- Cyber Security Operations Unit (CSOU).
- Cyber Delivery Unit (CDU).
- Cyber Improvement.
- Chief Information Security Office Function (CISO).
- Multi-Platform Threat Hunting at Scale – Run hunting queries and analytics across large datasets using a variety of cloud-based and hybrid security solutions.
- Custom Analytic and Detection Development – Writing and reviewing custom rules to deploy against national monitoring solutions to provide specialised monitoring to NHS bodies against common threat actor tactics and techniques.
- Specialist Incident Support – Providing technical support to CSOU IM function and NHS organisations where appropriate during high complexity incidents.
- we're moving to a hybrid working approach which offers you an informal, flexible way of blending home and office working. Colleagues with a contractual office base are expected to spend, on average, at least 40% of their time working in-person.
- flexible working opportunities - we value and respect the diversity of our employees, and applications from prospective candidates who require flexible working arrangements are welcomed; these include part-time hours, job sharing, flexible hours and part-remote set ups
- 27 days annual leave increasing to 33 days with service
- ability to buy and sell annual leave
- a generous pension (with our contribution equal to 20.6% of your earnings)
- NHS Discounts including shops, restaurants, gym, mobile phones, and insurance
- employee benefit schemes including our Season Ticket Loan, Car Lease and Bike to Work schemes
- Act as an Endpoint Detection and Response (EDR) specialist for the threat hunting team and act as an escalation point for all threat hunting activities in the topic.
- Deputise for the Cyber Security Principal Analyst (Threat Hunting - Endpoint) in their absence.
- Develop capability in support of Threat Operations requirements, including coding and technology development.
- Act as a technical specialist in advanced forensic investigations in support of Security Operations function.
- Simulate adversary tactics, techniques, and procedures in support of detection development.
- Perform dynamic & static analysis of malicious programs and tools where relevant in support of detection development.
- Development of automation workflows and playbooks to support threat huntingteam workload.
- Management of staff, resource allocation, and workload in regards to Endpoint Detection and Response hunting activities.
- CeH
- SANS SEC487
- SANS SEC504
- SANS FOR500
- SANS FOR508
- SANS FOR572
- a role as part of a dynamic team using data and digital technology to transform health and care
- a range of opportunities to build your experience in an environment where your
work has a direct and positive impact - a real commitment to your personal and professional development with access
to a broad range of learning opportunities -
Change Analyst
2 days ago
Advanced Resource Managers Limited Exeter, United KingdomJob Title: Change Analyst · Location: UK-Exeter - Hybrid (2 days on site) · Overview: · The role of the Change Analyst is to support the implementation of new technology, functional business and organisational concepts within the Group and thereby secure the successful transforma ...
-
Service Desk Apprentice
4 days ago
Exeter College ApprenticeshipsTimewade Ltd Exeter, United KingdomAs Service Desk Analyst, your primary role will be to provide remote reactive technical support across our South West client base. · **List of duties**: · 2. Resolve support calls in first instance or liaise with 3rd party IT suppliers and internal colleagues. · 3. Provide regula ...
-
Customer Service Advisor
4 days ago
BT Exeter, United KingdomAdvanced Warning of scheduled maintenance · Customer Service Advisor · **Job Req ID**:20067**Posting Date**:24 Jul 2023**Function**:Service**Location**:Exeter (R620), Exeter, United Kingdom**Salary**:£27,500 + Benefits- Why this role matters? · The primary function of the Custome ...
-
Database Administrator
4 days ago
South West Water Exeter, United KingdomAt · **South West Water** we believe that the strongest businesses are built on solid, stable foundations - with a vision and a culture that gives them the freedom to change, improve and innovate. · We're proud to be responsible for providing reliable, efficient and high-quality ...
-
Platform Engineer
2 days ago
BJSS Exeter, United Kingdom**About Us** · We're an innovative tech consultancy - a team of problem solvers. Since 1993 we've been finding better ways to solve complex technology problems for some of the world's leading organisations and delivered solutions that millions of people use every day. · We bring ...
-
Service Management Team Leader
1 week ago
BT Group Exeter, United KingdomService Management Team Leader · **Job Req ID**:30694**Posting Date**:13 Mar 2024**Function**:Business Services & Operations**Unit**:Business**Location**:Exeter (R620), Exeter, United Kingdom**Salary**:Competitive Salary + Benefits**Recruiter: Krystle James** · **Hiring Manager: ...
-
Cyber Security Analyst
1 week ago
National Composites Centre South West England, United KingdomThe National Composites Centre is at the forefront of the composites revolution. Were accelerating exciting and innovative new technologies and working with industry to make the future of light-weighting materials a reality. But any world-leading engineering company (and especial ...
-
Technical Lead
1 week ago
Reed NHS Speke, United Kingdom**Reed Talent Solutions** are currently working with a Liverpool based Housing Association to recruit a Technical Lead on a permanent basis. The organisation are looking for someone with a proven track record of delivering payroll, pension andbenefit services in a large, complex ...
-
Junior Cyber Security Analyst
4 days ago
Pontoon Taunton, Somerset, United KingdomSenior Cyber Security Analyst Utilities Hybrid: 2–3 days per week in Taunton or Exeter 6 months+ GBP650 – GBP700 per day · Classic Cyber Security Analyst required to join a major utilities company in SOC–related activities. · Reporting to the Senior Cyber Solutions Architect, y ...
-
L3 SOC Analyst
2 days ago
NonStop Consulting Ltd South West England, United KingdomA leading defence company is looking for a Level 3 SOC analyst to join its Security team. · This position offers great career progression opportunities, hybrid working and an extensive benefits package · As an L3 analyst, your primary role within the Cyber team will be to lead in ...
-
Support Engineer
1 week ago
Advanced Technical Recruitment Newton Abbot, United Kingdom**IT & Systems Support Engineer - I.T. - Newton Abbot - LM1125a** · **Salary**:Competitive base salary, + benefits · **Job Term**:Full Time/Permanent · **Job Outline**: · My client, who is a leading technology manufacturer now seeks an I.T. & Systems Support Engineer, to join the ...
-
Service Desk Analyst
4 days ago
Sopra Steria Allington, United Kingdom**Are you a Service Desk/1st Line Engineer looking for a new challenge?** · Due to growth we are currently looking for an experienced Service Desk Analyst, or passionate people who have an understanding of IT looking to break into this area. Working as part of a busy Service Desk ...
-
Business Analyst
5 days ago
Yolk Recruitment Ltd Taunton, United Kingdom**Business Analyst - Hybrid - Taunton once a month - up to £ 43,800** · **The Opportunity** · Yolk Recruitment Public Sector & Not-for-Profit team has partnered with a highly specialist civil service organisation. We are supporting them to recruit a Business Analyst with a BSC Di ...
-
Senior Business Analyst
1 week ago
Reed Talent Solutions Taunton, United Kingdom**Senior Business Analyst** · **UK Hydrographic Office** · **Salary** - £43,889 · **Location** - Taunton · **Permanent** · **Full Time** · **Hybrid Working ** · **Job summary** · We are seeking a talented **Senior Business Analyst** to join us here at the UK Hydrographic Office ( ...
-
Software Test Engineer
1 week ago
CPS Group Taunton, United KingdomAre you an experienced Test Analyst, who relishes a technical challenge? · As a business, they have grown exponentially over the last couple of years and the role has come through via growth. As such, you can be comfortable that you are joining a business that is both exciting on ...
-
Cyber Security Engineer
1 week ago
Allegiance Group Exeter, United KingdomJob Description · Cyber Security Engineer · My client, a leading MSP based in Exeter, is currently looking for a Cyber Security Engineer to join their team and hit the ground running - delivering a suite of technical, operational, and risk management services. Collaborating close ...
-
Cyber Security Engineer
1 week ago
Allegiance Group Exeter, Devon, United KingdomCyber Security Engineer · My client, a leading MSP based in Exeter, is currently looking for a Cyber Security Engineer to join their team and hit the ground running - delivering a suite of technical, operational, and risk management services. Collaborating closely with regional ...
-
Fleet Administrator
5 days ago
Future Industrial Services Ltd Honiton, United KingdomFuture Industrial Services is one of the largest providers of liquid waste removal; industrial services such as tank and interceptor cleaning; labour provision to industry; hazardous waste removal; oil/water separation and specialist metal recovery. We are a growing national comp ...
-
Platform Engineer
3 days ago
BJSS Exeter, United KingdomJob Description · About Us · We're an award-winning innovative tech consultancy - a team of creative problem solvers. Since 1993 we've been finding better, more sustainable ways to solve complex technology problems for some of the world's leading organisations and delivered solut ...
-
Platform Engineer
1 week ago
BJSS Exeter, United KingdomAbout Us · We're an award-winning innovative tech consultancy - a team of creative problem solvers. Since 1993 we've been finding better, more sustainable ways to solve complex technology problems for some of the world's leading organisations and delivered solutions that millions ...
Senior Security Analyst - Exeter, United Kingdom - NHS Digital
Description
About the role
Cyber Operations purpose is to support safe care and build public trust by building NHS England's cyber resilience and enabling the wider health system to be cyber resilient, supporting Transformation Directorate's purpose of delivering the best care and outcomes for the NHS.
The Cyber Operations sub-directorate consists of 4 operational areas:
The CSOC, part of the CSOU, function provides centralised monitoring and response across NHS England, and the system. The CSOC consists of Threat Operations (ThreatOps), Security Operations (SecOps), Incident Management & response, Service Operations (ServiceOps) and Development Operations (DevOps).
To support our strategy to improve NHS England's cyber resilience, we are recruiting for a Senior Security Analyst who is a Threat Hunting specialist . This role is within the Cyber Security - Threat Hunting team, which is one of three core pillars of the Threat Operations pod within NHS England's CSOU.
The Threat Hunting team is responsible for several key functions:
Why work for us?
We value the different experiences our people bring to their work at NHS England. We're working to create an environment where everyone can make a full contribution no matter their background, identity, or circumstances. Which means, we encourage applications from people of all backgrounds and abilities.
Our work matters. You matter.
What we offer you:
The Role
As a Senior Security Analyst - Threat Hunting , you will proactively and iteratively search and analyse for specific Techniques, Tactics & Procedures (TTPS), Indicators of Compromise (IOCs) or evidence in the NHS England infrastructure in order to detect and respond to unknown threats that are not identified by traditional rule or signature-based security controls or even by use cases or for suspicious scenarios notified by qualified sources (e.g. CERT, Security Threat Monitoring, Threat Intelligence, etc.).
Some of your key responsibilities will include:
About you
We are looking for a candidate who can demonstrate strong capability and experience of threat hunting across endpoint detection and response tooling.
Some of the other skills and experience we're looking for:
Threat Hunting - Demonstrate knowledge of proactively detecting cyber threats, techniques, and the processes of identifying adversaries through the analyses of machine data.
Endpoint Security - In-depth knowledge of concept, issues and techniques of endpoint security; ability to ensure security compliance of endpoint devices in various circumstances.
Intrusion Detection and Prevention - Working knowledge of tools, techniques and processes of intrusion detection and prevention; ability to detect, resolve and prevent intrusion behaviours to protect organizational networks.
Computer Forensics - Working knowledge of technologies, methods and tools of forensics investigations for IT security violations or potential threats; ability to identify, uncover and evaluate violations, warning reports, suspected incidents and insidious events.
Application Security - Specialist knowledge of the tools and processes for maintaining application security; ability to design and implement security programs to prevent data loss and access intrusion from web and mobile applications
Digital Threat Management - Extensive knowledge of techniques, approaches and processes of digital threats; ability to detect, monitor, analyse and prevent digital threats.
Qualifications
Desirable
Industry relevant qualifications such as:
What's in it for you