Cyber security analyst

As a cyber security analyst, you'll monitor networks and systems, detect security threats (known as 'events'), and analyse and assess alarms. You'll also report on threats, intrusion attempts, and false alarms, either resolving or escalating them depending on the severity.

You may be employed to protect the security of a specific organisation or you may work as a consultant across one or more organisations.

Job titles vary and may include:

• cyber intelligence analyst
• information security analyst
• information security consultant
• security analyst,
• security operations centre (SOC) analyst.

Working as a cyber security analyst

As a cyber security analyst, you'll need to:

• keep up-to-date with the latest security and technology developments
• research and evaluate emerging threats and vulnerabilities, including common ones, such as 'phishing emails', 'pharming' activity, malware, and ransomware
• plan for disaster recovery and create contingency plans in the event of any security breaches
• monitor for attacks, intrusions, and unusual, unauthorised, or illegal activity using analytical tools
• test and evaluate security products and check suppliers' certification, compliance, and accreditation
• design new security systems or upgrade existing ones
• engage in 'ethical hacking', such as simulating security breaches
• identify potential weaknesses and implement measures, such as firewalls and encryption
• monitor identity and access management, including monitoring for abuse of permissions by authorised users
• liaise with stakeholders in relation to cyber security issues and provide future recommendations
• record all findings, actions taken, and lessons learned following an incident to strengthen future responses
• generate incident reports for technical and non-technical staff, as well as stakeholders
• maintain a security risk register and assist with internal and external audits
• promote a culture of security among colleagues and other stakeholders and support wider initiatives

Average salary for a cyber security analyst

• UK salaries for cyber security analysts with one to three years of experience typically range from £35,000 to £49,000.
• With four to six years of experience, you can expect to earn between £51,500 and £65,000
• In higher-level managerial or leadership roles, it's possible to earn in excess of £100,000.

You'll usually receive a range of employee benefits that may include a bonus, company pension scheme, private medical insurance, gym membership, and sponsored training and development opportunities.

Income data is from the Cybershark Recruitment 2026 survey. Figures are intended as a guide only.

Cyber security analyst working hours

Working hours for cyber security analysts are typically 35 to 40 hours per week, Monday to Friday. You may need to work outside this, depending on projects and the specific nature of the work. Your work environment is likely to be office-based, with extended periods of time using a computer.

Some companies may require you to work on a shift basis, which can include evenings, nights, and weekends. You may need to work as part of a 24/7 call-out rota, to allow for quick responses to incidents. It's also possible to have flexible or hybrid working arrangements. Short-term contract work is also possible, particularly through recruitment agencies or if you work on a self-employed basis as a consultant.

How do I become a cyber security analyst?

It's possible to become a cyber security analyst without a degree, either via relevant apprenticeships at Level 3 or 4, or through an entry-level IT position which allows you to work your way up to a cyber security role by gaining experience and industry certifications.

However, employers recruiting for a graduate position may require, or prefer, a degree in a science, technology, engineering or mathematics (STEM) subject. Exact requirements vary between employers. Relevant degree subjects include:

• cyber/information/network security
• computer science
• computing and information systems
• mathematics
• physics
• software/electrical/network engineering
• other IT/security/network-related degrees.

Alternatively, you could do a degree apprenticeship, where you combine paid work and study towards a recognised qualification. Relevant apprenticeships include:

• Level 6 Cyber security technical professional
• Level 6 Digital and technology solutions - has a cyber security analyst specialism.

It's also possible to enter with a non-technical/unrelated degree. Some schemes welcome graduates from any degree discipline who have a passion for technology and cyber security. You'll need to have technical skills and an understanding of cyber threats and how they can be prevented, as well as the ability to learn quickly and work as part of a team. You'll also need to understand the value of security clearance for certain roles. As you gain experience, your subject will be less important and employers will be more interested in what you've done professionally.

Although a postgraduate qualification isn't essential, you could do a Masters degree in a relevant subject, particularly if your degree is in an unrelated subject. Some employers may sponsor you to undertake a relevant Masters course.

Search for postgraduate courses in cyber security.

The National Cyber Security Centre certifies a number of degree apprenticeships, undergraduate degrees, integrated Masters, and Masters degrees in cyber security and closely related fields. These all meet the appropriate educational standard. For a list of courses, see NCSC-certified degrees. They also certify courses that have been assessed as offering high-quality cyber security training through the NCSC Certified Training scheme. These courses are delivered by a range of training providers at different levels: an 'awareness' level for those new to cyber security and an 'application' level which is more in-depth.

What skills does a cyber security analyst need?

You'll need to have:

• excellent IT skills, including knowledge of computer networks, operating systems, software, hardware, and security
• an understanding of the cyber security risks associated with various technologies and ways to manage them
• a good working knowledge of various security technologies, such as network and application firewalls, host intrusion prevention, and antivirus
• an understanding of complex problems and how to resolve them, including knowledge of data loss prevention and data protection
• skills in mathematics.

Cyber security analyst work experience

Employers will expect you to demonstrate a passion for, and an understanding of, the cyber/information security field. You'll usually need relevant pre-entry work experience to get a job. However, there are graduate schemes and internships available in cyber and information security that don't require experience.

If it's an option on your course, you could undertake a 12-month industrial placement in a cyber security role. Alternatively, you could contact organisations that employ analysts and ask to undertake a period of work experience or shadowing. However, as professional roles often require discretion and security clearance, there may be restrictions on what you're allowed to do and see.

Making connections with people in the industry and attending relevant cyber and information security events could help you to access opportunities, which may not always be advertised.

If you're studying an IT-related course, you can join BCS (The Chartered Institute for IT) as a student member for a small fee. This will give you access networking opportunities, mentoring, and industry information. Other organisations include the Chartered Institute of Information Security. The Cyber Security Challenge UK is another source of opportunities. They deliver a series of national competitions designed to test your cyber security skills and host virtual areas that support and enhance talents through gamification.

Find out more about the different kinds of work experience and internships that are available.

Who do cyber security analysts work for?

Cyber security professionals are employed by a variety of organisations across the public and private sector. You may be working on the security of the organisation you work for or offering consultancy to other companies.

The types of organisations you could work for include:

• energy companies
• financial and professional services institutions
• government departments
• information technology companies and network providers
• media organisations
• schools, colleges and universities
• security consultancies
• transport and logistics companies.

Look for job vacancies at:

• CWJobs
• Cyber Security Jobs
• CyberSecurityJobsite
• ITJobsWatch

Vacancies are also advertised on professional networking sites such as LinkedIn and on the social media pages of relevant employers. Specialist recruitment agencies, such as Cybershark Recruitment and Barclay Simpson, also advertise vacancies.

Where no suitable job is advertised, you can make a speculative application. Make sure you tailor your CV and cover letter to the company you're applying to and seek support from your careers service.

Career prospects and development for cyber security analysts

In terms of career progression, you'll typically start in an entry-level or junior cyber security role. After building up several years of experience, you could progress into senior cyber security analyst or consultant.

After gaining extensive experience, you may be able to progress into higher-level leadership and managerial roles, eventually becoming a director or head of cyber security. Setting up your own cyber security company or working as an independent consultant is also possible.

Training often takes place on the job. You may receive mentoring support and advice from more experienced colleagues. Some employers offer graduate training schemes, which typically last up to two years and involve undertaking a range of placements on rotation. Your employer may fund you to complete an MSc in information or cyber security while you're on the programme.

Cyber security is a fast-moving profession. As such, you'll need to keep up-to-date with developments, trends, and changes throughout your career. You can do this by reading the specialist press, reports, blogs, and social media. You can also attend events and conferences. You can access industry information, events, and networking opportunities through membership of organisations, such as:

• BCS
• Chartered Institute of Information Security
• Information Systems Security Association (ISSA)

Achieving relevant certifications is helpful, as many employers specify these as role requirements. There is now also the opportunity to become chartered. It's a good idea to look at job adverts for cyber security analyst roles to get a feel for which certifications employers are looking for and to speak to your employer before choosing a certification.

Relevant industry-related certifications are provided by a number of organisations. The UK Cyber Security Council allows you to search for certifications in a range of specialisms, which may be useful to you at different stages of your career.

Women in the cyber security industry are still underrepresented, though more companies are addressing the imbalance. For example, organisations such as Cyber Security Challenge UK are aiming to promote workplace diversification.