×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

Cyber Security Specialist

Job in Cardiff, Cardiff City Area, CF10, Wales, UK
Listing for: Cyfoeth Naturiol Cymru
Full Time position
Listed on 2026-01-20
Job specializations:
  • IT/Tech
    Cybersecurity
Job Description & How to Apply Below

The role

As a Cyber Security Specialist, you will play a vital role in safeguarding Natural Resources Wales' digital infrastructure, systems, and data. You'll proactively identify, assess, and mitigate cyber threats, helping to ensure the organisation remains resilient in an evolving risk landscape.

This role is central to implementing and maintaining robust cyber security controls, ensuring compliance with key legislation and standards such as NCSC guidance, ISO 27001, and GDPR. You'll support the delivery of NRW's cyber resilience strategy by working across the organisation and with external partners to embed secure practices.

You’ll have the autonomy to investigate incidents, assess risks, and respond to security issues affecting DDaT (Digital, Data and Technology) assets and operations. Findings will be reported weekly to the DDaT Security Board, and you will be responsible for reviewing and updating the DDaT risk register to reflect emerging threats and mitigation actions.

As an organisation we support flexible working. You will be contracted to either the Bangor or Cardiff NRW office and a suitable hybrid working pattern will be agreed on appointment. Travel between Bangor and Cardiff may be required, any face to face meetings or training will be planned in advance.

To make an informal enquiry about this role, please contact Tracey Gilliland liland

Interviews will be face to face (details of location will be shared in advance)

Due to the nature of the work the successful candidate must be eligible for Security Check (SC) clearance. This generally requires five years' continuous residency in the UK. Further details on eligibility can be found on National security vetting: clearance levels -  Offers will also be subject to a satisfactory Disclosure and Barring Service Check (DBS) check. Appointments are normally made within 4 to 8 weeks of the closing date.

What

you will do
  • Monitor security alerts and threat intelligence feeds to detect and respond to cyber incidents.
  • Lead or support incident response activities, including investigation, containment, eradication, and recovery.
  • Manage and maintain security tools such as Security Information and Event Management (SIEM), endpoint protection, vulnerability scanners, and firewalls.
  • Conduct regular vulnerability assessments and coordinate remediation efforts.
  • Ensure compliance with public sector cyber security frameworks and deliver cyber security awareness training and phishing simulations to staff, promoting a culture of security across the organisation.
  • Advise on security requirements for digital transformation projects, ensuring alignment with organisational policies and risk appetite.
  • Review new systems and services for security risks, promoting secure-by-design principles throughout their lifecycle.
  • Liaise with internal stakeholders, external partners, and national cyber security bodies (e.g., National Cyber Security Centre (NCSC), law enforcement).
  • Be responsible for out of hours (OOH) operational management of NRW's entire ICT Security service on rota basis.
  • Undertake health and safety duties and responsibilities appropriate to the post
  • Be committed to Natural Resources Wales Equal Opportunities and Diversity Policy, together with an understanding of how it operates within the responsibilities of the post
  • Be committed to your own development through the effective use of your personal development plan (known as Sgwrs).
  • Any other reasonable duties requested commensurate with the grade of this role.
  • Required to take part in incident response activities
Your qualifications, experience, knowledge and skills

In your application and interview you will be asked to demonstrate the following skills and experience using the STAR method. High level of technical expertise and skills including detailed knowledge of Azure Stack. Degree in Cyber Security, Computer Science, or a related field, or equivalent experience. Professional certifications such as CompTIA Security+, CISSP, CISM, or equivalent. Strong understanding of cyber security principles, threat landscapes, and attack vectors.

Experience with security technologies (e.g., SIEM, IDS/IPS, endpoint protection).…

Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search