Fixed Term Contract until January 2027

At HC-One, we're committed to delivering high-quality, person-centred care across our network of care homes. As digital transformation continues to shape how we operate, the security and integrity of our systems and data are critical.

We’re looking for a skilled and proactive Cyber Security Specialist to join our Cyber team. Working collaboratively with the wider DDaT function, you will play a central role in monitoring, detecting, and responding to cyber threats and vulnerabilities — helping to protect our digital infrastructure, our residents, and our colleagues.

About You

You’re an analytical thinker with hands-on experience in cyber security and a strong understanding of threat detection, risk mitigation, and vulnerability management. Comfortable working across technologies and teams, you’re able to apply technical knowledge with sound judgment, and you communicate clearly — whether advising a peer or presenting to a senior stakeholder.

You’re calm under pressure, focused on detail, and passionate about keeping systems secure and resilient. Above all, you care about using your skills to protect people and make a positive impact.

Roles & Responsibilities

As Cyber Security Specialist, your key responsibilities will include:

Security Monitoring & Threat Response

Monitor, analyse, and respond to security events using Microsoft security tools, SIEM platforms, and EDR solutions.

Conduct threat hunting, investigate anomalies, and escalate security incidents as needed.

Manage security configurations in Entra ID and M365, including MFA, DLP, and privileged access policies.

Coordinate annual penetration testing with external suppliers and follow through on remediation.

Vulnerability & Risk Management

Collaborate with DDaT colleagues to conduct vulnerability assessments, validate findings, and recommend mitigation strategies.

Maintain endpoint protection, MDM, and Defender Suite configurations.

Support and contribute to the Cyber Risk Management Framework.

Incident Management & Reporting

Lead investigations into incidents, documenting root cause, actions taken, and lessons learned.

Record metrics and provide regular reports to senior leadership.

Continuously review email and web filtering tools to prevent phishing, malware and other key threats.

Collaboration & Culture

Deliver cyber awareness training and assist with onboarding for new colleagues.

Support wider teams (Legal, Data Protection, Delivery) with cyber security advice.

Promote a security-first culture through engagement, education, and communication.

Governance & Documentation

Assist in maintaining and reviewing security policies and procedures.

Support audits, third-party risk assessments, and compliance activities.

Align work with relevant standards such as ISO 27001, Cyber Essentials, and NCSC, DSPT and CAF.

Qualifications & Experience

Essential

Degree in Cyber Security, Computer Science, IT, or equivalent practical experience

Industry certifications such as: CompTIA Security+, CEH, or Microsoft Security (e.g., AZ-500, SC-200, SC-300, SC-400, SC-100 etc.)

Strong knowledge of:

Microsoft security tools, Defender Suite, Entra ID, M365

Network security, SIEM platforms, and endpoint protection

Email/web filtering protocols (SPF, DKIM, DMARC)

Penetration testing tools and vulnerability management

Risk management

Incident management

Desirable

Familiarity with ISO 27001, ISO 27005, Cyber Essentials, GDPR

Experience working within an ITIL environment, including incident and problem management

Knowledge of audit processes and cyber governance frameworks

This role is offered on a hybrid working basis and provides an excellent opportunity to make a real impact in a purposeful, people-focused organisation.

About HC-One

At HC-One, kindness is more than a word; it is a belief that caring for people means understanding what matters most to them, so we can support them to lead their best life. Our team embodies five key qualities, known as Kindness the HC-One Way: curiosity, compassion, creativity, courage, and reliability.

We champion inclusivity, fostering a workplace where everyone feels valued and can be themselves. Our diverse workforce helps us better represent the communities we serve.

Our dedicated colleagues strive to deliver outstanding care, and we support their professional and personal growth through robust career pathways, CPD, and postgraduate programs. HC-One invests in our team, offering opportunities to progress into regional and national roles.

Safeguarding is everyone's responsibility. All colleagues receive appropriate training to recognise and respond to signs of abuse, harm, or neglect. We ensure everyone knows how to seek advice and report concerns, including escalation if necessary.

We invite applicants from all backgrounds to join our HC-One family, committed to providing a quick and supportive onboarding process.

Rewards & Benefits

Complimenting your salary, you will enjoy access to a huge variety of benefits and services to support your physical and psychological well-being and throughout your career we will invest in you and you will enjoy additional support and benefits including:

Award-winning learning and development

25 days annual leave

An opportunity to learn from experienced colleagues as part of an outstanding and committed team.

GP online - providing around the clock GP consultation via an interactive app - available to you and your children under 16

Colleague discounts – Access to over 1600 high street discounts including carefully selected discount partners

Wellbeing - free of charge access to an independent and confidential Employee Assistance Programme. This gives Colleagues and their family access to 24/7 365 support for a whole range of issues including physical, mental and financial issues

Ready to protect what matters most?

Apply today and be part of a team that puts security — and people — first