Cyber Monitoring Advisor

We have an exciting opportunity for a Cyber Security Monitoring Advisorto joinour Digital and Technology group.

This is a full-time opportunity on a fixed term/loan/internal moveor temporary promotion basis until 15 June 2026.The role can be based in 10 South Colonnade Canary Wharf London E14 4PU or South Mimms Hertfordshire. Pleasebe aware that this role can only be worked in the UK and not are open to requests for part-time job shares and flexible working. Please discuss this with the recruiting manager before accepting an appointment.

We are currently operating a hybrid way of working with a minimum of 40% of contracted hours working on site to enable the collaboration and contact with partners and stakeholders needed to deliver MHRA business. This may rise to 60% during the year. Attendance on site is driven by business needs so depending on the nature of the role some roles will need to be on site more regularly.

* This role is required to participate the in 24-hour security and operations incident response rota on a periodic basis. An on-call allowance will be paid based for this.

Who are we

The Digital and Technology Group (DGT) lies at the heart of the Agency and is responsible for delivering an optimised IT infrastructure and maximising the secure use of data to enable our scientists inspectors and the rest of the organisation to deliver world class services which can improve outcomes for patients and the general public. The Group was essential in the race to approve COVID-19 vaccines in 2020 and in supporting the UK to set up its own medicines and devices approvals systems following our exit from the EU. The work we do matters!

We plan to be at the heart of one of the most digitally advanced medical regulators in the world and we need people who can help us deliver that ambition. D&T is a great place to build your career and we are committed to enabling our people to do the best work of their lives.

The Technology & Service Operations function is responsible for managing the existing IT infrastructure including both software and hardware databases and other technology platforms; leading the support and maintenance of applications; development and testing of new applications and platforms; and cyber and information security for the Agency.

Whats the role

The role exists to ensure that cyber security is maintained throughout the MHRA. The role requires a technically skilled Cyber Security Monitoring Advisor to join a team of cyber security staff to help shape and deliver the agencys cyber security agenda.

The role sits within the Cyber Security Team within The Technology & Service Operations function within The Digital and Technology Group. It will help to enable several key cyber security initiativeswhich will help to maintain and build the cyber security of the agency.

Key responsibilities

• Support the Cyber Security Monitoring Lead in their day-to-day role. Covering for them when needed.
• You will work collaboratively with the Information Security Team and Data Protection Teams.
• You will be responsible for management of several key cyber security mailboxes.
• You will be responsible for monitoring of vulnerability management feeds.
• You will be responsible for monitoring and maintaining the agencys threat intelligence feeds.
• You will engage with other cyber security teams across government such as NHS England Cyber Security Operations Team and others.
• Support implementation of the monitoring roadmap to enhance monitoring in line with requirements policies and standards to govern all activities and outputs
• Monitor triage and investigate security alerts on protective monitoring platforms to identify security incidents and perform analysis of security event data to support the response reporting or escalating where appropriate
• Design develop and support automated monitoring processes using a variety of the latest SIEM (Security Information and Event Management) and network analysis tools techniques and procedures to:
• Detect malicious activity
• Ensure continuous improvement through dashboard monitoring or retrospective assessment

Who are we looking for

The successful candidate will have at previous experience of working in a cyber security team and will help to deliver the agencys security agenda.

You will have a track record of managing and resolving cyber security vulnerabilities and you will be adept at communicating complex technical information to a non-technical audience.

You will be used analysis a range of data and information from internal and external sources to support decisions and be able to present strong recommendations in a timely manner which consider a range of options costs benefits and risks. You should be a strong communicator and be able to build relationships across different teams.

If you would like to find out more about this fantastic opportunity please read ourJob Description and Person Specification!

Please note: The job description may not open in some internet browsers. Please use Chrome or Microsoft Edge. If you have any issue viewing the job description please contact

The selection process:

We use the Civil Service Success Profiles to assess our candidatesfind out more here.

• Online application form including questions based on theBehaviour Experience and Technical Success Profiles.Please ensure all application questions are completed in full; your application may not be considered if any responses are left blank. Our applications are CV blind and our Hiring Managers will not be able to access your CV when reviewing your application.
• Interview which can include questions based on theBehaviour Experience Technical and Strengths Success Profiles.

In the instance that we receive a high number of applications we will hold an initial sift based on the lead criteria ofExperience of managing and resolving cyber security vulnerabilities.

Applicants are assessed on whether they meet any mandatory requirements as well as the necessary skills and experience for the role. Applications are scored based on the competency-based answers provided- ensure you have read these thoroughly and allowsufficienttime. You can view the competencies for this role in the job description.

Use of AI in Job Applications

Applicants must ensure that anything submitted is factually accurate and truthful. Plagiarism can include presenting the ideas and experience of others or generated by artificial intelligence as your own.

If you require any disability related adjustments at any point during the process please contact as soon as possible.

Closing date:7 July 2025

Shortlisting date: 11 July 2025

Interview date:21 - 25 July 2025

Candidates will be contacted within a week of the sift and the interviews completed to inform them of the outcome.

If you need assistance applying for this role or have any other questionsplease contact

Candidates will be subject to UK immigration requirements as well as Civil Service nationality information on whether you are able to apply is availablehere.

Successful candidates must pass a disclosure and barring security check as well as animal rights and pro-life activism checks. People working with government assets must completebasic personnel security standard checks. For this role successful candidates must also meet additional security requirements before they can be appointed. The level of security needed issecurity clearance.

Certain roles within the MHRA will require post holders to have vaccinations and in some circumstances routine health surveillance. These roles include:

• Laboratory-based roles working directly with known pathogens
• Maintenance roles particularly those required to work in laboratory settings
• Roles that involve visiting other establishments where vaccination is required
• Roles required to travel overseas where specific vaccination may be required.

Applicants who are successful at interview will be as part of pre-employment screening subject to a check on the Internal Fraud Database (IFD). This check will provide information about employees who have been dismissed for fraud or dishonesty offences. This check also applies to employees who resign or otherwise leave before being dismissed for fraud or dishonesty had their employment continued. Any applicants details held on the IFD will be refused employment. A candidate is not eligible to apply for a role within the Civil Service if the application is made within a 5 year period following a dismissal for carrying out internal fraud against government.

Any move to the MHRA from another employer will mean you can no longer access childcare vouchers. This includes moves between government departments. You may however be eligible for other government schemes including Tax-Free Childcare. Determine your eligibilityhere.

Successful candidates may be subject to annual Occupational Health reviews dependent on role requirements. If you have any queries please contact.

In accordance with the Civil Service Commissioners Recruitment Principles our recruitment and selection processes are underpinned by the requirement of selection for appointmenton the basis ofmerit by a fair and open competition. If you feel your application has not been treated in accordance with the Recruitment Principles and you wish to make a complaint you should firstly contact Florentina Oyelami Head of Talent Acquisition .

If you are not satisfied with the response you receive you can contact the Civil Service Commission at:

Civil Service Commission

Room G/8

1Horse Guards Road

London

SW1A 2HQ