Job summary
We are looking to recruit a band 6, Cyber Security Analyst.
The role would be to work as part of a team supporting clinical and non-clinical users throughout the trust in their use of all IDT services and where appropriate offering advice and support to the user. Also managing and triaging tickets for the team.
Main duties of the job
We are looking for previous experience of working in a high demanding environment with excellent communication skills and to be able to work well as part of a team.
Previous experience of clinical information systems and remote support software would be a definite advantage.
Please ensure you read the job description and person specification before applying.
About us
St George's University Hospitals NHS Foundation Trust is one of the country's principal teaching hospitals and our main site is shared with St George's, University of London, which trains medical students and carries out advanced medical research. We have over 9,000 dedicated staff serving a population of 1.3 million across south-west London.
We deliver a large number of services, such as cardiothoracic medicine and surgery, neurosciences and renal transplantation. We also cover significant populations from Surrey and Sussex, totalling around 3.5 million people. As well as acute hospital services, we provide a wide variety of specialist care and a range of community services to patients.
Job description
Job responsibilities
*****Please see the attached supporting document which contains more information about the role*****
***Previous applicants need not apply**
Job description
Job responsibilities
*****Please see the attached supporting document which contains more information about the role*****
***Previous applicants need not apply**
Person Specification
Education
Essential
- Degree or equivalent experience in computer-related discipline
- Evidence of continued professional development within a Cyber security discipline
Desirable
- Current or working towards Cyber Security certification(s) such as SSCP, CISSP, CEH, CISM, CRISC, etc
- CompTia Sec+ Certified Ethical Hacker
- Application of Cyber Security in a healthcare environment
Skills and Knowledge
Essential
- Ability to identify Cyber threats and malicious actors, and to classify and mitigate threats as they occur
- Ability to identify Cyber threats and malicious actors, and to classify and mitigate threats as they occur
- Reach timely and effective decisions based on the appropriate use of information and IT systems
- Evaluate and simplify complex data and information
Desirable
- Understanding and knowledge of health service information systems and the role of Information Governance
- Knowledge of Telecommunication Protocols, specifically TCP/IP.
- Knowledge of router & switch technology (preferably Cisco).
- Basic knowledge of risk management techniques & the use of countermeasures
Experience
Essential
- Demonstrable experience in conducting cyber security investigations into network, infrastructure, and applications
- Experience of identifying and classifying cyber threats and vulnerabilities and formulating a risk-based approach to Cyber Security
- Has a clear understanding of information technology in a complex public sector organisation and has been involved in managing large scale Multiuser/System incidents
- Experience with PAM Solutions
Desirable
- Experience of using various application, system, infrastructure, and network logs, to identify threats and issues, and in the utilisation and development of SIEM products
- Experience and knowledge of NHS systems and Cyber security tools, and Information Security strategy
- Forensic investigation experience
Person Specification
Education
Essential
- Degree or equivalent experience in computer-related discipline
- Evidence of continued professional development within a Cyber security discipline
Desirable
- Current or working towards Cyber Security certification(s) such as SSCP, CISSP, CEH, CISM, CRISC, etc
- CompTia Sec+ Certified Ethical Hacker
- Application of Cyber Security in a healthcare environment
Skills and Knowledge
Essential
- Ability to identify Cyber threats and malicious actors, and to classify and mitigate threats as they occur
- Ability to identify Cyber threats and malicious actors, and to classify and mitigate threats as they occur
- Reach timely and effective decisions based on the appropriate use of information and IT systems
- Evaluate and simplify complex data and information
Desirable
- Understanding and knowledge of health service information systems and the role of Information Governance
- Knowledge of Telecommunication Protocols, specifically TCP/IP.
- Knowledge of router & switch technology (preferably Cisco).
- Basic knowledge of risk management techniques & the use of countermeasures
Experience
Essential
- Demonstrable experience in conducting cyber security investigations into network, infrastructure, and applications
- Experience of identifying and classifying cyber threats and vulnerabilities and formulating a risk-based approach to Cyber Security
- Has a clear understanding of information technology in a complex public sector organisation and has been involved in managing large scale Multiuser/System incidents
- Experience with PAM Solutions
Desirable
- Experience of using various application, system, infrastructure, and network logs, to identify threats and issues, and in the utilisation and development of SIEM products
- Experience and knowledge of NHS systems and Cyber security tools, and Information Security strategy
- Forensic investigation experience
Disclosure and Barring Service Check
This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.
