Trac proudly powers the recruitment for
NHS Counter Fraud Authority
About
The NHS Counter Fraud Authority (NHSCFA) is the national body responsible all for matters relating to the prevention, detection and investigation of economic crime across the NHS. Aligned to the DH Health Group Counter Fraud strategy, the NHSCFA acts as the principal lead for the NHS and wider health group in counter fraud intelligence work.
Contact
- Address
- NHS Counter Fraud Authority
- 7th Floor,
- 10 South Colonnade,
- London
- E14 4QQ
- Contact Number
- 0300 330 0739
Information & Cyber Security Analyst
Accepting applications until: 14-Sep-2025 23:59
Vacancy status: Open
Accepting applications until: 14-Sep-2025 23:59
Key details
Location
- Site
- 7th Floor, HM Government Hub
- Address
- 10 South Colonnade Canary Wharf
- Town
- London
- Postcode
- E14 4PU
- Major / Minor Region
- Tyne and Wear
Contract type & working pattern
- Contract
- Permanent
- Hours
- Full time
- Flexible working
- Home or remote working
Salary
- Salary
- £38,682 - £46,580 per annum
- Salary period
- Yearly
- Grade
- (NHS AfC: Band 6)
Specialty
- Main area
- Cyber Security
The NHS Counter Fraud Authority (NHSCFA) is the national body responsible all for matters relating to the prevention, detection and investigation of economic crime across the NHS. Aligned to the DH Health Group Counter Fraud strategy, the NHSCFA acts as the principal lead for the NHS and wider health group in counter fraud intelligence work.
The NHSBSA is responsible for the processing of your application; a privacy notice is attached to advise you on how we will process your personal data.
Job overview
The NHS Counter Fraud Authority (NHSCFA) is the national body responsible for all matters relating to the prevention, detection and investigation of economic crime across the NHS. Further information about our work and annual plan for delivering this is available on our website.
An exciting opportunity has arisen to join the NHSCFA Technology team as an Information & Cyber Security Analyst. We are looking for someone with a proven background in Information/Cyber security and a flexible 'can do' attitude and approach to work in the Information & Cyber Security Team who manage and maintain the security of NHSCFA ICT infrastructure and information systems.
You will work to proactively monitor IT systems; identify, manage and resolve security incidents, vulnerabilities, security alerts and threats; potentially perform penetration testing; and contribute to maintaining security certifications, assurances and accreditations.
Potential applicants can contact Simon Clark at [email protected] for an informal chat if they have any questions regarding the role.
Role requires Security Clearance
Interviews will be face to face at Canary Wharf 24th & 25th September
We reserve the right to close this vacancy before the advertised closing date should we receive a significant number of applications.
Advert
Working as part of the Information Security team to actively monitor, maintain, and develop systems and processes to ensure the security of NHS Counter Fraud Authority ICT infrastructure and information systems.
To manage and report on processes and systems that ensure the security of the IT network infrastructure and information systems.
The post-holder will assist the team with identifying and resolving security incidents, vulnerabilities and risks. This can include, but is not limited to, proactively monitoring ICT systems, analysing firewall rules and performing penetration tests.
They will maintain a solid knowledge of the information security principles and practices, ensuring that timely technical support is provided to satisfy the organisation’s business needs.
Working for our organisation
We have offices based in Coventry, Newcastle and London and also offer flexible and home-based working. The NHSCFA values and respects the diversity of its employees and aims to recruit a workforce which reflects our diverse communities. We welcome applications irrespective of people's age, disability, gender, race or ethnicity, religion or belief, sexual orientation, or other personal circumstances. We have policies and procedures in place to ensure that all applicants are treated fairly and consistently at every stage of the recruitment process, including an invitation to the first stage of the selection process and consideration of reasonable adjustments for people who have a disability. We accept secondments from the public and private sector; you should have agreement to being released from your current role in principle prior to submitting an application form. When you apply for this role, you will be redirected to our recruitment system TRAC. Please apply without delay as reserve the right to close any vacancies from further submissions when we have received sufficient applications from which to make a shortlist. The CFA does not hold a sponsor licence in respect of skilled worker visas and so is unable to employ candidates requiring sponsorship.
Detailed job description and main responsibilities
· Manage, monitor, and develop NHSCFA cyber security operations and ICT security infrastructure to manage and reduce cyber risk and mitigate cyber threats.
· Actively monitor NHSCFA ICT systems:
· manage and operate IT security monitoring tools and systems,
· review IT system alerts,
· triage to eliminate false positives.
· Identify threats that have entered the network.
· Evaluate and address system generated and user-reported security incidents:
· identify affected systems and scope of the incident,
· analyze running processes and configurations on affected systems,
· carry out in-depth threat intelligence analysis to identify an attack type, source, entry point, and possible remediation,
· implement remediation or escalate incident.
· Support the ICT Security Incident Management Process as a member of the NHSCFA Security Incident Response Team.
· Manage ICT Security service requests and incidents via the NHSCFA Service Desk system.
· Ensure appropriate access control to systems is maintained.
The NHSCFA values and respects the diversity of its employees, and aims to recruit a workforce which reflects our diverse communities. We welcome applications irrespective of people's age, disability, gender, race or ethnicity, religion or belief, sexual orientation, or other personal circumstances.
We have policies and procedures in place to ensure that all applicants are treated fairly and consistently at every stage of the recruitment process, including an invitation to the first stage of the selection process and consideration of reasonable adjustments for people who have a disability.
All new entrants to the NHS will be appointed on the minimum of the pay scale in line with Agenda for Change Terms and Conditions.
If you are applying to undertake this role on a secondment basis you should discuss this opportunity with your manager and have agreement to being released from your current role in principle, prior to submitting an application form.
We reserve the right to close any vacancies from further submissions when we have received sufficient applications from which to make a shortlist. Please ensure you apply without delay if you wish to be considered for this role. For help with completing your application form, please read the guidance notes attached to this advert.
Please note all contact is made via our TRAC recruitment system. Please check your account regularly. If you are shortlisted for interview you will be required to provide proof of ID and the right to work in the UK.(Please refer to attached guidance documents for further details). Failure to bring the required proof will mean that we may be unable to proceed with your interview.
Please ensure you provide full contact details, including email address or fax number for each referee.
NHS Counter Fraud Authority Website: www.cfa.nhs.uk
Person specification
pSpec
Essential criteria
- Experience of 1st-3rd level technical support of IT infrastructure or security, both in person and remote.
- Demonstrate detailed knowledge of: • IT system monitoring (SIEM). • Security Incident Management.
- Demonstrate detailed knowledge of Information Security in several of the following areas: • Intrusion detection and prevention systems. • Vulnerability Management. • Network technology and operations. • Windows 10 and Windows Server. • SUSE Linux. • Microsoft365. • Information Security Management Systems ISO27001. • Risk Management Process. • IT system auditing
- Experience with IT security architectures.
- Demonstrate knowledge in some of the following areas: • Encryption Systems. • Security Products (Authentication, Data Loss Prevention, SEIM). • Firewall/WAF administration
- Degree in computer science, information technology, or a related field OR equivalent experience in a related field, e.g. network operations plus specialist security certification(s).
- Demonstrate a thorough understanding of the use of remote management tools in the effective support of a user base distributed over a wide geographic area.
Desirable criteria
- Demonstrate knowledge of Information. Security in several of the following areas in addition to those matching Essential criteria: • Windows 10 and Server. • SUSE Linux. • Microsoft365. • Information Security Management Systems ISO27001. • Risk Management Process. • Public Services Network (PSN) and NHS N3. • Database Security. • Microsoft Sentinel Experience with software security architecture and software security testing.
- Recognised qualification in area of specialisation: • EC-Council Certified SOC Analyst (CSA) • EC-Council Certified Ethical Hacker CompTIA Security+ CompTIA Network+
pSpec
Essential criteria
- Experience of 1st-3rd level technical support of IT infrastructure or security, both in person and remote.
- Demonstrate detailed knowledge of: • IT system monitoring (SIEM). • Security Incident Management.
- Demonstrate detailed knowledge of Information Security in several of the following areas: • Intrusion detection and prevention systems. • Vulnerability Management. • Network technology and operations. • Windows 10 and Windows Server. • SUSE Linux. • Microsoft365. • Information Security Management Systems ISO27001. • Risk Management Process. • IT system auditing
- Experience with IT security architectures.
- Demonstrate knowledge in some of the following areas: • Encryption Systems. • Security Products (Authentication, Data Loss Prevention, SEIM). • Firewall/WAF administration
- Degree in computer science, information technology, or a related field OR equivalent experience in a related field, e.g. network operations plus specialist security certification(s).
- Demonstrate a thorough understanding of the use of remote management tools in the effective support of a user base distributed over a wide geographic area.
Desirable criteria
- Demonstrate knowledge of Information. Security in several of the following areas in addition to those matching Essential criteria: • Windows 10 and Server. • SUSE Linux. • Microsoft365. • Information Security Management Systems ISO27001. • Risk Management Process. • Public Services Network (PSN) and NHS N3. • Database Security. • Microsoft Sentinel Experience with software security architecture and software security testing.
- Recognised qualification in area of specialisation: • EC-Council Certified SOC Analyst (CSA) • EC-Council Certified Ethical Hacker CompTIA Security+ CompTIA Network+
Further details / informal visits contact
- Name
- Simon Clark
- Job title
- Information & Cyber Security Manager
- Email address
- [email protected]
Start your application
Sign in
Create an account
Create your account and apply for your new job!