Cybersecurity Analyst

At Healix International, cybersecurity is critical to protecting our people, clients, and operations. We're looking for an experienced Cybersecurity Analyst to play a key role in identifying, assessing, and mitigating cyber threats across our operational systems.

Working closely with senior technology and risk leaders, you'll take a proactive, hands-on approach to safeguarding our infrastructure, supporting incident readiness, and strengthening our cybersecurity posture as the threat landscape continues to evolve.

This is a role for someone who enjoys combining deep technical expertise with collaboration, influence, and continuous improvement., What you'll be doing

In this role, you will:

• Perform ongoing cybersecurity threat assessments across operational systems, working closely with the Group CTO, Head of IT Operations, Infrastructure teams and Solution Architects
• Design, plan and implement effective mitigations in partnership with the wider IT function
• Work with the Chief Risk Officer's team to meet cybersecurity risk management requirements
• Monitor emerging threats and evaluate new technologies to protect against them
• Ensure automated monitoring and detection capabilities are in place
• Develop and maintain incident response playbooks and lead their execution during simulations and real incidents
• Liaise with third-party security providers during hostile incursions where required
• Advise on non-technical controls and organisational changes to improve overall security
• Contribute to security awareness training and initiatives across the business
• Participate in security architecture reviews and advise on secure design principles
• Contribute to monthly infosec workshops, penetration test reviews, and red/blue team exercises
• Assess and manage third-party and supply chain cybersecurity risks
• Develop and report security metrics and KPIs to demonstrate risk reduction and programme effectiveness
• Support business continuity and disaster recovery planning from a cybersecurity perspective
• Stay up to date with relevant legal, regulatory, and compliance requirements

Experience & background

• Minimum 5 years' experience in cybersecurity or information security roles
• Strong experience working with frameworks such as Cyber Essentials, CIS Benchmarks, and familiarity with NIST and ISO27001

Technical expertise

• Solid understanding of network protocols, operating systems, and security technologies
• Experience implementing and operating SIEM and SOAR platforms
• Familiarity with threat intelligence frameworks (e.g. MITRE ATT&CK, Cyber Kill Chain)
• Exposure to AI-driven threat detection (e.g. Darktrace), DLP, and M365 security tooling (e.g. Purview)
• Knowledge of backup, disaster recovery, and business continuity solutions
• Beneficial exposure to DevSecOps practices and tools

Tools & technologies

• Experience with tools such as: Qualys, Microsoft Defender, Splunk, SolarWinds, Kubernetes, PowerShell, Python, Azure/AWS, Windows Server, Linux, New Relic, HashiCorp, Zerto, and Jira

Key skills

• Ability to communicate complex security concepts clearly to non-technical stakeholders
• Strong problem-solving and troubleshooting skills
• Excellent organisation skills, with the ability to manage multiple priorities and deliver to agreed timescales, * CISSP certification (or equivalent such as CISM, CEH, or GIAC), * Proven cybersecurity experience - 5+ years in a cybersecurity or information security role, protecting complex operational environments
• Strong technical security expertise - hands-on experience with threat detection, SIEM/SOAR, monitoring, and incident response
• Framework-led security mindset - working knowledge of Cyber Essentials, CIS benchmarks, and recognised security frameworks
• Clear communicator & collaborator - able to explain complex security risks and controls to non-technical stakeholders
• Industry certifications - CISSP or equivalent (CISM, CEH, GIAC)

Desired criteria

• Modern security tooling exposure - experience with AI-driven detection, DLP, M365 security platforms or cloud environments
• Broader security lifecycle experience - exposure to DevSecOps, red/blue team exercises, or third-party risk management

All around the world, Healix safeguards people's health and wellbeing. We offer UK employee healthcare benefits, and travel, medical and security assistance in every corner of the globe. Our purpose is to help people in difficult situations - whether that's a cancer diagnosis, a need for medical assistance when they're far from home, or being caught up in conflict or natural disaster. We talk to them, support them, and make sure they get the help they need. If necessary, we'll pull them out and bring them home. We're co-ordinators and problem-solvers: experts at navigating the global health and security landscape. Our teams of doctors, nurses, travel and medical co-ordinators and security experts make sure that your people will be looked after, whatever happens supported by technology designed help individuals, not slot them into a predetermined solution. We work with governments, broadcasters, NGOs, international corporations, major insurers and more. No two clients are the same: we adapt our services to their needs. More importantly, we adapt to the practical and human needs of the individuals we protect. Most of us are on the front line; we keep our back office lean. We don't use scripts, and we don't time calls. We never lose sight of the fact that we're dealing with real people. Instead, we focus on ensuring our highly trained specialists have the space and time they need to be effective. We let them use their initiative to get the job done, because the situations they face often throw up unexpected challenges - and no protocol survives contact with the real world. Our clients have thousands of employees and customers, at home and abroad, so they need a business big enough to handle any situation. But they chose Healix because they also need an organisation that's personal enough to care. Our people are driven to do things in the best way, not the way they have always been done. We work hard, and our efforts are rewarded with great development opportunities and a supportive team spirit. We want to nurture this friendly and dynamic company culture so that we can continue to attract diverse talent with a breadth of knowledge and world-class skills. As a part of Healix, you can expect a range of excellent benefits and an environment where people really do care. Our benefits Commitment to career development We are committed to helping our people build and develop successful careers. Our employees are given direct responsibility and opportunity to develop and grow whilst working on challenging and worthwhile projects in a rewarding and supportive environment. We invest in the continuous development of our team, offering on-going training and professional enhancement opportunities for those wishing to diversify or take additional responsibilities.