Job Description

Details

-----------

Reference number

426456

Salary

59,200 - 66,603
a DDAT allowance of up to 6750 may be applicable
A Civil Service Pension with an employer contribution of 28.97%
GBP

Job grade

Grade 7

Contract type

Permanent

Type of role

Architecture and Data

Digital

Information Technology

Security

Working pattern

Flexible working, Full-time, Part-time

Number of jobs available

1

Contents

------------

Location About the job Benefits Things you need to know Apply and further information

Location

------------


London

About the job

-----------------

Job summary

Are you a technical expert in securing Microsoft Azure and AWS environments? Do you have strong knowledge of security operations, digital threat monitoring and a passion or ensuring the resilience and security of digital assets?


The Competition and Markets Authority (CMA) is seeking a Cyber Security Analyst to monitor and ensure the security of our data, systems and services.

About the Competition and Markets Authority (CMA)

The CMA is an independent non-ministerial UK government department and is the UK's principal competition and consumer protection authority. We help people, businesses, and the UK economy by promoting competitive markets and tackling unfair behaviour.


We provide the opportunity to work across all sectors of the UK economy, undertaking objective, evidence-based analysis that can have a direct and substantial impact on the economy and economic prosperity.

Job description

What you will do

Playing a vital role within our Cloud and Infrastructure team, you will help to protect our data, systems and services.


You will monitor security events, respond to cyber threats and ensure our digital assets remain robust and secure.


You will identify and investigate emerging cyber threats and conduct real-time threat hunts and forensic investigations to develop and enforce protective and detective security controls.


You will also collaborate with solution architects and project teams to ensure security is embedded in system and application designs.

What you will need

You will have substantial experience of securing Microsoft Azure and AWS cloud environments with in-depth knowledge of security operations, digital threat monitoring and frameworks for cyber incident responses.


You will be knowledgeable in Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools and have strong technical understanding of Microsoft Client and Server technologies such as Windows 11, Windows Server and SQL Server.


You will have the ability to analyse and interpret security events and perform digital forensics tasks to investigate.

What we can offer you

In return the CMA is a hugely diverse, rewarding and stimulating place to work - an opportunity to work for the public good and to stretch and develop yourself in doing so. We offer generous benefits, including an excellent pension scheme, at least 25 days leave (increasing to 30 over five years), and generous maternity/paternity leave provision. You can also take advantage of interest-free season ticket loans, a cycle to work scheme, our employee assistance programme and flexible working options.

Person specification

It is essential that you can provide evidence and examples for each of the following selection criteria in your application. For tips on how to make the most your application, please have a look at our guidance document.

Essential:

Technical experience securing Microsoft Azure and Amazon Web Services cloud environments. (Lead Criteria) Knowledge of security operations, digital threat monitoring, and common frameworks for cyber incident response. (Lead Criteria) Demonstrated experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management. Technical understanding of Microsoft Client and Server technologies such as Windows 11, Windows Server and SQL Server. Ability to analyse and interpret security events/logs and perform digital forensics tasks.

Desirable:

Strong analytical, communication, and problem-solving skills, including the ability to produce clear technical and non-technical reports. Familiarity with government or medium-scale environments and relevant compliance requirements is preferred. Understanding of network protocols, firewalls, intrusion detection/prevention, anti-malware, and incident response methodologies. Degree in cyber security, information security, computer science, or related field (or equivalent professional experience). Recognised cyber security certifications (e.g., CompTIA Security+, CEH, GIAC, CISSP). Experience with DarkTrace. Experience working in or with public sector or regulated environments.

Behaviours

We'll assess you against these behaviours during the selection process:


Delivering at Pace Communicating and Influencing Managing a Quality Service Changing and Improving Making Effective Decisions

Technical skills

We'll assess you against these technical skills during the selection process:


You will be assessed against the Digital, Data and Technology profession capability framework at Lead Security Architect level. - https://ddat-capability-framework.service.gov.uk/role/security-architect#lead-security-architect Securing Microsoft Azure and Amazon Web Services cloud environments. Security operations, digital threat monitoring, and common frameworks for cyber incident response. Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management. Microsoft Client and Server technologies such as Windows 11, Windows Server and SQL Server.

Benefits

------------


Alongside your salary of 59,200, Competition & Markets Authority contributes 17,150 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides.
You'll also get:

25 days leave (increasing to 30 days over five years), plus 8 public holidays and an additional day off for the King's birthday. In addition, you'll be able to access a wide range of other types of leave as and when you need it, including generous maternity, paternity, shared parental leave and adoption options, as well as paid special leave for volunteering Season ticket loans, cycle to work scheme, flu vaccinations and eye tests Access to the Civil Service Sports & Leisure, giving discounted gym membership, high street discounts, free access to UK wide attractions and a free Tastecard A range of wellbeing benefits, including an employee assistance programme, flexible working options and family friendly policies, regular networking events and professional learning opportunities at work

You can read more about our benefits in our candidate pack.

Our Values

We are Ambitious and Evidence-based, and always strive for Excellence. We treat everyone with Respect and are Collaborative and Inclusive.


Everything we do is underpinned by the Civil Service values: Honesty, Integrity, Impartiality and Objectivity.


You can read more about life at the CMA in our candidate pack

Things you need to know

---------------------------

Selection process details

This vacancy is using Success Profiles , and will assess your Behaviours, Experience and Technical skills.
As part of the application process, you will be asked to complete a CV, personal statement and an online application form. Further details about application requirements are listed on the application form.


The selection process will comprise of the sift (CV & application review) and an interview. Arrangements for the interview will be enclosed in the invitation. Interviews will be either conducted either virtually, by Microsoft Teams, or in-person at a CMA office.

Sift stage

An initial sift based on criteria 1 and 2 (Lead Criteria) may be held if a large number of applications are received. If your application progresses to a full sift, all elements of the essential criteria listed under Person Specification (above, below and in the attached candidate pack) will then be considered.

Technical experience securing Microsoft Azure and Amazon Web Services cloud environments.

(Lead Criteria)

Knowledge of security operations, digital threat monitoring, and common frameworks for cyber incident response.

(Lead Criteria)

Demonstrated experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management. Technical understanding of Microsoft Client and Server technologies such as Windows 11, Windows Server and SQL Server. Ability to analyse and interpret security events/logs and perform digital forensics tasks.

The sift will take place week commencing 22nd September 2025.

Interview stage

If your application is successful you will be invited to attend an interview. You will be notified via email to log-in to your Civil Service Account and book your interview slot. You will be sent an email with full details of your arrangements for interview.



Interviews will be held week commencing 6th October 2025.


The interview will be a 45-minute-1 hour panel interview where you will be asked questions based on the Behaviours, Experience and Technical skills outlined in the role profile.



You will also be assessed on the following CMA Value(s) - Collaboration


If successful you must hold, or be willing to obtain, security clearance to SC level.

Reasonable adjustments

We want to make sure no one is at a disadvantage during our recruitment process because of a disability, condition or impairment. To assist you with this, we will reduce or remove any barriers where possible and provide additional support where appropriate.



If you need a change to be made so that you can make your application, you should complete the "Assistance required" section in the "Additional requirements" page of your application form to tell us what changes or help you might need during the recruitment process. You can also email recruitment@cma.gov.uk.


For example, you may need wheelchair access at interview, or if you are deaf, a Language Service Professional. You might also require additional time to complete a timed assessment or a sign language interpreter to support with the relaying of information.

Artificial Intelligence can be a useful tool to support your application, however, all examples and statements provided must be truthful, factually accurate and taken directly from your own experience. Where plagiarism has been identified (presenting the ideas and experiences of others, or generated by artificial intelligence, as your own) applications may be withdrawn and internal candidates may be subject to disciplinary action. Please see our

candidate guidance

for more information on appropriate and inappropriate use.

Feedback will only be provided if you attend an interview or assessment.

Security

Successful candidates must undergo a criminal record check.
Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check .



See our vetting charter .
People working with government assets must complete baseline personnel security standard (opens in new window) checks.

Nationality requirements

This job is broadly open to the following groups:


UK nationals nationals of the Republic of Ireland nationals of Commonwealth countries who have the right to work in the UK nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS) individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020 Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service
Further information on nationality requirements

Working for the Civil Service

The Civil Service Code sets out the standards of behaviour expected of civil servants.



We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles .
The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.
The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.

Diversity and Inclusion

The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see the Civil Service People Plan and the Civil Service Diversity and Inclusion Strategy .

Apply and further information

---------------------------------


This vacancy is part of the Great Place to Work for Veterans initiative.
Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.

Contact point for applicants

#

Job contact :

Name : CMA Recruitment Team Email : recruitment@cma.gov.uk
#

Recruitment team

Email : recruitment@cma.gov.uk

Further information

If your application has not been treated in accordance with the Recruitment Principles and you wish to make a complaint, you should contact Recruitment@cma.gov.uk in the first instance. If you are not satisfied with the response you receive you can contact the Civil Service Commission http://civilservicecommission.independent.gov.uk.