Cyber Security Analyst
| Dyddiad hysbysebu: | 06 Chwefror 2026 |
|---|---|
| Cyflog: | £51,549.00 i £55,035.00 bob blwyddyn |
| Gwybodaeth ychwanegol am y cyflog: | 51549 - 55035 |
| Oriau: | Llawn Amser |
| Dyddiad cau: | 22 Chwefror 2026 |
| Lleoliad: | Flexible in England, SG192DL |
| Cwmni: | Vacancy Filler |
| Math o swydd: | Parhaol |
| Cyfeirnod swydd: | JAN20262631 |
Crynodeb
We’re seeking a pragmatic, hands-on Cyber Security Analyst to help mature our security function. This role will work closely with our outsourced SOC provider and internal teams to triage and investigate security events, support supplier security assurance, provide risk-based advice across the organisation, and drive automation of security processes and tooling. This is a hands-on role suited to someone who enjoys problem-solving, working across teams, and improving how security is delivered in a complex, mission-driven organisation. This role will be home-based with occasional travel to RSPB head office or other UK locations (generally one/two days per month).Key Areas of Responsibility: Security Monitoring & Incident SupportAct as the internal focal point with the outsourced SOC provider - ensuring effective communication, follow-up, and escalation of alerts. Triage, investigate, and support resolution of security events and incidents. Contribute to lessons learned and improvements following incidents. Lead the instantiation of the Cyber Security Incident Response Team (CSIRT) and associated processes and playbooksSupplier & Third-Party Security Assess cyber security risk for key suppliers and partners. Review supplier security documentation, raise concerns, and help negotiate security requirements. Risk & Advice Provide pragmatic, risk-based security guidance to internal teams and respond to ad-hoc queries. Help develop and maintain security standards and processes that reflect organisational risk tolerances. Advise system owners and project managers on pen testing approach and scope Run simulated phishing campaigns and produce security awareness communications Automation & Process Improvement Identify and implement opportunities to automate security detection, response, reporting, and remediation workflows. Work with the SOC and internal technical teams to refine alert logic, improve data quality, and reduce manual effort. Help optimise security tools (e.g., SIEM, EDR, ticketing, dashboards). General Develop and produce regular Security reports for senior management. Monitor and respond to queries in group mailbox Essential skills, knowledge, & experience:5 years’ experience in a cyber security, IT security, or technology risk role Practical, demonstrable experience of working with a SOC (internal or outsourced) and investigating cyber security incidents using best practice methodologies and tools Good understanding of cyber risk concepts, controls, and technical security tools. Strong communication skills with both technical and non-technical stakeholders and experience producing communications materials and reports Relevant security certifications/qualifications (e.g. SSCP, GCIA, CEH, CompTIA) Knowledge of UK best practice frameworks (e.g., NCSC guidance, PCI DSS, ISO 27001, Cyber Essentials). Scripting or practical automation experience. Experience assessing third-party/supplier security risk. Demonstrated passion for and experience in improving security processes and utilising automation to achieve this Experience with threat hunting and horizon scanning Strong technical security knowledge of networking technologies, IDAM, EDR/XDR Experience supporting security and compliance audit activitiesPersonal Attributes Pragmatic and solutions-focused, with an ability to balance risk and usability Curious and motivated to improve and automate how security operates Comfortable working in a developing security function where processes are evolving Collaborative and supportive, with a strong sense of ownership Aligned with the values and mission of the RSPBWhat Success Looks Like Efficient, risk-focused handling of alerts & incidents alongside the SOC partner. Clear, up-to-date internal security standards and processes. Reduced manual effort through practical automation improvements. Strong supplier security assurance controls supporting risk-based decision-making. This is a permanent, full-time role for 37.5 hours per week. To apply for this role, you will be asked to provide some personal information along with a copy of your CV and a cover letter which details how your skills and experience met those detailed above. We are looking to conduct first interviews for this position on Thursday, February the 26th and Monday, March the 2nd. For further information please contact ann.marshall@rspb.org.uk.If you are interested in applying for this role we recommend doing so asap as we reserve the right to close this advert early should the demand be especially high. We are committed to developing an inclusive and diverse RSPB, in which everyone feels supported, valued, and able to be their full selves. To achieve our vision of creating a world richer in nature, we need more people, and more diverse people, on nature’s side. People of colour and disabled people are currently underrepresented across the environment, climate, sustainability, and conservation sector. If you identify as a person of colour and/or disabled, we are particularly interested in receiving your application. Contact us to discuss any additional support you may need to complete your application. The RSPB is an equal opportunities employer. This role is covered by the Rehabilitation of Offenders Act 1974. This role is not eligible for UK Visa Sponsorship - the successful applicant will need to have a pre-existing Right to Work in the UK in order to be offered an employment contract. Before applying for this role, we recommend reading through the candidate information pack attached to the top of this advert.