Infrastructure and Cyber Security Manager. This position is responsible for supporting the Trusts cyber security capability by maintaining and continuously improving security tools, technologies, and processes. The post holder will monitor, analyse, and investigate potential security threats, ensuring the confidentiality, integrity, and availability of NHS systems and data. Working proactively, the Cyber Security Analyst will identify vulnerabilities, respond to incidents, and contribute to strengthening the organisations overall security posture. This role plays a critical part in protecting the Trust from evolving cyber threats while ensuring compliance with relevant industry standards, NHS guidelines, and regulatory requirements. The successful candidate will collaborate closely with internal teams and stakeholders to promote best practice, support risk management activities, and help drive ongoing security improvements across the organisation. Main Duties Provide professional advice on cyber security including phishing, computer security and cybercrime.Be responsible for advising and guiding stakeholders with the interpretation of relevant cyber policy to enable compliance with organisational standards. Identify potential security risks and develop strategies to mitigate these. This involves receiving complex and sensitive information, to enable conducting risk assessments, analysing security threats, and developing risk treatment plans. Conduct risk assessments as appropriate and advise the Trust on IT Security concerns. Under the instruction of the Infrastructure and Cyber Security manager ensure IT Security risks are clearly identified, recorded, managed and directly communicated to Digital Senior Management Team accordingly. Maintain high level knowledge of new threat vectors, tactics, techniques and procedures (TTPs) and vulnerabilities. Maintain compliance with various standards in place e.g., Data Security and Protection Toolkit, NHS Cyber Alerts, Cyber Essentials, Network, and Information Systems Regulations etc. Liaise with NHS England, National Cyber Security Centre (NCSC) and other relevant bodies as required ensuring IT Security advisories, directives and notifications are actioned and logged. This includes but is not limited to threat & vulnerability alerts, vendor and other specialist threat intelligence feeds. Provide specialist technical contribution into drafting and/or maintaining of the Trusts formal Digital Security related policies.Respond to high-priority, complex, sensitive and critical events and incidents, in a timely manner. Provide actionable recommendations and mitigation measures to prevent or reduce the impact of potential breaches. Assist with the interpretation and communication of developments in national cyber security legislation, policy and best practice. (this will involve analysing complex digital information which is multifaceted where there may be a number of potential outcomes) Work with the Trusts Communications Team to formulate communication across the Trust to raise awareness and alertness to any cyber threats and best practices Analyse computer, server and network logs including vulnerabilities and known attacks and cross reference on the MITRE framework and known TTPs. this will involve analysing complex digital information which is multifaceted where there may be a number of potential outcomes. Ensure the ongoing management, maintenance and use of cyber security standard operating Procedures (SOPs).Prioritisation of work based on severity, knowing when and how to escalate as necessary and offering advice to technical team members around prioritisation. Ensure that all security and vulnerability releases are being deployed to all on premise and hosted servers and end point devices safely and effectively, using your judgement to mitigate any service impacting issues Regularly carry out research on products and services as part of your role, exploring findings and making use of effective new technologies. Support in the selection of controls and engage in risk assessments and controls gap analysis. Lead on specialised workstreams and projects such as undertaking cyber risk assessments, that are complex in their nature. Plan, prioritise and manage conflicting agendas and priorities in order to meet challenging deadlines. Provide specialist assistance to Digital Services on technical security issues including hands on technical configuration and day-to-day operation of devices and software.