Cyber Security Analyst - Ransomware

On behalf of the Met Office, we are looking for a Cyber Security Analyst (Inside IR35) for a 6 month contract based hybrid in Exeter as and when required. As a Cyber Security Analyst, your main responsibilities will be:

• Supporting information security delivery work, including the development and implementation of Information Security Policies, Standards, processes and guidance.
• The security of Digital infrastructure by proactively analysing security threats/challenges/risks to the environment, including conducting penetration testing and compliance reviews monitoring of Information Security and information management to ensure compliance including reviewing and monitoring system and network logs for malicious activity or unacceptable use.

Typical Skills:

• Technical Knowledge within anti-virus, networking, vulnerability management, encryption, Microsoft technologies, Linux.
• Knowledge of Information Security standards, legislation and practices, including GDPR & Data Protection Act 2018.
• Experience in dealing with a wide range of Information Security matters and operating in an ITIL based environment.
• Strong problem solving ability, with flexibility to think creatively and adapt to and implement rapidly changing systems and services.
• Incident management experience and an ability to quickly tailor responses to deal with fast-moving situations.

Essential:

• Strong hands-on experience in Security Operations, Incident Response, and Threat Detection.
• Hands on experience dealing with ransomware attacks
• Proficiency with Microsoft security tools including:
• Microsoft Defender for Endpoint (MDE)
• Microsoft Sentinel
• Microsoft 365 Defender
• Microsoft Azure Security Center / Microsoft Defender for Cloud
• Familiarity with enterprise operating systems including Windows and Linux, across on-premises, AWS, and Azure.
• Experience with ITIL-aligned processes including Incident, Problem, and Change Management.
• Proficient in using ServiceNow or similar ITSM platforms.
• Able to communicate technical risk and response details effectively to both technical and non-technical audiences.
• Experience driving continuous improvement through metrics, feedback, and automation.
• Understanding of threat frameworks (e.g., MITRE ATT&CK, Cyber Kill Chain), and how to incorporate threat intelligence into security processes.

Please be aware that this role can only be worked within the UK and not Overseas.

Disability Confident

As a member of the Disability Confident Scheme, the Met Office guarantees to interview all candidates who have a disability and who meet all the essential criteria for the vacancy. In cases where we have a high volume of candidates who have a disability who meet all the essential criteria, we will interview the best candidates from within that group. This scheme encourages candidates with a disability and/or neurodivergence to apply.

In exceptional circumstances, we may also need to apply the desirable criteria in our shortlisting process which may include holding active security clearance.

Armed Forces Commitment

The Met Office guarantees to interview veterans or spouses / partners of military personnel who meet all the essential criteria for the vacancy. In cases where we have a high volume of ex-military candidates / military spouses or partners, who meet all of the essential criteria, we will interview the best candidates from within that group. In exceptional circumstances, we may also need to apply the desirable criteria in our shortlisting process which may include holding active security clearance.

In applying for this role, you acknowledge the following "this role falls in scope of the Off Payroll Working in the Public Sector legislation. Any rates of payment quoted will reflect the gross rate per day for the assignment and will be subject to appropriate taxes and statutory costs. As such the payment to the intermediary and your income resulting from this contract will be different".