Senior Security Analyst

We are committed to the development of our workforce. This position is only available to applicants who already work for Surrey County Council. We thank you for your interest in our roles and would encourage you to review our vacancies which are open to all.

This role has a starting salary of £53,713 per annum, for working 36 hours per week.

We are excited to be recruiting a Senior Security Analyst to join our fantastic team based at Woodhatch Place in Reigate. We offer a hybrid working model with a minimum of two office days per week.

Our Offer to You

• 26 days’ holiday, rising to 28 days after 2 years' service and 31 days after 5 years’ service (prorated for part time staff)
• Option to buy up to 10 days of additional annual leave
• A generous local government salary related pension
• Up to 5 days of carer’s leave and 2 paid volunteering days per year
• Paternity, adoption and dependents leave
• An Employee Assistance Programme (EAP) to support health and wellbeing
• Learning and development hub where you can access a wealth of resources
• Wellbeing and lifestyle discounts including gym, travel, and shopping
• A chance to make a real difference to the lives of our residents.

About The Role

As a Senior Security Analyst, you will play a central role in strengthening Surrey County Council’s cyber resilience. Your day-to-day work will include proactive security monitoring across our hybrid cloud and on premises environment, triaging and investigating alerts, and supporting coordinated incident response activities. You will operate our vulnerability management processes, translate threat intelligence into actionable defences, and contribute to the improvement of detection content and security controls. You will also work closely with IT colleagues and suppliers to address risks, gather evidence for audits, and prepare clear reporting on security posture and emerging trends.

This role does not include direct line management responsibilities, but you will regularly provide specialist guidance, coaching, and support to colleagues across IT&D and partner teams.

Over the next 12 to 18 months, you will contribute to several high impact initiatives including:

• Establishing a more mature, risk based vulnerability management lifecycle and reducing exposure windows across critical systems
• Enhancing incident response readiness through improved playbooks, scenario testing, and lessons learned processes
• Uplifting monitoring coverage and the effectiveness of SIEM/EDR/NDR tooling, including tuning and detection improvements
• Strengthening supplier assurance processes, especially for cloud and SaaS services
• Supporting the development of updated cyber security policies, standards and operating procedures

This is a pivotal role for a motivated cyber professional who wants to make a measurable difference. You will directly influence Surrey County Council’s operational security posture and help reduce risk across services that support residents, communities, and frontline operations. Your insights and expertise will shape decision making, improve control maturity, and contribute to a safer, more resilient public service environment.

Your Application

In order to be considered for shortlisting, your application will clearly evidence the following skills and align with our behaviours:

• Strong experience in cyber security operations, including alert triage, investigation, and incident response
• Demonstrable capability in vulnerability management and translating technical risk into meaningful actions
• Ability to analyse complex information and present clear, concise reports and recommendations
• Proven ability to work collaboratively with technical and non technical stakeholders
• Commitment to continuous professional development and staying current with emerging threats
• High-level proficiency with security tooling (SIEM, EDR, cloud security tools) and modern IT environments
• Alignment with our values of accountability, teamwork, and inclusive service delivery

To apply, we request that you submit a CV and you will be asked the following 4 questions:

1. Give an example of how you have helped build a positive security culture across teams.
2. Describe a time when you led or contributed to triage, investigation, or response during a cyber security incident. What actions did you take, and what was the outcome?
3. Give an example of when you identified a significant technical vulnerability or risk. How did you communicate it to stakeholders, and what actions were taken as a result?
4. Tell us about a situation where you analysed complex security information or data and produced a report or recommendation. How did you ensure your findings were clear, concise, and actionable?

Before submitting your application, we recommend you read the job description and our Life at Surrey handbook to get an insight into working at Surrey.

Contact Us

Please contact us for any questions relating to the role. This could be to discuss flexible working requests, transferable skills or any barriers to employment.

For an informal discussion please contact Nafis Lodhi via email at nafis.lodhi@surreycc.gov.uk.

The job advert closes at 23:59 on 24/03/2026, with interviews planned to follow shortly thereafter.

We look forward to receiving your application, please click on the apply online button below to submit.

Local Government Reorganisation (LGR)

Surrey County Council is undergoing Local Government Reorganisation, moving from a two-tier system to two new unitary councils in April 2027. If you are employed by Surrey on 1st April 2027, your role will transfer with current terms and conditions to one of the new organisations, supporting local devolution and greater powers for our communities.

Join our dynamic team and shape the future of local government. Make a lasting impact with innovative solutions and improved services for our community. Help us build a brighter future for our residents! Please see more information here: Information for applicants on Local Government Reorganisation - Surrey County Council

Our Commitment

We are a disability confident employer which means if you have shared a disability on your application form and have evidenced you meet the minimum criteria, we guarantee you an interview.

Your skills and experience truly matter to us. From application to your first day, we’re committed to supporting you with any adjustments you need, we value inclusion and warmly welcome you to join and help build a workplace where everyone belongs.