Job summary
A fantastic opportunity has arisen for a motivated and organised Director of Assurance & Cyber Security to join the Group Digital Services Team at Manchester Foundation Trust (MFT).
The Director of Assurance and Cyber Security (and CISO) will be responsible for developing and implementing the Trust's information Cyber Security strategy in line with the Digital Strategy.
You will form part of a growing, motivated, and supportive team and will be well placed to develop your skills and knowledge.
Main duties of the job
Provide a clear vision and direction for information and Cyber Security operations, promoting continuous improvement, innovation, and agility in service delivery, whilst working in consultation and collaboration with colleagues across the Trust to ensure that all information and cyber security policies are implemented and enforced.
Responsible for overseeing a range of technical and process security controls and leading a programme of continuous improvement in response to changing security threats and risk.
Leading and developing a specialist team to provide a progressive service developing innovative, future focused information and Cyber Security capabilities that can address the dynamic nature of cyber threats. Providing robust governance and assurance services across the entire IT security portfolio of activities.
The role requires a thorough understanding of the technology underpinning the Trust digital systems, as well as a broad, up-to-date knowledge of information security frameworks, pertinent regulation and legislation, vulnerability management, incident management and response, secure development techniques and approaches, Cyber Security engineering and operations, and management and governance of Cyber risk and Cyber Security.
Please review the Job Description and Person Specification document attached for details of the role and comparison against your skills, experience and knowledge.
About us
MFT is one of the largest NHS Trust In England with a turnover of over £3bn & is on a different scale than most other NHS Trusts. We're creating an exceptional integrated health & social care system for the 1 million patients who rely on our services every year.
Bringing together 10 hospitals & community services from across Manchester, Trafford & beyond, we champion collaborative working & transformation, encouraging our 30,000 workforce to pursue their most ambitious goals. We set standards that other Trusts seek to emulate so you'll benefit from a scale of opportunity that is nothing short of extraordinary.
We've also created a digitally enabled organisation to improve clinical quality, patient & staff experience, operational effectiveness & driving research, and innovation through the introduction of Hive; our Electronic Patient Record system which launched in September 2022.
We're proud to be a major academic Research Centre & Education provider, providing you with a robust infrastructure to encourage and facilitate high-quality research programmes. What's more, we're excited to be embarking on our Green Plan which sets out how MFT continues to play its part in making healthcare more sustainable.
At MFT, we create and foster a culture of inclusion and belonging, provide equal opportunities for career development that are fair, open, and transparent, protecting your health and wellbeing and shaping the future of our organisation together.
Job description
Job responsibilities
To find out more about the key responsibilities and the specific skills and experience youll need, take a look at the Job Description & Person Specification attachments under the Supporting Documents heading. So that youre even more equipped to make an informed decision to apply to us, youll need to take time to read the Candidate Essentials Guide that sits with the Job Description and Person Specification. This document provides you with details about the Trust, our benefits and outlines how we care for you as you care for others. Most importantly, it also contains critical information youll need to be aware of before you submit an application form.
Diversity Matters
MFT is committed to promoting equality of opportunity, celebrating, and valuing diversity and eliminating any form of unlawful discrimination across our workforce, ensuring our people are truly representative of the communities we serve. All individuals regardless of age, disability, gender reassignment, marriage and civil partnership, pregnancy and maternity, race, religion or belief, sex and sexual orientation are encouraged to apply for this post. As an inclusive employer, we are here to support you. If you have any special requirements to help you with your application, email our team at resourcing@mft.nhs.uk.
Were looking forward to hearing from you!
Job description
Job responsibilities
To find out more about the key responsibilities and the specific skills and experience youll need, take a look at the Job Description & Person Specification attachments under the Supporting Documents heading. So that youre even more equipped to make an informed decision to apply to us, youll need to take time to read the Candidate Essentials Guide that sits with the Job Description and Person Specification. This document provides you with details about the Trust, our benefits and outlines how we care for you as you care for others. Most importantly, it also contains critical information youll need to be aware of before you submit an application form.
Diversity Matters
MFT is committed to promoting equality of opportunity, celebrating, and valuing diversity and eliminating any form of unlawful discrimination across our workforce, ensuring our people are truly representative of the communities we serve. All individuals regardless of age, disability, gender reassignment, marriage and civil partnership, pregnancy and maternity, race, religion or belief, sex and sexual orientation are encouraged to apply for this post. As an inclusive employer, we are here to support you. If you have any special requirements to help you with your application, email our team at resourcing@mft.nhs.uk.
Were looking forward to hearing from you!
Person Specification
Qualifications
Essential
- Education to a minimum of Masters Degree level or equivalent post graduate qualification or equivalent senior level experience
- Formal certification (CISSP, CISM or CRISC) and/or formal training in information security standards and best practice (e.g.: ISO 27001/2, COBIT, Cyber Essentials)
- Advanced level of IT literacy with experience of using a range of IT applications
- Significant evidence of continued professional development
Desirable
Knowledge and Experience
Essential
- Proven and significant leadership experience and/or formal management qualification
- Demonstrated expertise in an IT Security environment
- Direct experience of strategic and budgetary planning and financial management and controls
- Previously worked within the NHS
- A good practical knowledge of security technologies and wider business solutions including Firewalls, IDS/IPS, Identity and access management, SIEM, remote working and cloud technologies
- Proven experience of working at a senior level leading and delivering IT Security in a sensitive and complex environment which is undergoing significant change
- Experience of delivering presentations to large groups of stakeholders
- Demonstrable commitment to partnership working with a range of external organisations
- Experience in engaging and influencing stakeholders from diverse backgrounds
- Experience of managing and prioritising a budget, as part of financial management of a department
- Project management experience
- Experience in implementing / developing security policies and technical documentation
- Experienced in developing and managing best-of-breed enterprise IT security solutions and processes
- Robust understanding of audits and review process
- Experienced in Contingency and Disaster Recovery Planning
- Expert knowledge of security standards, legislation and best practice
- Experienced in leading, developing, performance managing and motivating a team of subject matter experts
- Experience of staff management of teams
- Experience providing IT focused Enterprise Architecture and strategy
Desirable
- Understanding of the role of Data in all aspects of NHS operational activity and 'business' processes
- Demonstrated expertise in a Healthcare environment
- Significant management experience at senior level in the NHS
Person Specification
Qualifications
Essential
- Education to a minimum of Masters Degree level or equivalent post graduate qualification or equivalent senior level experience
- Formal certification (CISSP, CISM or CRISC) and/or formal training in information security standards and best practice (e.g.: ISO 27001/2, COBIT, Cyber Essentials)
- Advanced level of IT literacy with experience of using a range of IT applications
- Significant evidence of continued professional development
Desirable
Knowledge and Experience
Essential
- Proven and significant leadership experience and/or formal management qualification
- Demonstrated expertise in an IT Security environment
- Direct experience of strategic and budgetary planning and financial management and controls
- Previously worked within the NHS
- A good practical knowledge of security technologies and wider business solutions including Firewalls, IDS/IPS, Identity and access management, SIEM, remote working and cloud technologies
- Proven experience of working at a senior level leading and delivering IT Security in a sensitive and complex environment which is undergoing significant change
- Experience of delivering presentations to large groups of stakeholders
- Demonstrable commitment to partnership working with a range of external organisations
- Experience in engaging and influencing stakeholders from diverse backgrounds
- Experience of managing and prioritising a budget, as part of financial management of a department
- Project management experience
- Experience in implementing / developing security policies and technical documentation
- Experienced in developing and managing best-of-breed enterprise IT security solutions and processes
- Robust understanding of audits and review process
- Experienced in Contingency and Disaster Recovery Planning
- Expert knowledge of security standards, legislation and best practice
- Experienced in leading, developing, performance managing and motivating a team of subject matter experts
- Experience of staff management of teams
- Experience providing IT focused Enterprise Architecture and strategy
Desirable
- Understanding of the role of Data in all aspects of NHS operational activity and 'business' processes
- Demonstrated expertise in a Healthcare environment
- Significant management experience at senior level in the NHS
Additional information
Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab).
From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab).
