Portsmouth Hospitals University NHS Trust

OneEPR Security Architect

The closing date is 31 October 2025

Job summary

Fixed term contract : 2 years

Band 8A

The OneEpr Programme exists to implement a single integrated electronic patient record (EPR) designed to improve patient outcomes and the experience of delivering care for our colleagues.

The solution is the direct result of the combined vision and strategic goals of:

Isle of Wight NHS Trust (IWT)
Portsmouth Hospitals University NHS Trust (PHU)
Hampshire Hospitals NHS Foundation Trust (HHFT)
University Hospital Southampton Foundation Trust (UHS)

The Trusts will work together with their clinical and departmental experts alongside regional digital colleagues to procure and implement a joint EPR over the coming years.

Main duties of the job

Acquire a complete understanding of the trusts enterprise architecture including, business processes, technology and information systems
Responsible for the technology security standards, lead engineer for security technology platforms and tools
Plan, research and design security architectures for both technical and business led projects
Perform vulnerability testing, risk analyses and security assessments
Research security standards, security systems and authentication protocols
Review and approve installation of firewall, VPN, IDS and NAC policies and devices
Define, implement and maintain trust security polices and procedures
Respond immediately to security-related incidents and provide a thorough post-event analysis
Act as a champion of knowledge and skills in security specific areas of technologies, sharing these skills and knowledge with colleagues within the department. Develop staff so they have the ability to better understand how the Security architecture and IT components interact with each other

About us

Working as a partnership, both Isle of Wight NHS Trust and Portsmouth Hospitals University NHS Trust have a shared vision for excellence in care for our patients and communities; with a set of strategic aims underpinning how we will achieve this.

The vision for our single corporate services is to:

Be an employer of choice for corporate talent, attracting and retaining people who share our values for excellence in care and welcome the opportunity to benefit from the broad range of flexible career and development opportunities we can offer.
Improve efficiency through simplified and standardised policies, processes, and systems, drawing on the best from both Trusts.
Do things once and reduce any duplication on transactional tasks giving corporate staff the ability to focus on higher value and more diverse activities.
Co-invest in the latest digital solutions and standardise our approach, meaning we do things once for both organisations.
Improve learning and development opportunities and sharing best practice, upskilling both Trusts.
Co-locate teams in purpose-built facilities on the Island and in Portsmouth to enable closer working and sharing.
Build resilience for individuals and our teams.

patient outcomes and the experience of delivering care for our colleagues.The OneEpr Programme exists to implement a single integrated electronic patient record (EPR) designed to improve patient outcomes and the experience of delivering care for our colleagues.

Date posted

10 October 2025

Pay scheme

Agenda for change

Band

Band 8a

Salary

£55,690 a year

Contract

Fixed term

Duration

2 years

Working pattern

Full-time

Reference number

REF1764D

Job locations

Queen Alexandra Hosp, Southwick Hill Road, Cosham

Portsmouth

PO6 3LY

Job description

Job responsibilities

Proactively and positively contribute to the achievement of deliverables through individual and team effort. Manage the production of the required deliverables and control risks,
Support team members to deliver on their functionally relevant objectives through offering advice, guidance and support as appropriate.
Ensure that approved budgets are spent effectively and in accordance with agreed procedures
Liaison with Senior Professionals and related functions to ensure that work is neither overlooked nor duplicated
Build and sustain effective communications with other roles involved in the shared services as required
Maintain and continuously improve specialist knowledge in an aspect of Health Service which significantly contributes to the Trusts stated objectives & aims
Establish and maintain strategic links with a range of external partners/stakeholders or manage the links made through the team. Engage with external partners/stakeholders to gain their necessary level of contribution & commitment to the successful delivery of your work.
Undertake proactive horizon scanning for either developments relating to Trust work or opportunities for Trust involvement around health issues
Increase the level of knowledge & skills within the Trust through documenting key learning and supporting others to develop their professional abilities.
Dissemination of knowledge through engagement in report writing, and reviewing, taking full responsibility for technical accuracy and reliability and being sensitive to the wider implications of that dissemination.
Ensure that expertise is seen as a resource within and outside the Trust and form working partnerships with government departments, national agencies and key stakeholders.
Develop structures, systems, ways of working and personal values that will support the Trusts sustainable development objectives with regard toissues such as Carbon reduction and waste minimisation; and to encourageall stakeholders of the Trust to act as enthusiastic agents of change.

Job description

Job responsibilities

Proactively and positively contribute to the achievement of deliverables through individual and team effort. Manage the production of the required deliverables and control risks,
Support team members to deliver on their functionally relevant objectives through offering advice, guidance and support as appropriate.
Ensure that approved budgets are spent effectively and in accordance with agreed procedures
Liaison with Senior Professionals and related functions to ensure that work is neither overlooked nor duplicated
Build and sustain effective communications with other roles involved in the shared services as required
Maintain and continuously improve specialist knowledge in an aspect of Health Service which significantly contributes to the Trusts stated objectives & aims
Establish and maintain strategic links with a range of external partners/stakeholders or manage the links made through the team. Engage with external partners/stakeholders to gain their necessary level of contribution & commitment to the successful delivery of your work.
Undertake proactive horizon scanning for either developments relating to Trust work or opportunities for Trust involvement around health issues
Increase the level of knowledge & skills within the Trust through documenting key learning and supporting others to develop their professional abilities.
Dissemination of knowledge through engagement in report writing, and reviewing, taking full responsibility for technical accuracy and reliability and being sensitive to the wider implications of that dissemination.
Ensure that expertise is seen as a resource within and outside the Trust and form working partnerships with government departments, national agencies and key stakeholders.
Develop structures, systems, ways of working and personal values that will support the Trusts sustainable development objectives with regard toissues such as Carbon reduction and waste minimisation; and to encourageall stakeholders of the Trust to act as enthusiastic agents of change.

Person Specification

Additional Criteria

Essential

Act as a champion of knowledge and skills in security specific areas of technologies, sharing these skills and knowledge with colleagues within the department. Develop staff so they have the ability to better understand how the Security architecture and IT components interact with each other.

Desirable

Respond immediately to security-related incidents and provide a thorough post-event analysis. Review and approve installation of firewall, VPN, IDS and NAC policies and devices.

Qualifications

Essential

Degree level qualification or equivalent in computer science, Cyber security or a related field

Desirable

Technical accreditation in at least two or more of the following; Microsoft Certified Systems Engineer (MCSE), Cisco Certified Network Associate Security (CCNA Security), VMware VCP, ITIL Foundation Certificate, Evidence of continuing professional development

Experience

Essential

Acquire a complete understanding of the trusts enterprise architecture including, business processes, technology and information systems. Responsible for the technology security standards, lead engineer for security technology platforms and tools.

Desirable

Plan, research and design security architectures for both technical and business led projects. Perform vulnerability testing, risk analyses and security assessments.

Person Specification

Additional Criteria

Essential

Act as a champion of knowledge and skills in security specific areas of technologies, sharing these skills and knowledge with colleagues within the department. Develop staff so they have the ability to better understand how the Security architecture and IT components interact with each other.

Desirable

Respond immediately to security-related incidents and provide a thorough post-event analysis. Review and approve installation of firewall, VPN, IDS and NAC policies and devices.

Qualifications

Essential

Degree level qualification or equivalent in computer science, Cyber security or a related field

Desirable

Technical accreditation in at least two or more of the following; Microsoft Certified Systems Engineer (MCSE), Cisco Certified Network Associate Security (CCNA Security), VMware VCP, ITIL Foundation Certificate, Evidence of continuing professional development

Experience

Essential

Acquire a complete understanding of the trusts enterprise architecture including, business processes, technology and information systems. Responsible for the technology security standards, lead engineer for security technology platforms and tools.

Desirable

Plan, research and design security architectures for both technical and business led projects. Perform vulnerability testing, risk analyses and security assessments.

Disclosure and Barring Service Check

This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.