Job summary As a Cyber Security Analyst, you will be part of the CITS Cyber Security Operations Centre (CSOC) team. The role of the team is to support the NHS in Cornwall by providing operational cyber security, ensuring our systems are kept secure and protected, and reducing the impact of cyber incidents. The CSOC will be at the forefront of our proactive and reactive response to cyber-related threats and incidents across the healthcare system countywide. Main duties of the job Actively monitor and analyse security alerts from multiple sources to detect and help the service respond to cyber related events and threats. Help develop and undertake vulnerability scanning, using the data captured to collaborate with colleagues to reduce cyber risk in a pragmatic and prioritised way. Be part of a specialist team providing expertise in cyber as part of 24/7/365 service. About us The Royal Cornwall Hospitals NHS Trust (RCHT) is the main provider of acute and specialist care services in Cornwall and the Isles of Scilly. We serve a population of around 500,000 people - a figure that can increase significantly with visitors during the busiest times of the year. We employ approximately 6,700 staff and have a budget of approximately £580 million. We are a teaching hospital in partnership with the University of Exeter Medical School, University of Plymouth School of Nursing and Midwifery, and Peninsula Dental School. The Knowledge Spa on the Royal Cornwall Hospital site is the base for medical and nursing as well as ongoing education for health professions in clinical and non-clinical roles. Keeping at the forefront of medical advances, we are continually developing our clinical services as well as our facilities and are committed to maximising the range of specialist care that can be offered locally. Allied to this is a growing reputation for research and innovation. Date posted 28 February 2025 Pay scheme Agenda for change Band Band 5 Salary £29,970 to £36,483 a year pa pro rota Contract Permanent Working pattern Full-time Reference number 156-7018440 Job locations Cornwall IT Services Royal Cornwall Hospital Truro Cornwall TR1 3LJ Job description Job responsibilities PLEASE NOTE: To view the full Job Description and Person Specification, please click the supporting document on the right-hand side. To be an employee of the NHS you need to successfully complete the following: Identity Checks Professional registration and qualification checks Employment history and reference checks Occupational Health clearance Satisfactory Disclosure and Barring Service check Right to work in the UK For further information please visit: https://www.nhsemployers.org/topics-networks/employment-standards-and-regulation We reserve the right to close this advert early. We may be able to offer flexible working. Please discuss at interview. We may be able to offer sponsorship but this is not guaranteed. Job description Job responsibilities PLEASE NOTE: To view the full Job Description and Person Specification, please click the supporting document on the right-hand side. To be an employee of the NHS you need to successfully complete the following: Identity Checks Professional registration and qualification checks Employment history and reference checks Occupational Health clearance Satisfactory Disclosure and Barring Service check Right to work in the UK For further information please visit: https://www.nhsemployers.org/topics-networks/employment-standards-and-regulation We reserve the right to close this advert early. We may be able to offer flexible working. Please discuss at interview. We may be able to offer sponsorship but this is not guaranteed. Person Specification Qualifications Essential Educated to Degree level (preferably Cyber Security) or equivalent experience Evidence of continued professional development within the field of cyber security Desirable ITIL foundation Appropriate technical accreditations / knowledge (CISSP, CPSA, CompTIA Security, Microsoft SC-200 etc.) Good knowledge of one or more areas such as compliance, penetration testing, event monitoring or incident response Experience Essential Experience within Cyber Security, underpinned by theory Experience of incident response and alert management in relation to cyber security Knowledge of IT infrastructure including Active Directory, DNS and DHCP Knowledge of Microsoft Desktop Systems Knowledge of networking protocol and its relation with perimeter security Desirable Experience of working within the NHS or public sector body Experience of using a SIEM and XDR/EDR solution Experience of vulnerability scanning and compliance reporting Person Specification Qualifications Essential Educated to Degree level (preferably Cyber Security) or equivalent experience Evidence of continued professional development within the field of cyber security Desirable ITIL foundation Appropriate technical accreditations / knowledge (CISSP, CPSA, CompTIA Security, Microsoft SC-200 etc.) Good knowledge of one or more areas such as compliance, penetration testing, event monitoring or incident response Experience Essential Experience within Cyber Security, underpinned by theory Experience of incident response and alert management in relation to cyber security Knowledge of IT infrastructure including Active Directory, DNS and DHCP Knowledge of Microsoft Desktop Systems Knowledge of networking protocol and its relation with perimeter security Desirable Experience of working within the NHS or public sector body Experience of using a SIEM and XDR/EDR solution Experience of vulnerability scanning and compliance reporting Disclosure and Barring Service Check This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions. Certificate of Sponsorship Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab). From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab). Additional information Disclosure and Barring Service Check This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions. Certificate of Sponsorship Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab). From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab). Employer details Employer name Royal Cornwall Hospitals Trust Address Cornwall IT Services Royal Cornwall Hospital Truro Cornwall TR1 3LJ Employer's website https://www.royalcornwall.nhs.uk/ (Opens in a new tab)