Cyber Security Analyst

Social network you want to login/join with:

Cyber Security Analyst

Location: Cheltenham

Salary: £36,408 (includes £2,658 non-concessionary payment)

Flexible working: We recognise the importance of a healthy work-life balance and offer full-time, part-time, and compressed hours. While hybrid working can be more restricted, due to the nature of the work, around 20% home working may be available depending on business needs.

GCHQ is an intelligence, cyber and security agency with a mission to keep the UK safe. We use cutting-edge technology, ingenuity and partnerships to identify, analyse and disrupt threats. Working with our intelligence partners MI5 and MI6, we protect the UK from terrorism, cyber-attacks and espionage. At GCHQ you’ll do varied and fascinating work in a supportive and inclusive environment that puts the emphasis on teamwork.

As a Cyber Security Analyst, you’ll work with a close-knit team to protect our organisation against a range of cyber threats. From malware outbreaks and insider activity to denial-of-service attacks and phishing, your role will be key in detecting, responding to, and mitigating risks. You’ll work closely with other technical teams, gaining deeper understanding of operational activities across various thematic areas. This will help you develop your skills and expertise in defensive strategies for operational infrastructure.

Typically, your day will start with a review of recent events, followed by a team meeting to coordinate ongoing investigations and set priorities. From there, you might analyse high-priority alerts, dig into logs, network traffic, or endpoint data using tools like Splunk, or develop new detection content to enhance our defences. You’ll also draw on threat intelligence to proactively strengthen our security posture. When incidents occur, you’ll take swift, decisive action to contain and resolve them.

You’ll also have the opportunity to dive into Digital Forensics to support security incidents. Whilst the role is akin to a cybersecurity role in the private sector, the scenarios you’ll face due to the unique nature of the work done by us will be anything but ordinary.

Along with a passion for IT and eagerness to grow in the cyber security space, you’ll bring experience with scripting, an understanding of both Windows and Linux operating systems, and familiarity with Python. You’ll be interested in developing your skills with Amazon Web Services (AWS) and Microsoft Azure.

You need to hold a cyber security certification or education at a foundation level (e.g., CompTIA A+, Network+, Security+, OffSec, SOC200, GSEC, GCIA, GCIH) or have 6 months experience in a cyber security role.

Beyond technical skills, you should be an effective team worker, communicator, and problem-solver, understanding that collaboration is crucial to tackling complex threats and building effective solutions.

We’re committed to helping you develop your skills and reach your full potential. You’ll work with your line manager to identify growth areas and have access to formal in-house, on-the-job, and external training, including industry-recognised certifications with SANS Institute and OFFSEC.

From the moment you join, you’ll be paired with a buddy for ongoing mentorship. You’ll gain hands-on experience in cyber security, threat detection, incident response, and operational strategies, supporting your professional growth. Opportunities to travel, attend conferences, and stay updated with cyber security innovations will also be available, though travel is infrequent and not mandatory.

You’ll receive a starting salary of £36,408 plus benefits including:

• 25 days annual leave, rising to 30 days after 5 years, plus 10.5 days public holidays
• Recognition through our employee performance scheme
• Interest-free season ticket loan
• Excellent pension scheme
• Cycle to work scheme
• Facilities such as gym, restaurant, and coffee bars at some locations
• Paid parental and adoption leave

At GCHQ, diversity and inclusion are vital. We welcome applications from all backgrounds, including under-represented groups such as women, ethnic minorities, disabled individuals, and those from low socio-economic backgrounds. More details are available on our website.

We have achieved Leader status within the DWP’s Disability Confident scheme, committed to supporting disabled applicants. We ensure that a fair and proportionate number of disabled candidates are offered interviews, with support available throughout the process.

Our recruitment process is fair and merit-based, involving:

• Application review
• Virtual competency and technical interview
• Conditional job offer if successful

The process may take 6-9 months, including vetting. We advise continuing current employment until final offer.

Applicants must be UK citizens or hold dual British nationality. The role requires Developed Vetting (DV) security clearance. Please consider the eligibility criteria, the UK residence requirement, and the no-recruitment-from-abroad policy before applying. Relocation costs are not covered.

We reserve the right to close applications early once sufficient applications are received. Submit your application promptly to avoid missing out.