Cyber Security Technician Apprentice

KELTBRAY LIMITED

Surrey (KT10 9TA)

Closes on Wednesday 31 December 2025

Posted on 25 November 2025

---

Summary

The Apprentice supports Keltbray’s cybersecurity operations by providing first-line defence against threats, helping to ensure secure and uninterrupted business activities. You will help promote cybersecurity awareness throughout Keltbray by leading awareness campaigns and engaging staff in best practices to strengthen the overall security culture.

• Wage:

  Competitive

  Competitive wage offered

  Check minimum wage rates (opens in new tab)

• Training course: Cyber security technician (level 3)
• Hours: Monday - Friday 8am - 5pm - 40 hours per week.

  40 hours a week

• Start date:

  Thursday 1 January 2026

• Duration:

  1 year 6 months

• Positions available:

  1

Work

Most of your apprenticeship is spent working. You’ll learn on the job by getting hands-on experience.

What you'll do at work

This role is responsible for monitoring, detecting, and responding to potential security incidents, maintaining cyber hygiene across all systems, and assisting with compliance to recognised standards such as Cyber Essentials Plus (CE+).

Duties & Responsibilities

Primary:

• Assist in monitoring, analysing, and responding to alerts from security tools such as firewalls, SIEM, EDR, and SWG systems under supervision.
• Identify, triage, and escalate potential security incidents in line with defined procedures, seeking guidance when necessary.
  Support the investigation and remediation of security alerts and vulnerabilities alongside senior team members.
• Help operate and maintain the organisation’s vulnerability management platform (Qualys) to detect and remediate system vulnerabilities, under direction.
• Assist with automated and manual patch deployment cycles, ensuring timely remediation of identified risks.
• Contribute to regular reports summarising vulnerability trends, patch compliance, and remediation progress.
• Support the administration of endpoint protection, detection, and response solutions to safeguard against malware, ransomware, and unauthorised access.
• Assist with the configuration and management of encryption, device control, and endpoint policy enforcement.
• Help ensure devices remain compliant with baseline configurations and endpoint protection policies.
• Support monitoring and management of the organisation’s SWG platform to enforce safe and secure internet usage.
• Apply web access policies and content filtering aligned with organisational security posture, under supervision.
• Assist in investigating and reporting on web-based security events, ensuring appropriate remediation steps are taken.
• Support the ITSD in maintaining ongoing Cyber Essentials Plus readiness through vulnerability testing, evidence gathering, and compliance validation.
• Assist with annual CE+ assessment preparation and help ensure all technical controls meet required standards.
• Work collaboratively across IT functions to remediate non-compliance issues and improve audit readiness.

Secondary:

• Understanding of best practice in relation to cyber security.
• Assist in the secure onboarding and offboarding of users, ensuring access rights are correctly provisioned and removed.
• Assist in post-incident reviews and help document lessons learned for continuous improvement.
• Help carry out periodic checks to ensure systems and processes comply with internal and external standards.
• Basic end-user support/training of hardware and software.
• Good level of working IT knowledge and practices.
• Engage effectively with any ICT supplier and third parties regarding support of software, hardware and systems.
• Keep working area, cupboards, and storage area clean, tidy, safe and equipment/spares organised.

Where you'll work

St Andrew's House
Portsmouth Road
Esher
Surrey
KT10 9TA

Training

Apprenticeships include time away from working for specialist training. You’ll study to gain professional knowledge and skills.

Training provider

GINGER NUT MEDIA LIMITED

Training course

Cyber security technician (level 3)

Understanding apprenticeship levels (opens in new tab)

What you'll learn

Course contents

• Follow information security procedures
• Maintain information security controls
• Develop information security training and awareness resources
• Monitor the effectiveness of information security training and awareness
• Handle and assess the validity of security requests from a range of internal and external stakeholders
• Follow technical procedures to install and maintain technical security controls
• Monitor and report information security events
• Recognise when and how to escalate information security events in accordance with relevant procedures and standards
• Review and modify access rights to digital information systems, services, devices or data
• Maintain an inventory of digital information systems, services, devices and data storage
• Scopes cyber security vulnerability assessments
• Evaluate the results of a cyber security vulnerability assessment
• Perform routine threat intelligence gathering tasks through consulting external sources
• Undertake digital information risk assessments
• Identify and categorise threats, vulnerabilities and risks in preparation for response or escalation
• Document cyber security event information whilst preserving evidence
• Draft information management reports using standard formats appropriate to the recipients
• Review and comment upon cyber security policies, procedures, standards and guidelines
• Perform cyber security compliance checks
• Translate audit requirements and collate relevant information from log files, incident reports and other data sources
• Communication skills to co-operate as part of a multi-functional, multi-disciplinary team using a range of technical and non-technical language to provide an effective interface between internal or external users and suppliers
• Keep up-to-date with legislation and industry standards related to the implementation of cyber security in an organisation
• Follow information security procedures
• Maintain information security controls
• Develop information security training and awareness resources
• Monitor the effectiveness of information security training and awareness
• Handle and assess the validity of security requests from a range of internal and external stakeholders
• Follow technical procedures to install and maintain technical security controls
• Monitor and report information security events
• Recognise when and how to escalate information security events in accordance with relevant procedures and standards
• Review and modify access rights to digital information systems, services, devices or data
• Maintain an inventory of digital information systems, services, devices and data storage
• Scopes cyber security vulnerability assessments
• Evaluate the results of a cyber security vulnerability assessment
• Perform routine threat intelligence gathering tasks through consulting external sources
• Undertake digital information risk assessments
• Identify and categorise threats, vulnerabilities and risks in preparation for response or escalation
• Document cyber security event information whilst preserving evidence
• Draft information management reports using standard formats appropriate to the recipients
• Review and comment upon cyber security policies, procedures, standards and guidelines
• Perform cyber security compliance checks
• Translate audit requirements and collate relevant information from log files, incident reports and other data sources
• Communication skills to co-operate as part of a multi-functional, multi-disciplinary team using a range of technical and non-technical language to provide an effective interface between internal or external users and suppliers
• Keep up-to-date with legislation and industry standards related to the implementation of cyber security in an organisation

Training schedule

This role is based in Esher, Surrey.  You will be required to work in our head office location, and training will take place remotely with online lessons per week. 

More training information

The Level 3 Cyber Security Technician Apprenticeship will be delivered by the Apprenticeship Provider: Ginger Nut Training.

Requirements

Desirable qualifications

Other in:

IT, Computer Science or a related subject (grade Pass, A-C or 4-9)

Share if you have other relevant qualifications and industry experience. The apprenticeship can be adjusted to reflect what you already know.

Skills

• Communication skills
• IT skills
• Attention to detail
• Organisation skills
• Customer care skills
• Problem solving skills
• Administrative skills
• Analytical skills
• Logical
• Team working

Other requirements

Requirements Desired: • A demonstrable interest in IT or cyber security • A-levels, BTEC, or equivalent in IT, Computer Science, or a related subject • Any introductory IT or cyber security certification • Basic principles of cyber security, including confidentiality, integrity, and availability • Importance of cyber security awareness and promoting a positive security culture • The importance of maintaining privacy and confidentiality in all aspects of cyber security • Core components of an organisation’s IT infrastructure: hardware, operating systems, networks, software, and cloud services • Common cyber security threats and vulnerabilities (e.g., malware, phishing, ransomware, social engineering) • Key cyber security policies and standards (e.g., acceptable use, incident management, patching, anti-virus, access control) • Principles of identity and access management, including authentication and authorisation • Processes for detecting, reporting, and responding to security incidents • Fundamentals of vulnerability management and assessment Skills & Abilities: • Ability to follow information security procedures and protocols accurately • Basic technical troubleshooting and problem-solving skills • Capable of supporting vulnerability management and patching activities • Effective written and verbal communication skills, including the ability to explain technical issues to non-technical users • Ability to document incidents, actions, and findings clearly and concisely • Capable of working collaboratively within a team and with other departments • Able to handle confidential information responsibly and ethically • Willingness to learn new technologies and security practices • Ability to prioritise tasks and manage time effectively • Basic analytical skills for reviewing logs, reports, and security events • Ability to escalate issues appropriately when outside own level of expertise

About this employer

Keltbray is a UK leading specialist engineering contractor, which offers engineering, construction, demolition, decommissioning, remediation, environmental services and reinforced concrete frame solutions. We are a key player in developing and maintaining Britain’s built environment and major civil engineering, operating in highly regulated climates and transforming sites across the UK. Our purpose is to redefine the way sustainable development is delivered. Based on our collective experience, we collaborate at the earliest stage to design and self-deliver innovative customer solutions across technically demanding built environment and infrastructure sectors. Working in partnership with our stakeholders, we are actively contributing to economic growth, social advancement and environmental protection. Diversity & Inclusion We advocate for difference and champion diversity to foster an inclusive environment that allows our people to bring their true selves to their work every day and enable our people to thrive by promoting health and preventing harm.

https://www.keltbray.com/ (opens in new tab)

After this apprenticeship

The apprentice will gain the L3 Cyber Security Technician qualification and may progress into a permanent position within Keltbray.

Ask a question

The contact for this apprenticeship is:

GINGER NUT MEDIA LIMITED

The reference code for this apprenticeship is VAC2000002250.

Apply now

Closes on Wednesday 31 December 2025

Sign in with your GOV.UK One Login to apply.

After signing in, you’ll apply for this apprenticeship on the company's website.