JOB SUMMARY

The Security Monitoring associate role is a key role with the Digital and Data and is part of a motivated inclusive security team who work collaboratively to ensure the Inspectorate’s networks and systems remain secure.
This role will collect and analyse security event data arising from activity across the organisation, tune and improve rules generating security alerts, and follow up by investigating indicators of potentially malicious activity, escalating incidents or initiating responses.
The Planning Inspectorate has a long and proud history in ensuring a fair planning system for England. The work we do has a significant impact on people’s lives, the communities where they live and the economy.
We want our colleagues to be able to work more flexibly and more collaboratively, exploring new and innovative ways to improve the way we provide services.
For further information on the Planning Inspectorate, please see the information pack attached. You can also view our careers page at Civil Service Careers

JOB DESCRIPTION

Are you passionate about Safeguarding critical digital assets? We’re looking for a Security Monitoring Associate who thrives on solving complex security challenges, staying ahead of evolving threats, and making a real impact. In this role, you’ll be a key player in protecting our infrastructure, data, and people from cyber threats.
In today’s world, cybersecurity is more than just a technical discipline—it’s a mission-critical function that protects people, data, and innovation. At the Planning Inspectorate, we don’t just react to threats—we anticipate them, outsmart them, and build systems that are resilient by design.
In this role you will work alongside passionate professionals who thrive on solving complex problems, staying ahead of adversaries, and continuously improving our security posture. Whether it’s analysing threat intelligence, responding to incidents, or hardening our infrastructure, your work will have a direct impact on the safety and success of our organisation.
We believe in empowering our people with the tools, training, and trust they need to grow. If you’re looking for a role where your curiosity is valued, your skills are sharpened, and your contributions truly matter—this is the place for you.

Examples of tasks that would be undertaken include:

• Monitor and analyse security events using SIEM tools (e.g., Splunk, QRadar)
• Investigate and respond to security incidents and alerts
• Perform vulnerability assessments and recommend remediation strategies
• Collaborate with IT and DevOps teams to harden systems and networks
• Support compliance efforts (e.g., ISO 27001, NIST, GDPR)
• Contribute to threat intelligence and detection rule tuning
• Participate in red/blue team exercises and tabletop simulations

For full information on the role and assessment process please refer to the candidate pack attached.

QUALIFICATIONS

Entry-level cyber security certifications e.g. Certified Security Operations Centre Analyst

TECHNICAL SKILLS

We’ll assess you against these technical skills during the selection process:

• Intrusion detection and analysis
• Threat intelligence and threat assessment
• Cyber Security operations
• Government Security Profession career framework

DISABILITY CONFIDENT INTERVIEW SCHEME

The Civil Service embraces diversity and promotes equal opportunities. We run a Disability Confident Interview scheme for candidates with disabilities who meet the minimum selection criteria for the job.

To be considered for an interview under the scheme you must:

• have a disability defined by the Equality Act 2010
• provide evidence in your application that you meet the minimum criteria in the job description
• meet all of the qualifications, skills or experience defined as essential

While we will endeavour to provide you with all the appropriate information, you are the expert on your specific requirements so if you require any adjustments, you should consider the information provided about the assessment process in the candidate pack and then:

• Complete the “Assistance required” section in the “Additional requirements” page of your application form to tell us what changes or help you might need further on in the recruitment process. The earlier and more clearly you tell us what you need and why you need it, the more likely we are to be able to accommodate you in a timely fashion.

NATIONALITY REQUIREMENTS

This job is broadly open to the following groups:

• UK nationals
• nationals of the Republic of Ireland
• nationals of Commonwealth countries who have the right to work in the UK
• nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS)
• nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS)
• individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020
• Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service

Further information on nationality requirements

Examples of tasks that would be undertaken include:

• Monitor and analyse security events using SIEM tools (e.g., Splunk, QRadar)
• Investigate and respond to security incidents and alerts
• Perform vulnerability assessments and recommend remediation strategies
• Collaborate with IT and DevOps teams to harden systems and networks
• Support compliance efforts (e.g., ISO 27001, NIST, GDPR)
• Contribute to threat intelligence and detection rule tuning
• Participate in red/blue team exercises and tabletop simulation