Junior Cyber Security Analyst

Job summary

Cyber Operations purpose is to support safe care and build public trust by building NHS England's cyber resilience and enabling the wider health system to be cyber resilient, supporting Transformation Directorate's purpose of delivering the best care and outcomes for the NHS.

The Cyber Operations sub-directorate consists of four operational areas:

• Cyber Security Operations Unit (CSOU & SIO)
• Cyber Delivery Unit (CDU)
• Cyber Improvement Programme
• Chief Information Security Office Function (CISO)

This is for a role within the NHS England CSOC, the Cybersecurity Operations Centre with a national remit across publicly funded healthcare in England.

Please be aware that should you be successful in this position, you will be hired to the job title of Security Officer and this job title is advertised to attract the right skills needed for the role.

Main duties of the job

You will be performing first line alert triage from our cybersecurity monitoring tooling, evaluating and investigating the alert before reaching a conclusion to supply back to the relevant external healthcare organisations or internal stakeholders.

You will have access to extensive technical monitoring tooling across networks, cloud environments, endpoint telemetry, collaboration and identity management services working to protect healthcare nationally.

You will be empowered to develop or use knowledge of cybersecurity tooling to automate and refine our systems to improve detection rates by developing new detection rules, or alleviate pain points for the SOC by tuning or automating existing content. You may review or guide the B5 analysts within your work area, as well as create and update standard process documentation and triage guides. You will support other areas of the CSOC team in assessing alerts and ensuring they are escalated and handled with the correct level of technical understanding for successful remediation by the affected organisations.

In the event of a major incident, depending on your experience, you may also support the incident response activities and onwards more detailed investigations.

The CSOC has an excellent training pathway for onwards development in our chosen toolsets, combining on the job training with industry recognised certifications and vendor qualifications which you will follow as part of a program of development and upskilling.

About us

NHS England has a wide range of statutory functions, responsibilities and regulatory powers. These are focused on supporting the wider NHS to deliver high quality care, as well as doing those things that are best done once for the whole NHS.

Our staff bring expertise across clinical, operational, commissioning, technology, data science, cyber security, software engineering, education, and commercial specialisms -- enabling us to design and deliver high-quality NHS services.

In March 2025, the Government announced that NHS England and the Department of Health and Social Care will increasingly merge functions, ultimately leading to NHS England being fully integrated into the department.

If you currently work within the NHS and if successful at interview, we will initiate an Inter Authority Transfer (IAT) via the Electronic Staff Record (ESR).This retrieves key data from your current or previous NHS employer to support onboarding, including competency status, Continuous Service Dates (CSD), and annual leave entitlement. You may opt out at any stage of the process.

Colleagues with a contractual office base are expected to spend, on average, at least 40% of their time working in our offices.

Staff recruited from outside the NHS will usually be appointed at the bottom of the pay band.