Senior Cyber Security Analys
Job summary
We are seeking a highly skilled and motivated Senior Cyber Security Analyst to join our Digital team. This is a pivotal role within the Digital Team in delivering cyber security services across the Trust and wider health and care system.
This role is ideal for someone who brings experience of cyber operations and can apply that knowledge to strengthen and evolve our detection and response capability in a complex NHS environment, where patient safety and operational continuity are critical.
The role will be involved in delivering digital safety, security and overall improvement, adhering to the Trusts objectives. The post holder will manage the delivery of all cyber security related services and applications.
This will include cyber risk management, Data Security Protection Toolkit (DSPT) compliance against cyber related assertions, policy and procedure lifecycle management, cyber alerts or other accreditations, ensuring appropriate responses to NHSE, Cyber Auditors and any other 3rd parties and ensuring the Trust's information compliance adheres to standards and industry frameworks for cyber security.
Main duties of the job
*Lead the day-to-day operation and ongoing development of our SOC and SIEM capability
*Own and continuously improve detection use cases, alerting, triage, and response processes
*Act as a technical lead for monitoring and detection, ensuring controls are effective, proportionate, and aligned to risk
*Investigate and respond to security incidents, providing clear, risk-based analysis and recommendations
*Use threat intelligence and operational insight to continually improve detection capability
*Provide meaningful reporting and assurance on SOC performance and cyber posture
*Support the evolution of our future SOC model, including partnership working where required
*Provide guidance and mentoring to colleagues, helping to build capability and embed effective SOC and incident response practices across the team.
Why this role matters
*You will play a key role in strengthening our cyber resilience
*You will have real ownership and influence over how SOC services are delivered
*Your work directly supports frontline ambulance services and patient care
*You will help build a capable, sustainable internal cyber function
About us
Royal Papworth Hospital NHS Foundation Trust is the UK's leading heart and lung hospital, delivering care to more than 50,000 patients a year in its new state-of-the-art hospital in Cambridge. We perform the most heart and/or lung transplants in the UK and carried out the UK's first successful heart transplant in 1979. It also offers emergency heart attack treatment, sleep centre care and is one of just five centres nationally for those in severe respiratory failure.
Based on the Cambridge Biomedical Campus the largest centre of medical research and health science in Europe the Trust is at the heart of treatments of the future. Royal Papworth became the first hospital trust in the country to be rated outstanding in all five areas assessed by the Care Quality Commission - a rating it still holds today. The Trust holds its values of compassion, excellence & collaboration at its core, and all colleagues joining the team are expected to uphold these in their day-to-day roles & interactions. Royal Papworth is proud of its diverse workforce and encourages people to embrace their individuality.
The Trust values difference and welcomes all applications irrespective of age, disability, gender reassignment, marriage and civil partnership, pregnancy & maternity, race, religion & belief, sex and sexual orientation. Providing they meet the minimum post criteria, applicants with disabilities will be offered an interview.
For a street view tour: https://royalpapworth.nhs.uk/virtual-tour
Job description
Job responsibilities
On this page you will find a Role Profile which provides information about the hospital and full details about the role. We recommend that you review this and refer to it as you complete your application. Please include how you will meet the Trust Values Compassion, Excellence and Collaboration. If you would like more information about the role or working at Royal Papworth Hospital, please get in touch with the contact for this role.
Person Specification
Qualifications
- Degree level qualification relevant for the role or demonstrable equivalent level of experience.
- Specialist cyber related qualifications such as CISSP, CompTIA, ISACA etc.
- Previous experience of working in digital in the NHS or a healthcare setting.
- Previous experience of managing a team.
Experience
- Evidence of continued professional development
- Ability to generate statistics/analysis, write reports and develop business cases.
- Ability to prepare and produce concise yet insightful communications for dissemination to senior stakeholders and a broad range of external stakeholders and business partners as required
- Previous experience of working to tight KPI's/targets.
- Previous experience of imputing into strategic plans and policies.
- Previous experience of project and change management skills and/or techniques.
- Experience of Threat Hunting and Intelligence gathering along with associated methodologies.
- Good understanding of ISO 27001, 27002, GDPR, NIST, CSF, OWASP & ATT&CK Framework.
- IT security assessment and risk management using best practice IT security standards
- Experience in working with SIEM tools, Microsoft Defender for Endpoint, XDR, Network Intrusion Detection & Prevention Systems, Firewalls/Proxies.
- Ability to work proactively under own initiative, take responsibility and demonstrate leadership.
- AV system design implementation and concept documentation
- Good understanding of TCP/IP
- Ability to deal with many conflicting priorities
- Ability to cope with new and changing demands, dealing with complex issues requiring good analytical and problem-solving skills
- Ability to work autonomously
- Experience of managing, leading and motivating a team.
- Handling complex organisational issues and constraints.
- Experience of facilitating change in practice to improve services
- Leading projects
- Knowledge of the Information Governance Toolkit (or equivalent standards).
- Business case development and annual long term planning
- Leading service changes to improve performance
- Identifying and interpreting national policy and implementing required changes
Additional Criteria
- As well as being able to demonstrate examples of how they work in a way that is consistent with our values of compassion, excellence and collaboration the successful candidate will be able to clearly demonstrate a commitment to driving culture change through equality, diversity and inclusion.
- Treat all colleagues, patients, visitors in a manner that meets equal opportunities and good practice
- Able to foster excellent working relationships at all levels
- Able to build relationships with ease, gaining trust and maintaining confidentiality.
- Demonstrates care and compassion in all aspects of work.
- Commitment to CPD of self and others; maintaining up to date knowledge of the appropriate regulations to enable adherence and to implement new regulations as required.
Disclosure and Barring Service Check
This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.
UK Registration
Applicants must have current UK professional registration. For further information please see NHS Careers website.
Employer details
Employer name
Royal Papworth Hospital NHS Foundation Trust
Address
Trustwide
Papworth Road
Cambridge Bio Medical Campus
Cambridge
CB2 0AY
United Kingdom
Employer's website
https://royalpapworth.nhs.uk/working-here