Senior Security Operations Analyst

Social network you want to login/join with:

col-narrow-left

NHS National Services Scotland

Dundee, United Kingdom

Other

-

Yes

col-narrow-right

7ac1b004ab61

5

02.07.2025

16.08.2025

col-wide

About the Organisation:
National Services Scotland (NSS) is a national NHS Board operating right at the heart of NHSScotland, providing invaluable support and advice at a strategic and operational level. NSS supports customers to deliver their services more efficiently and effectively and we offer shared services on a national scale using best-in-class systems and standards. Our priority is always the same – to improve the health and well-being of the people of Scotland. We do this by working in partnership with colleagues across Health and Social Care to deliver fit for purpose solutions and systems, delivering high quality services that help our stakeholders to free up resources so they can be re-invested into essential services. The security services and technology provided by NSS Digital and Security (DaS) are critical operational components, used 24/7 365 days a year.

The Post:
NSS DaS operates the Cyber Centre of Excellence (CCoE), providing modern, proactive, and efficient national cybersecurity services for NHSScotland. This is an exciting opportunity for two Senior Cyber Security Analysts to join the CCoE’s Cyber Security Operations Centre (CSOC), responding to incidents, working on projects and providing excellent services to NHSScotland’s Health Boards.

The post holders will lead and contribute to projects that extend and improve the capabilities of the CCoE, and that improve the cybersecurity stature and awareness of our customer base. They will engage with the team, stakeholders, and external suppliers to develop, validate, and continually improve processes and playbooks that prepare us for cybersecurity incidents ranging from localised issues to complex, multi-actor national incidents with lateral threat movement and severe impact on Scotland’s national core infrastructure.

In collaboration with the CSOC team, they will develop and improve operationally relevant KPIs and KRIs and associated reporting mechanisms that are suitable to evidence performance to the CCoE and NSS DaS management team, and that demonstrate value to our stakeholders.

During an active incident, the post holder is required to provide level-headed and hands-on response actions alongside the CSOC team and external service providers. They can draw on the support of the CCoE and CSOC leadership, and are enabled and authorised to take proactive steps that contain and minimise the impact of an incident. They provide concise situational updates to a wide audience, ranging from fellow CS professionals to CSOC and CCOE management.

The Candidate:
Please note that the Job Description is generic in nature. The candidate should consider the attached Person Specification and content of this advert when submitting their application.

The candidate should have experience in some of the following:

• Working in a busy national security operations centre, preferably in healthcare providing a service 24/7, 365 days a year
• Delivering and operating IT infrastructure (networks, servers, desktop, cloud, etc.)
• Working on or leading security operations functions, including: Cyber Security Incident Response and Management; Monitoring & Alerting; Vulnerability Management; Threat Intelligence; Security Architecture
• Acting as a significant technical authority within the information and cyber security specialist area
• Developing, designing, and implementing new security operations, processes, and technology.
• Working within a multi-disciplinary team with high-calibre staff.
• Working within NHS Scotland (desirable)

The Candidate should have a degree in a related subject, or demonstrable equivalent experience. They will have experience gained working in relevant role(s), for example within an NHS, healthcare, or similarly regulated environment, and have an in-depth knowledge of digital & information security. Ideally the candidate will have achieved Chartered Professional status of the British Computer Society (MBCS CITP) and should have obtained a post-graduate qualification in the specialist area e.g. ISO27001 Lead Implementer, CISM, CISA, CISSP, GIAC certifications, CCP accreditor or have equivalent additional experience / expertise.

The candidate should have excellent interpersonal, communication and organisational skills. They should also be able to work with minimal supervision but should demonstrate good team working and leadership skills. The candidate needs to be flexible and should be able to deal with conflicting demands, whilst under pressure. The candidate needs to understand the importance of effective communication skills and confidentiality.

Please note that if you are NOT a passport holder of the country for the vacancy you might need a work permit. Check our Blog for more information.

Bank or payment details should not be provided when applying for a job. Eurojobs.com is not responsible for any external website content. All applications should be made via the 'Apply now' button.

Created on 02/07/2025 by TN United Kingdom