Junior Cyber Security Analyst

Role Purpose

To support the Cybersecurity Manager in all aspects of Cybersecurity and lifecycle management of Cybersecurity projects / improvement programmes to support Sciensus strategic objectives.

Key Deliverables

• Governance, Risk & Assurance
  • Assist with cyber security risk assessments across systems, services, and business processes.
  • Support maintenance of risk registers and tracking of remediation actions.
  • Help prepare governance reporting and evidence packs under direction of senior team members.
  • Produce monthly security metrics as requested by the head of cyber security.
• Compliance & Audit Support
  • Support preparation for internal and external audits (ISO27001, Cyber Essentials Plus, NHS DSP Toolkit).
  • Assist with collecting, maintaining, and organising security evidence and documentation.
  • Monitor compliance with security policies and elevate issues to senior team members.
• Third‑Party & Supplier Assurance
  • Assist with supplier due‑diligence questionnaires and security assessments.
  • Track responses and evidence, escalating risks or gaps where identified.
  • Support ongoing monitoring of third‑party security controls.
• Operational Security Support
  • Support monitoring and uplift of technical and procedural security controls.
  • Assist with investigation of security alerts and incidents under supervision.
  • Participate in cyber incident response activities, including documentation and post‑incident reviews.
  • Take part in the cyber on‑call rota once suitably trained.
  • Administer security systems proactively and reactively where required, ensuring lessons learned and continual improvement opportunities are identified and implemented.
• Secure Change & Project Support
  • Support security reviews of new projects, systems, and changes.
  • Assist in identifying security risks associated with new technologies or suppliers.
  • Help ensure security requirements are embedded early in delivery.

Regulatory Responsibilities

• Adhere to (CQC/ GDP/NMC/GPHC / ICO) standards relevant to role.
• Chair / Attend all relevant committees aligned to remit of the role.
• Be aware of all responsibilities relating to Infection Prevention and Control.

Skills And Knowledge Required

Essential

• Strong interest in cyber security and information security.
• Understanding of cyber security principles (CIA triad, risk, controls).
• Awareness of common security frameworks or standards (e.g., ISO27001, Cyber Essentials).
• Good written and verbal communication skills.
• Ability to follow structured processes and work with attention to detail.

Desirable

• Degree, apprenticeship, or professional qualification in IT, Cyber Security, or related field.
• Exposure to security tooling, SIEM, endpoint protection, or identity platforms.
• Awareness of healthcare, regulated, or data‑sensitive environments.
• Working towards cyber security certifications (e.g. SC‑900, Security+, ISO27001 Foundation).

Benefits

• 25 days annual leave plus bank holidays
• Yearly pay reviews
• Contribution based pension scheme
• Life assurance
• Employee benefits platform (retailer discounts and more)
• Private medical (after qualifying period)
• Ongoing learning and development opportunities
• Annual company event
• Onsite gym, canteen, prayer room, and quiet room (in the Burton Upon Trent office)

We are a Disability Confident Company and have successfully gained the National Equality Standard (NES). We are committed to the fair treatment of all candidates, regardless of race, gender, religion, sexual orientation, age or disability. We welcome applications from all and select candidates based on skills, qualifications, and experience. Please talk to us during the application process to discuss any reasonable adjustments you may require.

#J-18808-Ljbffr…