Senior Cyber Security Analyst

This job is brought to you by Jobs/Redefined, the UK's leading over-50s age inclusive jobs board.

We recognise the importance of a healthy work-life balance and offer full-time, part-time, and compressed hours. While hybrid working can be more restricted, due to the nature of the work, around 40% home working may be available depending on business needs.

GCHQ is an intelligence, cyber and security agency with a mission to keep the UK safe. We use cutting-edge technology, ingenuity and partnerships to identify, analyse and disrupt threats. Working with our intelligence partners MI5 and MI6, we protect the UK from terrorism, cyber-attacks and espionage. At GCHQ you'll do varied and fascinating work in a supportive and inclusive environment that puts the emphasis on teamwork.

As a Senior Cyber Security Analyst, you'll be key to protecting our organisation against a range of cyber threats. Your responsibilities include detecting, responding to, and mitigating risks from malware outbreaks, insider activity, denial-of-service attacks, and phishing.

Daily tasks may involve investigating high-priority alerts, analysing logs, network traffic, and endpoint activity using tools like Splunk. You will monitor security alarms, create detection content, leverage threat intelligence, and respond to breaches. Each day begins with a team meeting to review investigations and plan.

You will lead efforts to improve operational processes, mentor junior analysts, and provide expert guidance. There will also be opportunities to explore Digital Forensics and support security incidents.

While contributing to the team's future direction, you'll stay updated with the latest cyber security tools and techniques, review past alerts, and prioritise incidents based on severity and impact.

You should have a background in cyber security analysis and a passion for IT. Experience with host intrusion detection analysis is preferred but training will be provided. A solid understanding of Windows and Linux Operating Systems is essential.

You need at least 6 months experience as a Cyber Security or SOC Analyst. As a leader, you should be comfortable working independently and collaboratively, working closely with IT teams and network administrators. Strong communication and problem-solving skills are also required.

We support your growth through internal and external training, helping you refine your skills and expand your expertise. You will have opportunities to work across various cyber security specialisms and pursue industry-recognised qualifications like SANS and CISSP. Opportunities for travel, conferences, and staying current with cyber security innovations are available but not mandatory.

Starting salary of £44,044 plus benefits including:

• 25 days annual leave, rising to 30 after 5 years, plus 10.5 public and privilege holidays
• Recognition through our employee performance scheme
• Interest-free season ticket loan
• Excellent pension scheme
• Cycle to work scheme
• Facilities such as a gym, restaurant, and coffee bars (at some locations)
• Paid parental and adoption leave

At GCHQ, diversity and inclusion are vital. We seek a workforce that reflects society, welcoming applications from under-represented groups such as women, ethnic minorities, disabled people, and those from low socio-economic backgrounds. More about our culture and diversity can be found on our website.

GCHQ has achieved Leader status in the DWP's Disability Confident scheme, committed to fair recruitment and development of disabled applicants. To secure an interview, candidates must meet minimum criteria, including 6 months' experience as a Cyber Security/SOC Analyst, experience in malware analysis, intrusion detection, incident response, or line management.

The recruitment process is fair and merit-based, involving application review, virtual interviews, and a conditional job offer. The process may take 6-9 months, so applicants are advised to continue current employment until final offers are made.

Applicants must be British citizens or hold dual British nationality and pass Developed Vetting (DV) security clearance. Further details are available on our website. Consider setting up a separate, anonymous email account for your application. The role is based in Cheltenham; applicants should consider travel and relocation implications, as no costs are covered. Applications from outside the UK are not accepted, and discussions about your application should be limited to close family or partners.