Cyber Security Analyst
Role details
Job location
Tech stack
Job description
To support the Cybersecurity Manager in all aspects of Cybersecurity and life cycle management of Cybersecurity projects / improvement programmes to support Sciensus strategic objectives.
To support the Cybersecurity Manager for the implementation and management of the Cybersecurity strategy across Sciensus.
Key Deliverables
Governance, Risk & Assurance: Assist with cyber security risk assessments across systems, services, and business processes. Support maintenance of risk registers and tracking of remediation actions. Help prepare governance reporting and evidence packs under direction of senior team members. Produce monthly security metrics as requested by the head of cyber security
Compliance & Audit Support: Support preparation for internal and external audits (ISO27001, Cyber Essentials Plus, NHS DSP Toolkit). Assist with collecting, maintaining, and organising security evidence and documentation. Monitor compliance with security policies and escalate issues to senior team members.
Third-Party & Supplier Assurance: Assist with supplier due-diligence questionnaires and security assessments. Track responses and evidence, escalating risks or gaps where identified. Support ongoing monitoring of third-party security controls.
Operational Security Support: Support monitoring and uplift of technical and procedural security controls. Assist with investigation of security alerts and incidents under supervision. Participate in cyber incident response activities, including documentation and post-incident reviews. Take part in the cyber on-call rota once suitably trained. Administer security systems proactively and reactively where required, ensuring that lessons learned, and continual improvement opportunities are identified and implemented
Secure Change & Project Support: Support security reviews of new projects, systems, and changes. Assist in identifying security risks associated with new technologies or suppliers. Help ensure security requirements are embedded early in delivery.
Regulatory Responsibilities
Adhere to (CQC/ GDP/NMC/GPHC / ICO) standards relevant to role Chair / Attend all relevant committees aligned to remit of the role Be aware of all responsibilities relating to Infection Prevention and Control
Requirements
Strong interest in cyber security and information security. Understanding of cyber security principles (CIA triad, risk, controls). Awareness of common security frameworks or standards (e.g. ISO27001, Cyber Essentials). Good written and verbal communication skills. Ability to follow structured processes and work with attention to detail. Desirable: Degree, apprenticeship, or professional qualification in IT, Cyber Security, or related field. Exposure to security tooling, SIEM, endpoint protection, or identity platforms. Awareness of healthcare, regulated, or data-sensitive environments. Working towards cyber security certifications (e.g. SC-900, Security+, ISO27001 Foundation).
Benefits & conditions
We work hard to make sure colleagues feel motivated, developed, and recognised for the great work they do. Additional to a competitive salary, we also offer a comprehensive benefits package including:
- 25 days annual leave plus bank holidays
- Yearly pay reviews
- Contribution based pension scheme
- Life assurance
- Employee benefits platform (retailer discounts and much more)
- Private medical (after qualifying period)
- Ongoing learning and development opportunities
- Annual company event
- In the Burton Upon Trent office we have an onsite gym, canteen, prayer room, and quiet room
