Cyber Security Analyst

Job Summary

Working in the NHSBSA Cyber Security Operations Team, you will monitor & review security alerts and security tooling information, to ensure the security of the network and information systems, maintaining a solid knowledge of our information security practices ensuring timely security support is provided to satisfy business needs.

You will work with business stakeholders to understand and shape their security requirements, ensuring that customer data and other assets are secured, while enabling open and modern secure digital services.

You will assist with maintaining the organisations Cyber Security Operations functions supporting the team manager in developing and supporting a range of products and services.

You will work under general direction and within a clear framework of accountability you will exercise substantial personal responsibility and autonomy to plan own workloads to meet objectives and delivery timeframes.

What do we offer?

• Hybrid working - offering flexibility to work predominantly from home with the opportunity to be office based should you prefer, or if business needs require it.
• 27 days leave (increasing with length of service) plus 8 bank holidays.
• Opportunities for development
• Active wellbeing and inclusion networks
• Excellent pension
• Various salary sacrifice schemes
• Employee Assistance programme, offering free 24/7 support for you and your loved ones
• Access to a wide range of benefits and high street and online discounts

Main duties of the job
Specialist Skills

• Provide support for Security systems, using your initiative to ensure the security, availability and stability of NHSBSA services;
• Analysing technical, security and statistical data and resolving complex issues when security is impaired, escalating when necessary.
• Identify through research and investigation, security threats providing analysis and evaluation in a timely manner.
• Working collaboratively with colleagues in the Information security function conduct risk assessments.
• Provide Security awareness training for non-Security staff in the safe and secure use of Information Technology.
• Maintain an understanding and be aware of developments in the cyber security threat landscape.
• Work within NHSBSA's policies, standing orders, financial regulations and legislative requirements.
• Work collaboratively with colleagues and customers to deliver high-quality secure technology services.
• Create and maintain operating instructions, user guides and reference/ training material to be used by a technical and non-technical audience.
• Complete own assigned tasks to a high quality and within agreed timelines. Pro-actively proposing improvements to enhance own and business areas.
• Actively identify your development and training needs within this specialism to maintain and develop your skills in Cyber Security to meet the requirements of the business.

About us

Here at the NHS Business Services Authority (NHSBSA), what we do matters. We manage the NHS Pension scheme, process prescription payments and much more. Our services are used by NHS organisations, contractors and the public: we're proud to be part of something meaningful, that touches millions of lives. We design our services around customer needs and place people at the heart of our organisation. That's why when you join us, you'll be empowered and supported to help your career grow. As one of the UK's Best Big Companies to work for, we're connected to our values: Collaborative, Adventurous, Reliable and Energetic. We care about our people, our purpose, and your progress. We strive to offer a fantastic colleague experience, where every colleague is heard, supported and respected. Wellbeing, diversity and inclusion is at the centre of this, and you can join our Lived Experience Networks who help us bring our authentic selves to work. We're committed to being a flexible employer and we try to offer a working pattern that suits you where possible, through hybrid working, flexible hours and more. Alongside a competitive salary with pay progression, we offer a people-centric benefits package, connecting you to the rewards and benefits you value most! Ready to join us in delivering business service excellence to the NHS, helping people live longer, healthier lives? Apply today and see where the NHSBSA can take you. We are people connected to care.

Job Description
Job responsibilities
In this role, you are accountable for
Specialist Skills

• Provide support for Security systems, using your initiative to ensure the security, availability and stability of NHSBSA services;
• Analysing technical, security and statistical data and resolving complex issues when security is impaired, escalating when necessary.
• Identify through research and investigation, security threats providing analysis and evaluation in a timely manner.
• Working collaboratively with colleagues in the Information security function conduct risk assessments.
• Working collaboratively with Security architects, network specialists and 3rd party providers develop and improve network security.
• Develop knowledge and systems related to Cryptographic services.
• Provide Security awareness training for non-Security staff in the safe and secure use of Information Technology.
• Maintain an understanding and be aware of developments in the cyber security threat landscape.
• Work within NHSBSA's policies, standing orders, financial regulations and legislative requirements.
• Work collaboratively with colleagues and customers to deliver high-quality secure technology services.
• Create and maintain operating instructions, user guides and reference/ training material to be used by a technical and non-technical audience.
• Complete own assigned tasks to a high quality and within agreed timelines. Pro-actively proposing improvements to enhance own and business areas. Escalating issues at appropriate times.
• Actively identify your development and training needs within this specialism to maintain and develop your skills in Cyber Security to meet the requirements of the business. Mentored by more experienced colleagues in other Cyber Security tasks to extend your skills, experience and knowledge.

In addition to the above accountabilities, as post holder you are expected to

• Undertake additional duties and responsibilities in line with the purpose of your role and as agreed by your line manager.
• Demonstrate NHSBSA values and core capabilities in all aspects of your work.
• Encourage an environment where your own and colleagues safety and well-being is promoted.
• Contribute to a culture which values diversity and inclusion.
• Follow NHSBSA policies, procedures, and protocols as they apply to your role.

Working relationships
Responsible to: Cyber Security Operations Manager
Key relationships and connections

1. Security Architects
2. ICT Project teams
3. Third party suppliers
4. Internal and external stakeholders

Person Specification
Skills
Personal Qualities, Knowledge and Skills
Essential

• Exposure to one or more security tools
• Basic understanding of Secure development
• Inquisitive
• A strong focus on customer service
• Self-motivated
• Proactive

Desirable

• Has a real interest in information security and ensures they keep up-to-date with the latest Security news

Experience
Essential

• Recent security or support experience
• Experience of working as part of a team to provide a service to customers
• Experience of effectively learning new skills and developing oneself

Desirable

• Penetration testing
• Computer forensics
• Information Security Management Systems ISO27001
• Experience with software and security architectures.
• The production of ICT security reports/MI for relevant parties

Qualifications
Essential

• ICT qualification OR recent ICT experience

Desirable

• ITIL foundation qualification
• Other professionally recognised ICT certification
• ICT related degree