Search
Header navigation
Cyber Security Analyst - Threat & Vulnerability Management

Cyber Security Analyst - Threat & Vulnerability Management

Ministry of Housing, Communities and Local Government
remoteHybrid
ExpiresExpires: Expiring in less than 3 weeks
IT
Flexible
£44,004 - £47,444 per year

Job summary

We are MHCLG

Here at the Ministry of Housing, Communities & Local Government (MHCLG), we work on things that make a real difference to people's lives.

Whether it's through the homes we live in, the work of our local councils, or the communities we're all part of, our work is at the top of the political agenda. We have ambitious and far-reaching outcomes to achieve this year and, if you're thinking of joining us, there's never been a more exciting time.

The aim of this role is to share actionable intelligence with, and between, local authorities to enable them to proactively and promptly respond to emerging threats and vulnerabilities. The role will also be responsible for identifying and triaging cyber vulnerabilities, taking into account the relevance and criticality of the vulnerability to local government. The post will support the management of critical vulnerabilities by drafting and promulgating protective advice for sharing across the sector.

You will play a significant role in developing capabilities to increase local government awareness of its cyber vulnerabilities/threats working collaboratively with SMEs in other government departments.

Find out more about our Digital teams and what they are working on through our MHCLG Digital blog. Please note that MHCLG do not offer visa sponsorship and applicants will need a valid visa for the duration of your employment.

Job description

As a Cyber Security Analyst, you'll:
  • Lead the local government response to critical security vulnerabilities
  • Work with SMEs in other government departments to ensure that critical notifications are passed in a timely manner to local authorities and develop analytical processes driving uptake of vulnerability reporting across local government
  • Manage and champion central government vulnerability tools (VRS and VMS), across local government and analysis of multiple data sources providing a view on sector risk
  • Proactively monitor the threat and vulnerability landscape landscape to identify cyber security threats to help inform defensive priorities and ensure detection capabilities remain effective for local authorities
  • Identify and prioritise threats and attack vectors, ensuring this is disseminated with the sector
  • Maintain an active presence in government intelligence sharing communities i.e. Slack, working groups with key partners
  • Communicate intelligence and risks to improve the response to new threats and attack vectors across networks, systems and applications

Person specification

As a Cyber Security Analyst, you'll have:

  • Experience working in cyber security, ideally within a SOC/Operations environment
  • An ability to present technical information to stakeholders in concise language, supplementing own knowledge with research where needed
  • An ability to analyse and assess the impact of critical vulnerabilities and produce outputs that demonstrate this
  • The skill to implement Threat Modelling methodologies to identify and mitigate potential security risks to systems and application
  • Demonstrable experience producing well-written, well-structured, timely and impactful products and notifications in clear English, that meet the requirements of stakeholders

Benefits

Alongside your salary of £44,004, Ministry of Housing, Communities and Local Government contributes £12,747 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides.At MHCLG we offer many benefits that range from tailored career pathways and flexible working to MyLifestyle Childcare Voucher and Cycle to Work Schemes. For more information, please click here.

Things you need to know

Artificial intelligence

Artificial intelligence can be a useful tool to support your application, however, all examples and statements provided must be truthful, factually accurate and taken directly from your own experience. Where plagiarism has been identified (presenting the ideas and experiences of others, or generated by artificial intelligence, as your own) applications may be withdrawn and internal candidates may be subject to disciplinary action. Please see our candidate guidance (opens in a new window) for more information on appropriate and inappropriate use.

Selection process details

The application process will be split into 2 stages, testing the following Success Profiles:

Behaviours , Experience , Technical

Please ensure your CV does not contain any personally identifiable information.

Note: We do not consider direct CV applications. All applications must be submitted via the provided application link.

Important: Your CV and Cover Letter must be merged into a single document before uploading.

Stage 1: Sift (CV & Cover Letter)

Experience & Technical: In your CV and covering letter, please include:
a. why you are interested in the role;
b. how you meet the essential skills and experience required

Most of our campaigns utilise multiple assessors and so it is possible that each of your answers would be viewed by different assessors.

In the event that we receive a large number of applications, we may conduct an initial sift using the lead sift question listed in the advert. Candidates who pass the initial sift may be progressed to a full sift, or progressed straight to interview.

Lead sift question (Experience): Tell us about your experience communicating complex cyber threats or vulnerabilities to different teams (e.g, internal/external stakeholders, operational teams, delivery teams).

Stage 2: Interview

  • Behaviours: "Delivering at Pace", "Communicating and Influencing", "Seeing The Big Picture"
  • Technical: Technical questions will be based around the essential skills and criteria as listed in the job description.*

*Candidates will be asked to prepare a 5-10 minute presentation, further details will be provided on invitation to interview.

Sift and Interview Dates

Sifting is envisaged to take place the week commencing 27th April 2026.

Interviews are envisaged to take place the week commencing 18th May 2026 and are currently being held remotely via videocall. This could be subject to change.

Group 1 Digital & Data Roles

MHCLG has implemented the Digital and Data capability framework for Group 1 roles. Applicants that are successful and have been offered a position will be required to complete a capability assessment after the interview.

MHCLG will honour completed capability assessments for this role from other Government Departments for existing civil servants on level transfer only.Please provide a copy of your capability assessment to the Hiring Manager when applying. If you have any queries on pay, please contact the Hiring Manager.

Each experience or technical skill is assessed between 1-3, representing working towards, at or above the job level requirements. You are awarded a proficiency level accordingly, and you will be given opportunity to annually re assess your capability and potentially increase your overall remuneration, through payment of allowances, depending on level of assessed capability.

Candidates moving from another government department have the option to retain their current basic pay if this is within our pay band for the relevant grade.

SEO Group 1 Digital and Data salary

  • The basic pay for this role will be between £47,444 – £53,575 (London), £44,004 – £50,086 (National). Candidates will usually be recruited to the median of the payscale.
  • A digital allowance may also be payable depending on the level of assessed capability, in order to meet the MHCLG overall targeted remuneration rate for the specific grade, location and capability rating.
  • For applicants in receipt of existing allowances, we will assess each case individually, but we would seek not to exceed the MHCLG overall targeted remuneration rate for the specific grade, location and capability rating for existing civil servants, the usual policy on level transfer and promotion will apply, subject to the statements above.

How We Recruit

Find out everything you need to know before applying here..

  • Applying
  • Sifting
  • Interview
  • Interview Results & Feedback
  • Reserve List
  • Near Miss
  • Civil Service Grades
  • We are a DCS, RIS & GPTWV employer
  • Reasonable Adjustments

How to Apply

What you need to know before applying.


  • Security Clearance Requirements
  • Civil Service Nationality Requirements
  • Right to Work
  • Artificial Intelligence
  • Civil Service Code and Recruitment Principles
  • CV Declaration
  • Sponsorships
  • Salary and Grade
  • Existing Civil Servants
  • Conflict of Interest
  • Location and Flexible Working
  • Fixed Term Contracts
  • Internal Fraud Database - Internal Fraud Register
  • Appeals and Complaints
  • Conflict of Interest

Security Clearance Requirements

National Office: + SC

London Office: + SC



Feedback will only be provided if you attend an interview or assessment.

Security

Successful candidates must undergo a criminal record check.Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check (opens in a new window).

See our vetting charter (opens in a new window).People working with government assets must complete baseline personnel security standard (opens in new window) checks.

Nationality requirements

This job is broadly open to the following groups:

  • UK nationals
  • nationals of the Republic of Ireland
  • nationals of Commonwealth countries who have the right to work in the UK
  • nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) (opens in a new window)
  • nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS)
  • individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020
  • Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service
Further information on nationality requirements (opens in a new window)

Working for the Civil Service

The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants.

We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window).The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.

Diversity and Inclusion

The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see theCivil Service People Plan (opens in a new window) and the Civil Service Diversity and Inclusion Strategy (opens in a new window).

Apply and further information

Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.

Contact point for applicants

Job contact :

Recruitment team

Salary range

  • £44,004 - £47,444 per year