Cyber security

Working in NHS cyber security

Cyber security staff work in different types of cyber services. You might be based in a hospital, improving the organisation’s resilience to cyber attacks, or in the national Cyber Security Operations Centre working to protect the NHS as a whole.  

Roles in cyber security 

• Cyber security analyst
• Senior cyber security analyst
• Cyber security specialist (governance, risk and compliance)
• Cyber security specialist (Operations) 

Cyber security analyst 

You’ll assist the cyber team in responding to cyber security related alerts and issues. You may also take part in large cyber security projects. 

Your work may include: 

• Reviewing and analysing incidents and alerts generated by security solutions.
• Monitoring, reviewing and analysing network security and malware alerts.
• Analysing computer, server and network logs including vulnerabilities and known attacks
• Taking part in vulnerability scans.
• Helping an organisation return to normal as soon as possible after a cyber incident.  

Senior cyber security analyst 

You will handle cyber security alerts and be the point of contact for more junior members of the team. 

You will work on larger pieces of security work such as security control checking. 

You may need to supervise more junior members of the team. You may also deputise for senior team members. 

Your work may include: 

• Advising on cyber security including phishing, computer security and cyber crime.
• Triaging cyber security alerts for prioritisation.
• Making sure the NHS is compliant with various standards
• Scoping and delivering tests to ensure systems are secure (penetration tests)
• Identifying security risks and developing strategies to mitigate these.
• Leading on specialised workstreams and projects such as undertaking cyber risk assessments. 

Cyber security specialist (governance, risk and compliance) 

You will conduct risk assessments and ensure your organisation complies with cyber related standards and regulations. You'll also be an escalation point in the team. 

You will have a say in the strategy and lead on aspects of work, such as managing audits and research projects. 

Your work may include: 

• Cyber security risk assessments and audits that ensure the protection of digital systems
• Supporting the development and maintenance of information security management systems
• Reviewing and learning from breaches in information management safety
• Keeping up to date with best practice and technological advancements
• Acting as a resource for colleagues in the organisation to help them with risk and compliance
• Implementing security controls, risk assessment frameworks, and programmes that meet regulatory requirements 

Cyber security specialist (Operations) 

You will provide advice and support on cyber matters. You'll also be an escalation point for other members of the team. 

You will lead on cyber work to improve the organisation’s cyber resilience. 

You will be a mentor and supervisor for more junior members of the team. You'll also deputise for more senior members of the team from time to time.  

You work may include: 

• Ensuring compliance with relevant standards, receiving and processing complex digital information
• Providing specialist cyber security advice for platforms, systems and equipment
• Using advanced analytic tools to determine emerging cyber security threat patterns and vulnerabilities.
• Advising and designing service improvements, such as migrating digital services into the Cloud
• Ensuring the provision of a proactive, cost-effective, risk controlled, robust and responsive service.
• Planning and leading risk assessments, cyber improvements to digital projects
• Testing and security exercises, for example, simulating security breaches and reporting on findings. 

How much can I earn 

You’ll usually work on a national pay and conditions system called Agenda for Change (AfC). 

Cyber security roles are available at all levels. Entry roles start at band 5 through to Chief Information Security Officer who can earn over £100k. 

How about the benefits  

• Make a difference
• Flexible and part-time working
• Good opportunities for progression
• Thriving cyber profession
• Excellent pension scheme
• Good holiday entitlement, increasing with service
• NHS discounts in shops and restaurants 

Must have skills 

Depending on the role, you may need the following skills: 

• Basic knowledge of digital best practice, information security and information governance.
• Basic knowledge of current practices and issues in the cyber field.
• Communicating with non-technical colleagues about technical matters
• Strong analytical and problem-solving skills
• Risk assessment, risk management and governance skills
• An eye for detail.
•  Ability to follow documented processes and policies as well as use own initiative and judgement. 

How to become a cyber security professional in the NHS 

You will need sound IT skills. Knowledge of IT networking would also be useful. You will need to have at least five GCSEs, including English and Maths. As with any profession, you will need to continuously develop your knowledge, skills, attitude, behaviours, and values to progress your career. There are many options available if you want to develop in this area:  

• UK Cyber Security Council training pages
•  DfE Funded Skills Bootcamps
•  National Cyber Security Centre Certified Training 

There are also qualifications in cyber security: 

•  Cyber Security Qualifications
•  National Cyber Security Centre Certified Degrees
•  Cyber Security Apprenticeships 

What are my chances of starting a career in cyber security

Cyber Security is a growing profession and vacancies are frequently advertised.  

Where a career in cyber security can take you

There are many career opportunities in the field of cyber security, and your career could take you in a multitude of directions. There are great opportunities to progress into senior management roles across the NHS and beyond with fantastic opportunities for professional development.