Cyber Security Analyst

Social network you want to login/join with:

Cyber Security Analyst

Location: Cheltenham

Salary: £36,408 (includes £2,658 non-concessionary payment)

Flexible working: We recognise the importance of a healthy work-life balance and offer full-time, part-time, and compressed hours. While hybrid working can be more restricted, due to the nature of the work, around 20% home working may be available depending on business needs.

GCHQ is an intelligence, cyber and security agency with a mission to keep the UK safe. We use cutting-edge technology, ingenuity and partnerships to identify, analyse and disrupt threats. Working with our intelligence partners MI5 and MI6, we protect the UK from terrorism, cyber-attacks and espionage. At GCHQ you’ll do varied and fascinating work in a supportive and inclusive environment that puts the emphasis on teamwork.

As a Cyber Security Analyst, you’ll work with a close-knit team to protect our organisation against a range of cyber threats. Your responsibilities include detecting, responding to, and mitigating risks from malware outbreaks, insider activity, denial-of-service attacks, and phishing. You’ll collaborate with other technical teams to understand operational activities and develop your skills in defensive strategies for operational infrastructure.

Your typical day involves reviewing recent events, coordinating investigations, analyzing alerts, logs, network traffic, or endpoint data using tools like Splunk, and developing detection content. You will also utilize threat intelligence to proactively enhance security measures and respond swiftly to incidents. Opportunities to explore Digital Forensics and support security incidents are also available, providing a unique experience compared to private sector cybersecurity roles.

You should have a passion for IT and a desire to grow in cybersecurity, with experience in scripting, understanding of Windows and Linux OS, and familiarity with Python. Interest in developing skills in AWS and Microsoft Azure is also desirable.

You need to hold a cybersecurity certification or education at a foundation level (e.g., CompTIA A+, Network+, Security+, OffSec, SOC200, GSEC, GCIA, GCIH) or have at least 6 months of experience in a cybersecurity role.

Beyond technical skills, effective teamwork, communication, and problem-solving abilities are essential. Collaboration is key to tackling complex threats and building effective solutions.

We support your growth through in-house, on-the-job, and external training, including industry-recognized certifications from SANS Institute and OFFSEC. You will be paired with a mentor and gain hands-on experience in threat detection, incident response, and operational strategies. Opportunities for travel, conferences, and staying updated on cybersecurity developments are available but not mandatory.

Starting salary of £36,408 plus benefits such as 25-30 days annual leave, holidays, performance recognition, interest-free season ticket loan, pension scheme, cycle to work scheme, on-site facilities, and parental leave.

GCHQ values diversity and inclusion, encouraging applications from underrepresented groups, including women, ethnic minorities, disabled individuals, and those from low socio-economic backgrounds. More information is available on our website.

We are a Disability Confident Leader, committed to fair recruitment practices and support for disabled applicants. We assess minimum criteria at CV sift and offer additional support during recruitment.

The recruitment process involves application review, virtual interviews, and a conditional offer. The process can take 6-9 months, including vetting. Applicants should continue current employment until final offers are received.

You must be a British citizen or hold dual British nationality. The role requires Developed Vetting (DV) security clearance. Please consider travel and relocation costs, as the role is based in Cheltenham and applications from overseas are not accepted outside the UK. Ensure your contact details are secure and separate from personal identifiers.

We may close the application process early once sufficient applications are received. Submit your application promptly to avoid missing out.