Senior Cyber Security Analyst

Social network you want to login/join with:

Senior Cyber Security Analyst

Location: Cheltenham

Salary: £44,044 (including £2,658 non-concessionary payment)

Flexible working: We recognise the importance of a healthy work-life balance and offer full-time, part-time, and compressed hours. While hybrid working can be more restricted, due to the nature of the work, around 40% home working may be available depending on business needs.

GCHQ is an intelligence, cyber and security agency with a mission to keep the UK safe. We use cutting-edge technology, ingenuity and partnerships to identify, analyse and disrupt threats. Working with our intelligence partners MI5 and MI6, we protect the UK from terrorism, cyber-attacks and espionage. At GCHQ you’ll do varied and fascinating work in a supportive and inclusive environment that puts the emphasis on teamwork.

As a Senior Cyber Security Analyst, you’ll be key to protecting our organisation against a range of cyber threats. Your responsibilities include detecting, responding to, and mitigating risks from malware outbreaks, insider activity, denial-of-service attacks, and phishing. Daily tasks may involve investigating high-priority alerts, analyzing logs, network traffic, and endpoint activity using tools like Splunk. You will monitor security alarms, create detection content, utilize threat intelligence, and respond to breaches. Each day begins with a team meeting to review investigations and plan.

You will lead efforts to streamline operating processes, mentor junior analysts, and provide expert guidance. Opportunities to explore Digital Forensics and support security incidents are also available. You will contribute to shaping the team’s future, stay updated with the latest cybersecurity tools and techniques, and review past alerts to prioritize incidents based on severity and impact.

You should have a background in cyber security analysis and a passion for IT. Experience with host intrusion detection analysis is preferred, but training will be provided. A solid understanding of Windows and Linux operating systems is essential. You need at least 6 months experience as a Cyber Security or SOC Analyst. As a leader, you should be comfortable working independently and collaboratively, working closely with IT teams and network administrators. Strong communication and problem-solving skills are also important.

From the start, we support your growth through internal and external training to refine your skills and expand your expertise. You will have opportunities to work across various cybersecurity specialisms and pursue industry-recognized qualifications like SANS and CISSP. Opportunities for travel, conferences, and staying current with cybersecurity innovations are available, though travel is infrequent and not mandatory.

Starting salary of £44,044 plus benefits including:

• 25 days annual leave, rising to 30 days after 5 years, plus 10.5 days public holidays
• Employee recognition schemes
• Interest-free season ticket loan
• Excellent pension scheme
• Cycle to work scheme
• Facilities such as gym, restaurant, and coffee bars at some locations
• Paid parental and adoption leave

We value diversity and inclusion, reflecting society in our workforce. We welcome applications from all backgrounds, including women, ethnic minorities, people with disabilities, and those from underrepresented groups. Learn more about our culture and diversity efforts on our website: Diversity and Inclusion

GCHQ is a Disability Confident Leader. We aim to ensure a fair application process for disabled candidates, offering support and reasonable adjustments. To qualify, candidates should have at least 6 months’ experience as a Cyber Security/SOC Analyst, experience in malware analysis, intrusion detection, or incident response, and experience in line management or delegation. These will be assessed during CV sift. Additional support is available throughout the process, and details are on our website.

The recruitment process includes:

1. Application sift
2. Virtual competency and technical interview
3. Conditional job offer

Application processing may take 6-9 months, including vetting. We advise applicants to continue current employment until final offers are received.

Applicants must be UK citizens or hold dual British nationality. The role requires Developed Vetting (DV) clearance. Read full eligibility and vetting information on our site. We have a strict drugs policy; recreational drug use must be declared. Consider practicalities such as living near Cheltenham, as relocation costs are not covered. Applications from outside the UK should be made only when visiting the UK, and should be kept confidential.

We may close the application process early if enough applications are received. Submit your application promptly to avoid missing out.