Job summary
The post holder will work as part of the Cyber Security Team in protecting the Trusts digital assets data and information.
The post holder will support the Cyber Security Manager and other Senior Digital Services managers in developing and maintaining quality procedures to support cyber assurance and compliance.
The post holder will have thorough knowledge and understanding of the Cyber Security landscape and will support the Cyber Security Manager and Head of Service Delivery implementing, maintaining, and improving security across the organisation.
Main duties of the job
The post holder will support the Cyber Security Manager and other Senior Digital Services managers in developing and maintaining quality procedures to support cyber assurance and compliance.
The post holder will be required to bring their specialist skills and knowledge to enable them to engage all users within the Trust and interested parties that deal with the Trust including suppliers, digital service providers and regulators. In a fast changing and evolving lT security landscape the Cyber Security Compliance Officer will need to keep abreast of all internal / external audits, penetration test outputs, digital risks, and national requirements such as CIS controls, DSPT and DTAC standards. Working with senior digital managers, operational managers, digital teams, and divisional IT teams the postholder will ensure progress is made to mitigate and remediate audit and risk gaps, vulnerabilities and recommendations.
About us
An exciting opportunity has arisen to work within the Cyber Security team at Shrewsbury and Telford Hospital NHS Trust to contribute in protecting the Trusts digital assets data and information and provide assurance to senior stakeholders of of the current position.
The successful candidate will have the opportunity to use their existing skillset and develop new skills and knowledge, whilst being part of many exciting and challenging projects currently being undertaken at the Trust as part of our Digital Transformation Agenda.
Job description
Job responsibilities
For full duties and responsibilities please refer to the attached document entitled Job Description.
Job description
Job responsibilities
For full duties and responsibilities please refer to the attached document entitled Job Description.
Person Specification
Qualifications
Essential
- oEducated to Degree level, or equivalent experience, in Computer Science or a related science discipline.
Desirable
- ITIL Service Management
- Evidence of continuing professional development
- Holds relevant information security management certification
Knowledge, Behaviours and Experience
Essential
- Knowledge of regulatory compliance issues applicable to IT systems
- Knowledge of security best practices and frameworks including DSPT, DTAC and Cyber Assurance Framework
- Knowledge and experience in the coordination of audit reporting
- Working knowledge of Incident Management processes and principles
- Knowledge and experience of producing statistical process monitoring
- Knowledge and experience of developing security related support documentation
- Demonstrable experience of producing qualitative work to aggressive timescales
- Demonstrable experience of building strong relationships with business partners and multi- discipline project delivery teams
Desirable
- Public Sector or NHS Management experience
- Demonstrable experience of either project management or involvement in projects using PRINCE2 as the project methodology
- Demonstrable experience of building a systems to monitor and manage compliance status
Skills
Essential
- Ability to plan, organise and control all aspects of workload, whilst working under pressure
- Ability to interface at all levels within the customer environment to develop relationships and opportunities and manage problems.
- Ability to analyse and apply; technical knowledge to IT problem solving, staff management knowledge to management of resources and planning for additional work.
- Excellent communication skills - verbal & written. Must possess the ability to express complex issues, both orally and in writing in an easily understood manner for a wide range of audiences
- Negotiation, influencing and persuading skills.
- Responsive to change and ideas; adaptable and flexible working pattern.
- Ability to deal confidently with third party suppliers and build effective working relationships
- Practical experience of working in an IT Service organisation which has adopted ITIL best practice processes and procedures
Person Specification
Qualifications
Essential
- oEducated to Degree level, or equivalent experience, in Computer Science or a related science discipline.
Desirable
- ITIL Service Management
- Evidence of continuing professional development
- Holds relevant information security management certification
Knowledge, Behaviours and Experience
Essential
- Knowledge of regulatory compliance issues applicable to IT systems
- Knowledge of security best practices and frameworks including DSPT, DTAC and Cyber Assurance Framework
- Knowledge and experience in the coordination of audit reporting
- Working knowledge of Incident Management processes and principles
- Knowledge and experience of producing statistical process monitoring
- Knowledge and experience of developing security related support documentation
- Demonstrable experience of producing qualitative work to aggressive timescales
- Demonstrable experience of building strong relationships with business partners and multi- discipline project delivery teams
Desirable
- Public Sector or NHS Management experience
- Demonstrable experience of either project management or involvement in projects using PRINCE2 as the project methodology
- Demonstrable experience of building a systems to monitor and manage compliance status
Skills
Essential
- Ability to plan, organise and control all aspects of workload, whilst working under pressure
- Ability to interface at all levels within the customer environment to develop relationships and opportunities and manage problems.
- Ability to analyse and apply; technical knowledge to IT problem solving, staff management knowledge to management of resources and planning for additional work.
- Excellent communication skills - verbal & written. Must possess the ability to express complex issues, both orally and in writing in an easily understood manner for a wide range of audiences
- Negotiation, influencing and persuading skills.
- Responsive to change and ideas; adaptable and flexible working pattern.
- Ability to deal confidently with third party suppliers and build effective working relationships
- Practical experience of working in an IT Service organisation which has adopted ITIL best practice processes and procedures
Disclosure and Barring Service Check
This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.
Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab).
From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab).
Additional information
Disclosure and Barring Service Check
This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.
Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab).
From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab).
