Information & Cyber Security Analyst | NHS Counter Fraud Authority

The NHS Counter Fraud Authority (NHSCFA) is the national body responsible for all matters relating to the prevention, detection and investigation of economic crime across the NHS. Further information about our work and annual plan for delivering this is available on our website.

An exciting opportunity has arisen to join the NHSCFA Technology team as an Information & Cyber Security Analyst. We are looking for someone with a proven background in Information/Cyber security and a flexible ‘can do’ attitude and approach to work in the Information & Cyber Security (I&C) Team who manage and maintain the security of NHSCFA ICT infrastructure and information systems.

• Actively manage, monitor and develop NHSCFA cyber operations, including managing alerts, identifying and mitigating vulnerabilities and cyber threats.
• Manage security incidents and requests through to remediation and resolution.
• Support the Security Incident Management Process as a member of the NHSCFA Security Incident Response Team.
• Carry out threat intelligence analysis and recommend or implement remediation or mitigation.
• Perform security risk assessments, identifying security gaps and recommending appropriate remediation.
• Create and prepare Cyber Security Operations reports.
• Actively monitor NHSCFA ICT systems, manage and operate IT security monitoring tools and systems; review IT system alerts; triage to eliminate false positives; identify threats that have entered the network.
• Evaluate and address system generated and user-reported security incidents; identify affected systems and scope of the incident; analyse running processes and configurations on affected systems; carry out in-depth threat intelligence analysis to identify an attack type, source, entry point, and possible remediation; implement remediation or elevate incident.
• Manage, monitor, and develop NHSCFA cyber security operations and ICT security infrastructure to manage and reduce cyber risk and mitigate cyber threats.

IMPORTANT Note: This position requires UK National Security Vetting to at least SC level. Please confirm residency below.

To comply with the HM Government Functional Standard GovS 007, and specifically the Personnel Security Standards, individuals employed by NHS Counter Fraud Authority will be required to undergo Baseline Personnel Security Standards checks.

We have offices in Coventry, Newcastle and London and offer flexible, hybrid and home-based working. In addition to the advertised salary, working in the London area will attract High-Cost Area Supplement where appropriate.

The NHSCFA values and respects the diversity of its employees, and aims to recruit a workforce which reflects our diverse communities. We welcome applications irrespective of people's age, disability, gender, race or ethnicity, religion or belief, sexual orientation, or other personal circumstances. We have policies and procedures in place to ensure that all applicants are treated fairly and consistently at every stage of the recruitment process, including an invitation to the first stage of the selection process and consideration of reasonable adjustments for people who have a disability.

When you apply for this role you will be redirected to our recruitment system TRAC. The CFA does not hold a sponsor licence in respect of skilled worker visas and so is unable to employ candidates requiring sponsorship.

Potential applicants can contact Kannan Soman at kannan.soman@nhscfa.gov.uk for an informal chat if they have any questions regarding the role.

Previous applicants need not apply.

We reserve the right to close this vacancy before the advertised closing date should we receive a significant number of applications.

Interviews will be held on 10th/11th December 2025.

This advert closes on Tuesday 2 Dec 2025.