Cyber Security Analyst
On site
Colchester, United Kingdom
£ 52,809 / year
Full Time
07-04-2025
Job Specifications
Main area IT and Data Services Grade Band 7 Contract Permanent Hours Full time - 37.5 hours per week Job ref 828-PROVIDE3475
Employer Provide CIC Employer type NHS Site 900 The Crescent Town Colchester Salary £46,148 - £52,809 per annum Salary period Yearly Closing 30/04/2025 23:59
Job Overview
The Cyber Security Analyst is responsible for the identification and handling of threats, both internal and external, to the security of Provide and Provide group companies. The Cyber Security Analyst will be expected to research and identify cutting edge techniques and technologies which will strengthen the organisation’s cyber security position.
The Cyber Security Analyst will work closely with the Technology Security and Cloud Lead and Director of IT & Systems to ensure all areas of the Environment are maintained and developed to high standards, security is of the highest priority and part of the role will be to analyse gaps, recommend and implement improvements.
A strong knowledge of security hardening techniques, exploit mitigation and security incident management is essential and will be utilised when planning upcoming projects and BAU activities.
Main duties of the job
Provide strategic and technical expertise to design, implement, and manage advanced cybersecurity solutions.
Analyse security events and investigate security alerts, resolving or escalating appropriately.
Document security incidents, identifying process and tooling improvements.
Conduct security assessments through vulnerability testing and risk analysis.
Perform root-cause analysis of security breaches.
Develop and refine incident response playbooks.
Utilise threat intelligence to identify attack scale, type, and affected systems.
Act as primary contact for logging and managing security incidents and events.
Assist with internal and external audits, preparing required information.
Create and maintain security procedure manuals.
Promote cybersecurity awareness across the organisation.
Stay informed about legal, regulatory, and technological cybersecurity developments.
Communicate complex technical issues clearly to technical and non-technical stakeholders.
Use diplomacy and negotiation skills when agreeing priorities with senior management and suppliers.
Deliver technical presentations and training on cybersecurity topics.
Independently plan workload, make decisions, and implement improvements within organisational policies.
Act as lead specialist, resolving complex cybersecurity problems autonomously.
Assist with induction and professional development of junior team members.
Allocate tasks and oversee junior staff workload planning.
Working for our organisation
Provide is a Community Interest Company (social enterprise). We deliver a broad range of health and social care services in the community, and are committed to making sure that they are safe, responsive and of high quality. Provide is owned by its employees and has primarily social objectives. Any profits we make are reinvested into the local community or back into delivering services.
We work from a variety of community settings, such as community hospitals, community clinics, schools, nursing homes and primary care settings, as well as within people’s homes to provide more than 40 services to children, families and adults across Essex, Dorset, East Anglia and the North of England.
A Highly Respected, Award Winning Health And Social Care Provider. We Expect Our Staff To Demonstrate And Uphold Our Values At All Times
Vision: Transforming Lives
Values: Care, Innovation and Compassion
Mission: An ambitious, employee owned social enterprise, growing in size and influence. We transform lives by treating, caring and educating people.
Provide is an equal opportunity employer committed to building a team that represents a variety of backgrounds, perspectives and skills, proud to have LGBT+, Ethnic Minority and Men’s Networks.
We welcome applicants from underrepresented groups. If you have the skills and experience for the job, please apply regardless of your background.
Detailed Job Description And Main Responsibilities
Operational or Strategic Responsibilities
Provide analytical, strategic, and technical skills to design, develop, implement, and use state-of-the-art technology cybersecurity solutions aimed at reducing risk.
Analysing security event data arising from activity across the organisation with the goal of detecting malicious activity.
Investigating security alerts and incidents generated by security tools within the organisation, resolving or escalating as appropriate.
Producing documentation relating to the processing of alerts and incidents which includes the identification of improvements to processes and/or tooling.
Conducting security assessments through vulnerability testing and risk analysis.
Analysing security breaches to identify the root cause.
Define and mature ‘playbooks’ for response to cyber threats.
Use threat intelligence to pinpoint scale of the attack, the type of attack and systems affected.
Provide incident response for confirmed security incidents.
Be the point of contact for Security incidents, events and requests and ensure all are logged.
Assist with any internal and external audit requirements and collate information as necessary to respond to any queries where appropriate.
Creation and maintenance of procedure manuals.
Promoting Security awareness across the business.
Understand legal & regulatory requirements and procedures in place relating to Security.
Actively remain informed about new and evolving technological and cyber security change, including working towards and obtaining relevant professional certifications.
Communication And Relationship Skills
Use of tact and diplomacy when dealing with customers and suppliers.
Use of negotiation skills when setting and agreeing priorities with senior managers, e.g. when prioritising developments, agreeing system designs or new processes.
Give technical presentations and training on complex IT issues.
Communication of a range of complicated, detailed and difficult to explain multi-stranded IT issues to both peers and non-IT staff and suppliers.
Communication of complex IT issues and solutions with staff at various levels across the trust and to external technical teams, this requires excellent written and verbal communication skills.
Autonomy
Ensure their own training is up to date.
Keep up to date with national guidance and Provide policies, highlighting any required changes to the department’s manager.
Plan own workload and activities to meet project deadlines and provide user support.
Ability to work unsupervised and make decisions without referring to a manager to achieve agreed objectives.
Review, propose, develop and implement processes for own area of work.
Act as a lead specialist in own area of work.
Using knowledge gained through formal learning and work experience to make judgements on how to most effectively resolve IT problems where t...
About the Company
We are an ambitious, employee-owned social enterprise, growing in size and influence. We transform lives by treating, caring and educating people. We deliver a broad range of health and social care services in the community and are committed to making sure that they are safe, responsive and of high quality. We work from a variety of community settings, such as three community hospitals, community clinics, schools, nursing homes and primary care settings, as well as within peoples’ homes to provide over 50 services to child... Know more
Related Jobs
- Company Name
- Energy Jobline
- Job Title
- Security Architect
- Job Description
- Salary £85k + Benefits Based Bristol with Hybrid Working We are taking applications for this exceptional opportunity to work for our client, a global defence tech organisation as Security Architect. In this exciting role the successful candidate will be responsible for designing, implementing, and overseeing security infrastructure to protect products and systems from security threats. This role ensures security controls are integrated throughout the software development lifecycle, performs risk assessments, and collaborates with stakeholders to mitigate vulnerabilities. The Security Architect will also contribute to security compliance and best practices, ensuring products meet regulatory and industry standards. The Role Key Responsibilities Identify security requirements and integrate controls into product development. Conduct risk assessments, threat modeling, and vulnerability analysis. Develop and implement risk management strategies using security frameworks. Collaborate with development teams to ensure security best practices and secure-by-design principles. Identify and mitigate security risks in solution architectures. Create security documentation (e.g., RMADS, Security Assurance Documents). Support incident response and remediation efforts for security breaches. Provide security guidance and training to teams across the organization.The Person Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30/53, OWASP). Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138/139). Proficiency in security threat modeling and risk assessments. Knowledge of secure development practices, penetration testing, and vulnerability assessments. Ability to communicate security risks and strategies to technical and non-technical stakeholders. Experience in incident response and remediation. Strong Analytical And Problem-solving Skills.Qualifications & Requirements Degree in Cybersecurity, Computer Science, or a related field (or equivalent experience). Certifications such as CISSP, CISM, OSCP, GIAC ( but not mandatory). Must be eligible for SC security clearance. Experience working in defense, government, or high-security environments is a plus. Knowledge of cloud security architectures (AWS, Azure, GCP) is advantageous
- Company Name
- Wipro
- Job Title
- Network Security Engineer
- Job Description
- The company: Wipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO) is a leading technology services and consulting company focused on building innovative solutions that address clients’ most complex digital transformation needs. We are an exciting organisation to work for, ranked as a “Top Employer” as part of the Top Employer Institute annual listings. A company recognized globally for its comprehensive portfolio of services, strong commitment to sustainability and good corporate citizenship, we have over 250,000 dedicated employees serving clients across 66 countries. About the role: As a Lead Network Security Operations Center (NSOC) Engineer, you'll be responsible for overseeing and supporting the management of Network Security capabilities within the NSOC. You'll serve as a technical leader and provide guidance on incident, change, and problem management activities. Additionally, you'll actively seek opportunities to enhance the NSOC's overall capability and process workflow. This involves collaborating with key stakeholders to optimize Network Security capabilities, with the goal of improving user experience and enhancing the organization's security posture. This position will on occasion require you to field a call off hours. Key responsibilities: Provide expert guidance in operating, maintaining, and enhancing Network Security capabilities Serve as a technical escalation point for NSOC Engineers, including providing support during on-call rotations. Engage effectively with key stakeholders to ensure that the services supported by the NSOC meet customer and stakeholder requirements. Create and present regular performance reports to the Senior Leadership team. Mentor junior team members to support their professional development Lead problem management initiatives to identify key trends and execute remediation plans for recurring incidents. Skills & Experience: Hands-on experience with security technologies, including Palo Alto and Cisco ASA Extensive experience in leading and responding to incidents and change activities in a large enterprise environment. Strong experience maintaining, troubleshooting, supporting, and optimizing network security capabilities. Strong understanding of networking protocols and infrastructure designs, including cloud infrastructures, routing, firewall functionality, host and network intrusion detection systems, encryption, load balancing, and other network devices. Certifications: Cisco CCIE Security, Checkpoint CCSE/CCSM, Palo Alto PCNSE, F5 201/401 and Zscaler ZDTA/ZTCA Benefits: You will receive a competitive salary, a generous benefits package, training, and development, as well as an exciting career within a fast paced and dynamic business. The benefits include; Contributory pension Extra holiday purchase Life insurance policy Private medical insurance Equal Opportunities: Wipro is an advocate for positive change and conscious inclusion. As a global employer, we strive to create a diverse Wipro family by remaining committed to the development of our culture, diversity, equality, and inclusion in the workplace. All applicants welcome.
- Company Name
- KLA
- Job Title
- Cybersecurity Engineer
- Job Description
- Company Overview The SPTS division of KLA, designs, manufactures and markets wafer processing solutions for the global semiconductor and related industries. SPTS provides industry leading etch and deposition process technologies on a range of single wafer handling platforms. End-market applications include micro-electromechanical systems (MEMS), advanced packaging, LED, high speed RF device IC’s and power semiconductors. SPTS is part of KLA Corporation which develops industry-leading equipment and services that enable innovation throughout the electronics industry. We provide advanced process control and process-enabling solutions for manufacturing wafers and reticles, integrated circuits, packaging, printed circuit boards and flat panel displays. In close collaboration with leading customers across the globe, our expert teams of physicists, engineers, data scientists and problem-solvers design solutions that move the world forward. Job Description/Preferred Qualifications We are seeking a Cybersecurity Engineer with shown experience to join our team. This role focuses on representing the cybersecurity body within the organisation and supporting IT and cybersecurity teams in implementing and defining policies to meet organizational standards and harden systems to reduce the attack surface. The ideal candidate will be responsible for maintaining and improving existing cybersecurity systems, ensuring compliance with standards and regulations, and providing hands-on technical expertise. Your day to day responsibilities will include: Represent the cybersecurity organization within the KLA corporate. Support IT and cyber teams in implementing and defining policies to meet organizational standards. Harden systems to reduce the attack surface. Support IT teams in adapting sophisticated IAM solutions and Active Directory and Azure Active Directory (ENTRA ID) systems. Develop and implement policies and procedures for identity and access management. Conduct assessments and provide solutions to improve information security gaps. Collaborate closely with IT and cybersecurity teams to ensure compliance. Provide technical training and support to internal teams. Leading identity lifecycle and access management (IDM) and Identity Governance and Administration (IGA) policies working with IT teams Maintain existing systems and ensure their accurate functioning. Review the configuration of different systems to evaluate security controls. Handle daily requests through the corporate IT ticketing system. Conduct vulnerability assessments and security evaluations of complex systems. Develop and maintain comprehensive security testing plans. Automate security testing processes for networks, systems, and applications where possible. Consult with platform managers and systems administrators on security review results and remediation strategies, producing actionable, threat-based reports Install, operate, and maintain various cybersecurity products. Implement routine security reviewing processes. KLA is proud to be an equal opportunity employer! For this role we are looking for someone with: Familiarity with SCIM, CASB, and additional Azure services with demonstrated ability in identity and access management within IT or a similar role in cybersecurity. Practical experience with Active Directory and Azure Active Directory (ENTRA ID). Understanding of security protocols and compliance standards. Ability to analyze complex problems and provide creative solutions. Good interpersonal skills and ability to work in a team. Bachelor's degree in a relevant technological field would be an advantage. Relevant certifications in IT or cybersecurity, such as CISSP, CISM. Experience with IAM tools like Okta, SailPoint, or Ping Identity - an advantage. Understanding of MSA, GMSA, and equivalent technologies. Knowledge of PAM (Privileged Access Management) and Vault solutions. Enjoying working in a dynamic and exciting environment. Hands-on experience working with operating systems. Knowledge of security testing frameworks, such as OWASP. Proficient knowledge of Unix/Linux systems and Mac OS. Knowledge of at least one scripting language (Python, PowerShell, etc.). Experience with Windows client/server environments, VMware/Citrix, and cloud environments and technologies (e.g., AWS, Azure). Certifications such as CCNA, NCSA, Linux Essentials, CompTIA-Security+, (ISC)2-SSCP. What we will offer you! Our benefits package includes: Annual leave starting at 25 days (plus bank holidays), contributory pension scheme, cash health plan, cycle to work scheme, global bonus plan, share scheme, rewards scheme, life assurance, and overtime premiums. Minimum Qualifications We offer a competitive, family friendly total rewards package. We design our programs to reflect our commitment to an inclusive environment, while ensuring we provide benefits that meet the diverse needs of our employees. KLA is proud to be an equal opportunity employer Be aware of potentially fraudulent job postings or suspicious recruiting activity by persons that are currently posing as KLA employees. KLA never asks for any financial compensation to be considered for an interview, to become an employee, or for equipment. Further, KLA does not work with any recruiters or third parties who charge such fees either directly or on behalf of KLA. Please ensure that you have searched KLA’s Careers website for legitimate job postings. KLA follows a recruiting process that involves multiple interviews in person or on video conferencing with our hiring managers. If you are concerned that a communication, an interview, an offer of employment, or that an employee is not legitimate, please send an email to talent.acquisition@kla.com to confirm the person you are communicating with is an employee. We take your privacy very seriously and confidentially handle your information.
- Company Name
- TieTalent
- Job Title
- Senior Software Security Architect
- Job Description
- About We are searching for a Senior Software Security Architect / Senior Application Security Architect for a marketing leading and award-winning technology and data driven business. The position is offered on a remote basis. The role is hands-on and very software engineering focused - you will be responsible for establishing a secure SDLC and 'Secure by Design' approach/practice to be used by all of the Architecture and Software development teams. The Role Will Involve Developing, implementing, and maintaining application security architecture across the organisation. Ensuring our systems are designed with objectives like speed, scalability, robustness, zero-trust, automation and supportability at the core. Collaborating with the Architecture and Engineering Team to ensure security is an integral part of all development and deployment processes. Providing expert software security advice (design, coding, testing) to the Software Engineering Community, to InfoSec, DevOps and other teams. Defining and delivering secure software development of information to the software engineering teams. Escalating issues appropriately, to various teams and levels of authority inside the organisation. Interfacing with customers to ensure that security obligations are managed and met appropriately. About You To be considered for this Senior Software Security Architect / Senior Application Security Architect role you will be able to demonstrate a successful track record and in-depth practical experience of the Software Development Life Cycle (SDLC) - you will have an excellent understanding of Software Development and Software Testing and you will have a strong understanding of multiple programming languages, such as, C++, C, C#, .NET Core, Java, JavaScript, Node.js, Angular, React or similar. You Will Also Have/be Experience in creating application security strategies, standards, best practices, and providing direct input to project teams and business stakeholders is essential. Experience working with security issues in software architecture, software development, e.g. static and/or dynamic code analysis and tools, software dependency check, OWASP Top10 testing, application threat modelling. In-depth experience working in an Agile software development environment, with classic applications as well as microservices, using modern code processing and continuous integration and delivery tools (e.g. GitHub, Jenkins, Bamboo). Good expertise in taking security policy statements and translating them into actual, implementable, security controls and techniques that can make our software applications demonstrably more secure and robust. Good understanding of common information security management standards, frameworks, and laws / regulations: e.g. ISO 27001, NIST, GDPR. Experience of open-source security tools and how they could be used in an enterprise. Experience of securing Azure cloud workloads and environments. Please note, to be considered for this role you MUST have the Right to Work in the UK without company sponsorship and you MUST be based in the UK. The Senior Software Security Architect / Senior Application Security Architect position is offered with an excellent range of benefits including: - Generous Holiday Allowance - 25 days' holiday plus bank holidays, with the option of adding up to five (5) additional unpaid leave days per year. Annual Lifestyle Allowance to spend on an activity of your choice. Pension Scheme: Matched up to 6% for the first 3 years, and up to 10% thereafter. Private Health Insurance. Group Income Protection Scheme. Charitable Fundraising. Cycle to Work and Gym Flex Schemes. Internal Coaching and Mentoring. Training and Career Progression. Family-Friendly Policies. Remote Working. KEYWORDS Senior Software Security Architect, Senior Application Security Architect, SDLC, Secure by Design, Architecture, Software Development, Engineering, DevOps, InfoSec, Security, Security Strategy, Best Practice, Programming, Code, C++, C#, C, .NET Core, Java, JavaScript, Node.js, Angular, React, OWASP, Agile, Application Threat Modelling, Security Policy, Security Controls, ISO 27001, NIST, GDPR, Cloud, Azure. Please note that due to a high level of applications, we can only respond to applicants whose skills and qualifications are suitable for this position. No terminology in this advert is intended to discriminate against any of the protected characteristics that fall under the Equality Act 2010. Bowerford Associates Ltd is acting as an Employment Agency in relation to this vacancy Nice-to-have skills Software Development Software Testing C++ C C# Java JavaScript Node.JS React Agile ISO 27001 Azure Reading, England Work experience Security Architect Software Architect Languages English