Didn't find the right job?

Get expert career advice to help you find the ideal role and improve your job search strategy.

415 Cybercrime jobs in the United Kingdom

Cybercrime Investigation Support - Stratford

HMRC

Posted 5 days ago

Tap Again To Close

Job Description

Cybercrime Investigation Support - Stratford About the job

Job summary

Discover a career in your hands at HMRC. Whether you're seeking purpose, growth, or a workplace that gives you a true sense of belonging, hear from some of our employees as they share their story about what it's really like to work at HMRC.

Visit our YouTube channel to watch the full series and come and discover your potential.

HMRC is the UK's tax, payments and customs authority and we have a vital purpose: we collect the money that pays for the UK's public services and help families and individuals with targeted financial support.

Covert Operational Digital Exploitation (CODE) sits within HMRC's wider Fraud Investigation Service (FIS) responsible for the department's civil and criminal investigation work. FIS ensures that HMRC has an effective approach to taking on the most serious tax evasion and fraud.

CODE is the specialist support business area responsible for the provision of enhanced digital and covert specialist technological support to FIS investigations.

Working across Law Enforcement and government, CODE provides investigative tools and covert techniques to front-line investigations and works with key partners to develop and provide access to new technology and systems which enable investigators to respond to serious and complex tax evasion and crime.

Job description

The Cybercrime Team utilise a range of technical capabilities, Intelligence tools and investigative work to detect, mitigate and investigate the most significant attacks against HMRC's online services, our customers, and our data.

Consisting of 3 strands working together to reduce cyber enabled harm to UK citizens, businesses and HMRC from organised criminal networks using technology to fraudulently access customers devices and online accounts.

Strategy and Business Management

This key area underpins and brings together the vision, purpose, and insights of the Cybercrime team. It ensures the ambition, strategic direction and priorities for the teams Strategy are set and actioned against HMRC's Strategy, the Risk Treatment Plan and Tactical priorities.

Business Management fulfils a variety of roles and functions in support of the Senior Leadership Team and wider team, including, inbox/diary management, recruitment, change management, knowledge management, including training and corporate assurance.

Technical Investigation

The Technical Investigators use their specialist skills in Digital Forensics, online log data analysis, malware analysis and knowledge of cyberspace and cybercriminals' tactics working alongside investigators to identify and develop investigations from inception to producing technical evidence for court. They use this insight to enhance HMRCs capability to defend and investigate cybercrime attacks.

Intelligence, Investigation & Operational Engagement

This area of the team utilises a range of covert and sensitive intelligence, investigation capabilities and partnerships to detect cybercrime attacks and identify online criminal actors posing a threat to HMRC online services, our data and customers.

Person specification

As a Cybercrime Investigation Support officer, you will provide support within the team, based across various Regional Centres, in the following areas:

Cybercrime Intelligence, Investigation & Operational Engagement.
Cybercrime Technical Investigation.
Cybercrime Strategy and Business Management.

These roles will require occasional travel and overnight stays to various Regional Centres

The successful candidates will:

Assisting in aspects of Cybercrime Investigations
Assisting in reviewing digital forensic material
Scheduling and maintaining case management records.
Maintaining digital records of Investigations
Assisting in authoring reports
Assisting in identifying fraud by analysing data outputs from digital systems
Handling evidence and writing witness statements which may result in presenting evidence in Court.

You will help to build HMRC capability in digital investigation by drawing operational learning from investigations to build and share knowledge and create efficiencies in future cases.

You will Keep up to date with cybercrime and security research and raise awareness of relevant material within the team. Attend training courses as required, which may include overnight stay.

During your probation you will be expected to develop your skills and knowledge within the three areas of the Cybercrime team and pass SANS SEC301 - Introduction to Cyber Security

This role comes with the expectation of regular travel to HMRC Regional Centres, particularly Bristol, Stratford and Nottingham

Essential Criteria

Demonstrate a strong interest in Cybercrime and fraud detection.
Demonstrate that you are an excellent team player, be able to work effectively with others, not only during the delivery of work but also in supporting colleagues working in challenging and fast-moving environment.
Demonstrate strong IT skills such as:
Microsoft Office 365
Familiar with how the web works
Experience in producing verbal and written reports for various stakeholders.
Demonstrate practical and pragmatic with a problem-solving mind-set and an eye for precision and detail.

Desirable Criteria

Excellent ability to communicate complex information to a variety of audiences both verbally and written.
The ability to work independently, prioritising work accordingly.
Familiar with programming
Familiar with HMRC systems e.g. FCMS, CIP, SPLUNK, ETMP, SA
Familiarity with the Criminal justice system and disclosure
Qualifications relating to Cyber Security, Computer Forensics or Civil/Criminal Investigation
Holds a full UK driving licence.

Additional Security Information

This post requires National Security Vetting at Security Check (SC) clearance level, and you must hold SC vetting or be willing to apply for SC vetting.

Flexibility Payment

Flexibility Payment (FP) - This post attracts a Level 1a +90 hours Flexibility Payment (FP) that is paid monthly with salary. This FP allows HMRC flexibility to change your work pattern, at short notice, to meet business needs.

In applying for a position and accepting the FP you agree that you can and will meet those attendance requirements.

FP levels are reviewed annually - on a business need and personal basis - and may be subject to change.

If you currently receive the Flexibility Payment, which may include Transition Protection and/or a Maintained Pension Value, moving to a new role may affect your payments.

Details of the Flexibility Payment can be found in the attached document.

Driving licence

A full UK Driving Licence

We recognise that some people cannot drive due to a disability or underlying health condition and may not be able to meet this requirement. Where this applies, you can apply but will need to declare that you require a reasonable adjustment at the point you receive a provisional offer. The vacancy holder will then discuss your specific requirements to consider if this can be reasonably accommodated in this role.

Behaviours

We'll assess you against these behaviours during the selection process:

Working Together
Developing Self and Others
Delivering at Pace

Benefits

Alongside your salary of £34,093, HM Revenue and Customs contributes £9,876 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides.

HMRC operates both Flexible and Hybrid Working policies, allowing you to balance your work and personal commitments. We welcome applications from those who need to work a more flexible arrangement and will agree to requests where possible, considering our operational and customer service needs.

We offer a generous leave allowance, starting at 25 days and increasing by a day for every year of qualifying service up to a maximum of 30 days.

Pension - We make contributions to our colleagues' Alpha pension equal to at least 28.97% of their salary.
Family friendly policies.
Personal support.
Coaching and development.

To find out more about HMRC benefits and find out what it's really like to work for HMRC hear from our insiders or visit Thinking of joining the Civil Service

Things you need to know

Selection process details

This vacancy is using Success Profiles (opens in a new window), and will assess your Behaviours, Strengths and Experience.

How to Apply

As part of the application process, you will be asked to provide the following:

A name-blind CV including your job history, qualifications and previous experiences for up to your last 5 roles.
A 250-word personal statement. Your personal statement should show how you consider your technical and personal skills, qualities and experience to define your suitability for the role.
A separate 500 word statement on how you demonstrate you meet the essential criteria.

Please complete a separate statement (Max 250 words) for the Desirable Criteria where applicable. This is not essential for the role but may be considered by the vacancy-holder where candidates have the same scores at sift or interview.

Further details around what this will entail are listed on the application form.

Artificial Intelligence can be a useful tool to support your application, however, all examples and statements provided must be truthful, factually accurate and taken directly from your own experience. Where plagiarism has been identified (presenting the ideas and experiences of others, or generated by artificial intelligence, as your own) applications may be withdrawn and internal candidates may be subject to disciplinary action. Please see our candidate guidance for more information on appropriate and inappropriate use.

Sift

In the event of a large number of applications being received, an initial sift may be held on the essential criteria.

At full sift your CV, Personal Statement and Essential Criteria statement will be assessed, with the successful candidates being invited to interview.

We may also raise the score required at any stage of the process if we receive a high number of applications.

Interview

During the panel interview, you will be assessed on Experience Behaviours and Strengths.

This is an example of a strengths-based question

"It is often said that the customer's needs should come first. To what extent do you agree or disagree with this statement?"

There is no expectation or requirement for you to prepare for the strengths-based questions in advance of the interview, though you may find it helpful to spend some time reflecting on what you enjoy doing and what you do well.

Interviews will take place face to face at Stratford Regional Centre.

Sift and interview dates to be confirmed.

Eligibility

Please take extra care to tick the correct boxes in the eligibility sections of your application form. We understand mistakes sometimes happen but if you contact us later than two working days(Monday-Friday) before the vacancy closes, we will not be able to reopen your application for you. If you do make a mistake with your eligibility form, please contact us via: - Use the subject line to insert appropriate wording for example - 'Please re-open my application - (insert vacancy ref) & vacancy closing date (insert date)'.

To check that you are eligible to apply for this role, please review the eligibility information before submitting your application.

Reserve List

A reserve list may be held for up to 12 months from which further appointments may be made for the same or similar roles - if this applies to you, we'll let you know via your Civil Service Jobs account.

Criminal Record Check

Applications received from candidates with a criminal record are considered fairly in accordance with the DBS Code of Practice and the Recruitment of ex-offenders Policy.

Merit List

After interview, a single merit list will be created, and appointments will be made in strict merit order until the set demand is filled. If successful, you will be informed when we reach your position on the merit list.

Reasonable Adjustments

We want to make sure no one is put at a disadvantage during our recruitment process. To assist you with this, we will reduce or remove any barriers where possible and provide additional support where appropriate.

If you need a change to be made so that you can make your application, you should:

Contact the UBS Recruitment team via as soon as possible before the closing date to discuss your needs.

Complete the "Assistance required" section in the "Additional requirements" page of your application form to tell us what changes or help you might need further on in the recruitment process. For instance, you may need wheelchair access at interview, or if you're deaf, a Language Service Professional.

Additional Security Information

Please note: in addition to the standard pre-employment checks for appointment into the Civil Service, all candidates must also obtain National Security Vetting at Security Check (SC) clearance level for this vacancy. You will normally need to meet the minimum UK residency period as determined by the level of vetting being undertaken, which for SC is 5 years UK residency prior to your vetting application. If you have any questions about this residency requirement, please speak to the vacancy holder for this post.

Important information for existing HMRC contractual homeworkers

Please note that this role is unsuitable for contractual homeworkers due to the nature and/or requirements of the role.

Terms and Conditions

Customer facing roles in HMRC require the ability to converse at ease with members of the public and provide advice in accurate spoken English and/or Welsh where required. Where this is an essential requirement, this will be tested as part of the selection process.

HMRC has a presence in every region of the UK. For more information on where you might be working, review this information on our locations.

The Civil Service values honesty and integrity and expects all candidates to abide by these principles. The evidence you provide in your application must relate to your own experiences.

Any instances of plagiarism or other forms of cheating will be investigated and, if proven, the relevant application(s) will be withdrawn from the process.

Recording of interviews is prohibited unless explicit agreement is sought in line with the UK General Data Protection Regulations.

Questions relating to an individual application must be emailed as detailed later in this advert.

Applicants who are successful at interview will be, as part of pre-employment screening, subject to a check on the Internal Fraud Database (IFD). This check will provide information about employees who have been dismissed for fraud or dishonesty offences. This check also applies to employees who resign or otherwise leave before being dismissed for fraud or dishonesty had their employment continued. Any applicant's details held on the IFD will be refused employment.

A candidate is not eligible to apply for a role within the Civil Service if the application is made within a 5 year period following a dismissal for carrying out internal fraud against government.

New entrants will join on the minimum of the pay band.

Please note that, if you are applying for roles on a part-time basis, the salary agreed will be pro-rata, reflective of the working hours agreed within your contract.

If you experience accessibility problems with any attachments on this advert, please contact the email address in the 'Contact point for applicants' section.

Feedback will only be provided if you attend an interview or assessment.

Security

Successful candidates must undergo a criminal record check.

Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check (opens in a new window).

See our vetting charter (opens in a new window).

People working with government assets must complete baseline personnel security standard (opens in new window) checks.

Nationality requirements

Open to UK nationals only.

Working for the Civil Service

The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants.

We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window).

The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.

The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.

Diversity and Inclusion

The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see the Civil Service People Plan (opens in a new window) and the Civil Service Diversity and Inclusion Strategy (opens in a new window).

This advertiser has chosen not to accept applicants from your region.

Information Security Analyst

Prism Digital

Posted 8 days ago

Tap Again To Close

Job Description

Information Security Analyst | ISO27001, Rapid7, Protecht | Global Trading Platform

£60–70k base + 10% bonus
Hybrid in Coventry with monthly travel to London
Security certification support & career development built-in

Help shape a high-stakes security program as a hands-on GRC Analyst supporting a global financial institution’s banking expansion. You’ll be central to their mission of scaling a modern InfoSec environment, balancing regulatory rigor, ethical standards and BAU resilience.

You’ll focus on third-party security assessments, metrics reporting, and supporting certification frameworks including ISO27001 and SOC2. Expect close collaboration across risk, technology and compliance stakeholders. All while operating at pace, with visibility and trust from the top down.

What you’ll bring:

3+ years in an InfoSec or IT security role within a regulated or financial firm
Security certifications: SSCP, Security+, or equivalent
Strong GRC foundation: Able to interpret risk frameworks and speak the language of ISO, SOC2, NIST, etc.
Comfortable with security tooling and metrics-driven reporting
Confident communicator: Translate acronyms into action, and engage stakeholders with clarity and purpose
Ethical mindset: understand when to escalate, when to challenge, and how to own your area

What you’ll be doing:

ISO27001 & SOC2 governance: day-to-day support of the ISMS, remediation tracking, risk reviews
Third-party risk assessments: conduct supplier security reviews aligned to appetite and regulatory frameworks
Security awareness training: drive phishing simulations and curate internal content via Proofpoint
BAU InfoSec operations: ticket triage, KPI reporting, risk dashboards, vulnerability and patch monitoring
Compliance tooling: operate and report using platforms like Protecht, Panorays, Rapid7, and Armis
Banking enablement: key InfoSec input into a major new market launch

Tech & tools you’ll use:

Protecht – Enterprise risk & audit platform
Panorays – Third-party risk management
Rapid7, Armis – Vulnerability & asset visibility
Proofpoint – Phishing simulations and awareness content
Microsoft Purview – Data governance and policy enforcement
Azure (beneficial) – Cloud IAM, logging, and security monitoring

Why this role?

High-impact GRC project work tied to new market expansion
Strong internal security culture: backed by a collaborative team and engaged InfoSec leadership
A clear opportunity to stretch across awareness, compliance, and operational domains

Information Security Analyst | ISO27001, Rapid7, Protecht | Global Trading Platform

This advertiser has chosen not to accept applicants from your region.

Information Security Analyst

Northampton, East Midlands £300 - £400 day VIQU IT Recruitment

Posted 1 day ago

Tap Again To Close

Job Description

contract

Information Security Analyst – 3-month contract – Northampton

My Customer is seeking a detail-oriented and proactive Information Security Analyst to join their team. This role focuses on two critical areas: operational support for GDPR compliance , particularly handling Data Subject Access Requests (DSARs ), and ensuring day-to-day adherence to their Information Security Management System (ISMS).

Key.

This advertiser has chosen not to accept applicants from your region.

Information Security Analyst

Crawley, South East £45000 - £55000 annum Rentokil Initial Group

Posted 83 days ago

Tap Again To Close

Job Description

Permanent

The Information Security Analyst will be responsible for assuring information security and managing risks related to the use, processing, storage, and transmission of information and the systems and processes used for those purposes. They will be responsible for the collection, processing, preservation, analysis, and presentation of evidence in support of information security activities.

Main tasks:

 Maintains and improves information security solutions for organization systems and products that comply with all applicable security policies, standards, and regulatory framework

Establishes, implements, and maintains information assurance programs, requirements, and standards based on the analysis of user, policy, regulatory, and resource demands

uthors and updates security documentation to include, but not limited to, standards, policy, system security plans, contingency plans, standard operating procedures, and configuration management plans

nalyzes information assurance-related technical problems and provides engineering and technical support for solving these problems

dentifies, reports, and resolves security violations while also proactively seeks to uncover indicators of compromise

acilitates, performs analysis, and stores appropriate artifacts to respond to audits to comply with regulatory frameworks

nsures employees and third parties understand, acknowledge, and fulfill all applicable information security policies

onducts computer forensic analysis, data recovery, eDiscovery, and other IT investigative work while collaborating with fraud examiners, legal counsel, human resources (HR), and other IT technical personnel in investigations

ompiles and analyzes data for management reporting and metrics

nalyzes potential impact of new threats and communicates risks to relevant business units by monitoring information security related websites to stay up to date on current attacks and trends

Requirements

1. Bachelor's degree or relevant professional certification with less than 1 year relevant work experience OR 1 year relevant work experience

2. Self-motivated and possessing of a high sense of urgency and personal integrity

3. Instinctive and creative with the highest ethical standards and values

4. Excellent investigative skills, problem-solving, insatiable curiosity, and an innate drive to win

5. Technical knowledge of system security vulnerabilities and remediation techniques for identity, authentication, authorization, data, and access controls

6. An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business

7. An ability to identify and assesses the severity and potential impact of risks and communicate to risk owners outside Information Security in a way that consistently drives objective, fact-based decisions about risk that optimize the trade-off between risk mitigation and business performance

8. Technical expertise in following industry best practices and standards in digital evidence acquisition, handling, and documentation

Benefits

Competitive salary and bonus scheme
Hybrid working
Rentokil Initial Reward Scheme
23 days holiday, plus 8 bank holidays
Employee Assistance Programme
Death in service benefit
Healthcare
Free parking

At Rentokil Initial, our customers and colleagues represent diverse backgrounds and experiences. We take pride in being an equal opportunity employer, actively encouraging applications from individuals from all walks of life. Our belief is that everyone irrespective of age, gender, gender identity, gender expression, ethnicity, sexual orientation, disabilities, religion, or beliefs, has the potential to thrive and contribute.

We embrace the differences that make each of our colleagues unique, fostering an inclusive environment where everyone can be their authentic selves and feel a sense of belonging. To ensure that your journey with us is accessible if you have any individual requirements we invite you to communicate any specific needs or preferences you may have during any stage of the recruitment process. Our team is available to support you; feel free to reach out to ( ) if you need anything

Be Yourself in Your Application! At Rentokil Initial, we value innovation, but we want to see the real you! While AI can help with structure and grammar, make sure your application shows your true passion and understanding of the role. A personal touch will help you stand out.

This advertiser has chosen not to accept applicants from your region.

Senior Information Security Analyst

Maidstone, South East Pearson Whiffin IT & Digital

Posted 5 days ago

Tap Again To Close

Job Description

permanent

Information Security Analyst

We are looking for an Information Security Analyst working as part of a central team supporting a mixture of security operations ensuring compliance with business needs. This will involve vulnerability management, making sure security controls are functioning, mentorship of more junior members and working as part of a 24 x 7 remote support rota.

If you have experi.

WHJS1_UKTJ

This advertiser has chosen not to accept applicants from your region.

Cyber Security Analyst

Bedfordshire, Eastern £52250 - £52259 Annually Connect2Employment

Posted 1 day ago

Tap Again To Close

Job Description

permanent

Main purpose of post:

The Cybersecurity Department with our client provide support for all electronic communications systems at the site, as well as taking a leading role in delivering technology change / improvement projects and managing external support agreements.

The Cyber Security Analyst is required to focus on the detection, investigation and response to cyber security events and incidents. Other tasks involve BAU security tasks, supporting cyber security projects and assisting with regulatory compliance.

Daily tasks will involve the following:

* Endpoint monitoring and analysis.

* Incident readiness and handling as part of the Computer Security Incident Response (CSIRT) team.

* Monitor and administer Security Information and Event Management (SIEM).

* Malware analysis and forensics research.

* Understanding/ differentiation of intrusion attempts and false positives.

* Investigation tracking and threat resolution.

* Vulnerability identification & mitigation / remediation.

* Compose security alert notifications.

* Advise incident responders & other teams on threat.

* Triage security events and incidents apply containment and mitigation/remediation strategies.

* Generate reports and document security incidents / events.

* Proactively monitoring the performance of systems, and make regular routine inspections of installed equipment and take corrective avoidance actions to prevent wider problems.

* Act as the point of escalation for the Service desk for security related tickets.

* Analysis of weekly vulnerability scans and update relevant records.

Essential

* A well organised and structured approach to work planning, time allocation to tasks, and a flexible approach to daily routines to deliver the desired results.

* An ambition to constantly learn new skills and develop knowledge, with an understanding that study time outside of working hours may be required for career development.

* Credible knowledge/experience in Microsoft Windows Operating Systems.

* Credible knowledge/experience of Active Directory, Group policies, TCP/IP, DNS, DHCP and Exchange Server.

* Capable of effectively multi-tasking, prioritizing work, and handling competing interests

* Capable of analysing information technology logs and events sources preferred

* Working knowledge of data storage systems, data backup and restoration methods.

* Understanding of security tooling, its purpose and functionality (Anti-Malware, IPS, Web and Email Gateways, security analysis tools, web security tools, next generation firewall/UTMs)

* Ability to work independently while managing support to a high standard

* Contribute credibly to IT department's delivery of SLAs and other support targets

* Self-motivated to advance own knowledge & gain formal qualifications

* Ability to analyse vulnerabilities, threats, designs, procedures and architectural design, producing reports and sharing intelligence

* Advanced knowledge of computer forensics; legal, government and jurisprudence as they relate to cybersecurity; operating systems; and methods for intelligence gathering and sharing

* Knowledge of Cloud computing, computer network defence, identity management, incident management and network security.

* Significant experience within a SOC environment.

* Incident response experience

* Qualification / Certification in Cyber Security

Desirable

* IT Qualifications / Certifications such as CompTIA A+, Network+, Security+

* IT Helpdesk experience or knowledge

* Cyber Security Operation Centre experience

* Qualification / Certification in Cyber Security

Person Specification:

* Communication. Structures and conveys information and ideas effectively. Communicates to ensure they are understood by others, that they understand others and share information with colleagues at all levels.

* Achieving results. Knows what needs to be achieved by when. Anticipates obstacles. Motivates self and others to overcome barriers and achieve results.

* Planning & Organising. Identifies a goal and puts in place a sequence of steps to ensure priorities are delivered on time, making effective use of resources

* Team Focus. Develops effective working relationships inside and outside traditional boundaries to achieve organisational goals. Breaks down barriers between groups and involves others in discussions and decisions

You will be required to pass a range of referencing and vetting checks, including a Criminal Record Check and a Counter Terrorism Check (CTC). You must also have lived in the UK for at least 3 years with a 5-year work history, unless in education.

Connect2Employment is a trading style of Luton & Kent Commercial Services LLP - A joint venture between Luton Borough Council & Commercial Services Kent Ltd. Connect2Employment is an equal opportunities Employment Agency & Business. It positively encourages applications from all suitably qualified and eligible candidates.

This advertiser has chosen not to accept applicants from your region.

Cyber Security Analyst

LU1 Woodside, Eastern Connect2Employment

Posted 4 days ago

Tap Again To Close

Job Description

full time