CQC - Security Operations Analyst

Job description

Job available in these locations:

Homebased - Flexible, United Kingdom

United Kingdom

United Kingdom

Grade C - £31,373 (National Framework) or £36,775 (London Framework – if you are London office based or homebased and live within the boundary of the M25) – There is also an additional homeworking allowance of £553 per annum for those working from home

Contracted Hours: Full time 37 hours per week (compressed or flexible hours may be considered)

Contract Type: Permanent

Location: We can offer homeworking, office-based or hybrid working.  

Closing date: Monday 13th May 2024 at 11.59pm 

This role may require infrequent visits to our Offices for meetings. Please note all travel is booked through our internal system and does not come at a cost to our employees. Any travel time is taken back via TOIL. 

This role is NOT open to applications from those who will require sponsorship under the points-based system. Should you apply for this role and be found to require sponsorship, your application will be rejected, and any provisional offer of employment withdrawn. 

Are you committed to helping us regulate health and social care within England? 

When thinking about what drives you every day in your job, what keeps you motivated and passionate about your work what comes to mind? For 3000+ people at the CQC we end each day knowing that we have made a difference to the lives of those most in need in our communities. We make sure health and social care services provide people with safe, effective, compassionate, high-quality care and encourage care services to improve. We are looking for people who are caring, demonstrate integrity and work well as part of a team to join with us and share in this sense of achievement. If you would like to help us, make a positive impact to health and social care within England, then read on. 

Why this could be a great role for you…. 

This is the perfect opportunity for an individual with cyber security to take their next step with our national organisation. 
 
You will discover a rewarding role, where you will have the chance to make a positive impact on our organisation whilst developing your professional skillset and grow your portfolio of experience. 

As the Security Operations Analyst you will: 

• Act as the first line of contact for all security incidents, event, concerns and requests 
• Contribute significantly to our Cyber management processes such as incident management and monitoring controls 
• Be empowered to influence and make decisions in an open and supportive environment with the freedom to grow, learn and innovate as the organisation, threat landscape and SecOps practices continue to evolve 

• Manage and lead on cyber security matters throughout the organisation 
• Work collaboratively with technology teams and the Security Operations Lead to remediate vulnerabilities and reduce the attack surface. 

What we can offer you... 

Your health and wellbeing are important to us and are supported through our benefits scheme; 

• 27 days’ annual leave, rising with service to 32.5 days, plus 8 Bank Holidays  
• NHS pension scheme, with around a 14% employer contribution  
• Free employee assistance service 24 hours a day  
• Discounts to supermarkets, high street stores, electronics and fleet cars  
• Discounted gym vouchers  
• Cycle to work scheme  
• Internal reward scheme where you could earn yourself a voucher or two!  
• Equipment for homeworking  

We want to make working for CQC a great experience for everyone, and to role model a diverse and representative culture. To support an inclusive environment where colleagues feel empowered to bring their whole self to work, we support a variety of staff networks, including the Race Equality Network, LGBT+ Equality Network, Carers Equality Network, Disability Equality Network and Gender Equality network.  

We want to support you to succeed and be your very best with opportunities for training and development; along with the support of experienced managers and mentors.  

What you will bring…  

To be considered as a Security Operations Analyst, ideally you will need experience in the following areas; 

• All areas of cyber security including but not limited to incident management  
• Being the first line of defence against cyber-attacks and threats 
• Security Operations space 
• Microsoft technologies such as Azure, Defender XDR, and Sentinel 
• Processing information and escalating as required, acting on sound judgement 

JD Accountabilities: 

• Be the main point of contact for receiving information and intelligence on security incidents, requests and general queries. 
• Consult on the physical security of CQC buildings and conduct site visits to ensure that all CQC properties and external contractors who handle CQC data maintain a high level of security, in line with national standards. 
• Experience using Microsoft tools such as Azure, Defender, and Sentinel.  
• Liaising with internal and external colleagues, providing technical and general advice on all cyber security matters.  
• Undertaking confidential and technically complex research and investigations in relation to security breaches as requested or using your own initiative and judgement.  
• Undertaking detailed root cause investigations for cyber incidents with skilled interpretation and analysis of information.  
• Participation in the development of governance documentation (policies, standards, procedures, reporting, proposals, analysis).  
• Participate and contribute to exercising and testing programmes as a means of driving security improvement. 
• Proactively supporting the effectiveness of Information Asset Security.  
• Support with threat detection, cyber security event/incident response, and leading forensic investigations.  
• Work collaboratively with technology teams and the Security Operations Lead to remediate vulnerabilities and reduce the attack surface.  
• Continual improvement of cyber defence capabilities including M365 and XDR Defender suite. 
• Analysis of threat and vulnerability information with the ability to suggest a course of action.  
• Role models inclusive behaviors in everyday interactions.  

• Promotes a culture of respect and fairness and understands personal responsibilities around delivering against CQC diversity and inclusion strategy. 
• Demonstrate competence and supports others to achieve behavioral excellence through our Success Profiles (insert link) ensuring yourself and those you work with are the best that they can be.  
• Role models and supports others to instill our values into everything that we do.  
• All duties commensurate with your role and responsibilities. 

Essential Skills and Experience:  

• Experienced in managing competing priorities, excellent organisation skills and delivering on time. 
• Experience using Microsoft security technologies such as Sentinel, XDR etc. 
• Understanding of common security standards, frameworks and regulations (DSPT, ISO2700x, GDPR, CAF, MITRE, ITIL). 
• Experience working with PowerBI would be beneficial.   
• The ability to communicate security issues to peers and management. 
• Experience with working across complex multi-supplier/team environments to achieve the desired outcome. 
• Good verbal and written communication skills, with the ability to communicate effectively with colleagues. 
• Demonstrate excellent planning and organisational skills with the proven ability to prioritise and manage multiple tasks. 
• Tenacity and drive, maintaining focus and judgement in complex environments. 
• Highly collaborative, with strong partnership-building and interpersonal skills. 
• Copes with ambiguity and is comfortable working independently in a fluid environment. 

Qualifications:  

• Microsoft Security and Azure Qualifications (not essential, but desired) 

• All Cyber security industry qualifications (not essential, but desired) 

For an informal discussion or further information on the role, please contact Alex Foster, Security Operations Lead at [email protected]

Individual adjustments... 

We are committed to being open and transparent around our processes and we endeavour to offer every candidate the opportunity to perform at their best throughout the recruitment process. We seek to support candidates to identify potential challenges and work with them to identify and facilitate reasonable adjustments as appropriate. Should you require assistance and/or would like to request a reasonable adjustment at any stage of the recruitment process, please contact a member of the team via email: [email protected] 

CQC is committed to promoting a fair and inclusive workplace where all our people can flourish and reach their full potential. We know diverse teams allow for a more creative and productive environment and therefore encourage applications from everyone regardless of: age, gender/sex, gender identity or expression, religion or belief, disability, ethnicity or sexual orientation.

Our Values

 

Excellence – Meeting our challenge to be a high-performing organisation
Caring – Treating everyone with dignity and respect
Integrity – Demonstrating our passion for ‘doing the right thing’
Teamwork – Enabling us to be the best we can