Cybersecurity Analyst

Cambridge, UK, London, UK

We are currently recruiting for start dates throughout 2022, including January, April, July and September. Additional start dates may also be available and you will be asked to state your availability on your application form. Please note that most of our new recruits will be based in our Global Headquarters in Cambridge, however we have a small number of opportunities available at our London office.

About the Role

We have been heavily investing in our IT capabilities and are now looking for additional colleagues to help us to continually improve our security standards across our global office locations, as well as supporting our vision of achieving industry recognised security certifications. The Cybersecurity Analyst will work closely with our internal IT function and MSP to provide first-class support in protecting the company, its digital infrastructure and colleagues.

The role is associated with a number of responsibilities, for which training is provided. These include:

  • Implementing ongoing security improvements across all systems and endpoints (e.g. servers, platforms, laptops, website etc) by actively assessing the company infrastructure, trends and use cases
  • Providing first-level compliance monitoring and investigations, recognising problems by identifying abnormalities, and reporting violations
  • Completing assessments of third-parties that the company wishes to engage with and responding to assessments from third-parties that wish to engage with us
  • Coordinating security tasks falling within the company IT calendar, such as penetration tests, access audits, vulnerability assessments and more
  • Assisting the IT team in delivering a wide range of IT projects, driving hardening within projects, upholding Change Control processes and conducting project appraisals
  • Recording, tracking and remediating Information Security incidents
  • Assisting the company with reaching globally recognised standards, such as CyberEssentials and ISO27001
  • Actively researching the current landscape to stay abreast of current threats or improvements in the world of Cyber Security, and using this to anticipate future security requirements in line with company growth plans
  • Creating and maintaining IT-related documentation, including company policies
  • Providing training to end users on the company’s IT systems and security measures
  • Working closely with Data Protection team to optimise data protection and privacy for the company
  • Occasional visits to our other offices when required
  • Supporting the IT administration team as required

About You

Our ideal candidate will take pride in delivering an excellent service to colleagues and will thrive in a fast-paced environment. The role would benefit from individuals who are motivated and willing to take ownership of the direction of their career development.

Essential requirements for the role include:

  • At least 1 year of experience in a related Information Security role
  • Familiarity working with risk assessment frameworks (including but not limited to Cyber Essentials/IS027001)
  • Proficiency with Windows operating systems
  • Experience in monitoring network security, including the use of network monitoring tools (including but not limited to Nmap), and analysing reports
  • Experience in using vulnerability scanning solutions (including but not limited to Nessus/Qualys)
  • Ability to collect artefacts and evidence in support of incident investigations
  • A ‘can do’ attitude, a strong customer focus at all times, and a willingness to be an advocate for cybersecurity throughout the business
  • Exceptional organisational skills, strong ability to remain aware of all facets of a project, and be adaptable to changing deadlines
  • Ability to plan and prioritise your own time and communicate this to others
  • Excellent written and verbal communication skills; including an attention to detail and confident, professional tone, alongside the ability to explain cybersecurity concepts in non-technical language

Successful candidates would also benefit from the following experience:

  • Possess degree level or higher qualification (2.1 or above) in Security Architecture, Cyber Security, Computer Science, Information Systems, or similar
  • Understanding of the Azure AD/Office365 environment
  • Familiarity with Cisco Systems and analysis
  • Advanced understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, defence-in-depth and common security elements

What We Offer

We offer a competitive starting salary depending on your previous experience. Please click here to learn about our reward package and the other benefits of working for Costello Medical.

We pride ourselves on offering a friendly and supportive environment for employees and the opportunities for quick progression and increased responsibility. We provide full funding for a range of substantial postgraduate qualifications with paid study leave, exceptional internal training, opportunities to work on pro bono and charitable projects, and regular company-funded social activities. By joining Costello Medical, we can also offer a career that will provide you with:

  • The freedom to grow and specialise in the direction you desire
  • A chance to build on your project planning skills and change management processes
  • Rapid growth and hands-on experience as we begin our journey into cloud infrastructure
  • The chance to be involved with Cyber Essentials and ISO/IEC 27001
  • Full funding for you to complete training courses for IT industry certificates

How to Apply

Please submit your application via our online application form. We strongly recommend applying as early as possible so that we can begin processing your application.

You will be required to upload your CV and a cover letter explaining why you think you would be suited to the role and why you would like to join Costello Medical. Your CV should clearly state dates of all qualifications and grades achieved where applicable.

Please contact the Talent Acquisition team at if you have any questions about the role or application process.

COVID-19 Response

Our UK and US offices are open in a safe and controlled way following a period of remote working. Currently, interviews in the UK and US can be conducted in the office or via Microsoft Teams. Our team in Singapore are following local guidance and are working remotely and therefore all interviews for roles in Singapore are taking place over Microsoft Teams.

We are welcoming new employees to the office, depending on location.

For further information, please email

Career Profile

To learn more about the tailored career progression we offer at Costello Medical, please click below to read about Alice’s progression to the Senior IT Coordinator role.

Visa Sponsorship

We can provide visa sponsorship for eligible candidates for our Cybersecurity Analyst vacancy. You will be asked to provide details of your right to work in the UK within your application, however this will have no impact on the processing of your application.