Head of Security (Regional Lead – Midlands) Cyber Operations purpose is to support safe care and build public trust by building NHS England's cyber resilience and enabling the wider health system to be cyber resilient, supporting Transformation Directorate's purpose of delivering the best care and outcomes for the NHS.
The Cyber Operations sub-directorate consists of four operational areas:
Cyber Security Operations Unit (CSOU & SIO)
Cyber Delivery Unit (CDU)
Cyber Improvement Programme
Chief Information Security Office Function (CISO)
The security landscape is constantly evolving, and this is your opportunity to think creatively and positively contribute towards improving the security resilience of health and care organisations across England. Our regions are split into 7 geographical areas and each area has a Head of Security allocated to it. We are recruiting for a Head of Security to provide the Midlands region of England with information security subject matter expertise ranging from tactical advice during a cyber security incident to assurance of cyber security strategies and consultancy on security aspects of strategic development.
You will join a 9 strong team of cyber professionals in the Cyber Delivery Unit who are key to supporting the delivery, augmentation, awareness, and application of the services and offering regional health organisations with information security subject matter expertise when needed.
Main duties of the job In the role of Head of Security, you will be responsible for:
Being the regional interface and voice of NHS England in the Midlands, engaging with stakeholders and giving a voice to their feedback on security services to drive improvement.
Being an advocate for the centrally delivered services the Cyber Operations directorate can deliver and ensuring effective take‑up of these services across the Midlands region.
Driving cyber security as a leadership responsibility.
Supporting organisations in developing their information security posture using your expertise and influence.
When requested, driving adherence across the region to requests for action and monitoring such adherence, stepping in when required to ensure compliance.
Representing the regional team at broader NHS England meetings.
Attending other regional areas upon request.
Job responsibilities The following responsibilities are essential:
Facilitate effective two‑way communication between NHS England and regional organisations.
Advise on cyber security incidents and incident response.
Ensure compliance with security policies and regulations.
Promote the use of centrally delivered cyber services.
Monitor and improve the information security posture of Midlands health and care organisations.
Person Specification Knowledge
Advanced specialist knowledge of the processes, tools and techniques of information security management, including the deployment and monitoring of information security systems, and detecting, resolving and preventing violations of IT security to protect organisational data.
Extensive knowledge of concepts, tools and practices for dealing with computer crime, and the ability to detect and prevent business crimes involving computers and networks.
Extensive knowledge of modules, processes and technologies of the Information Security Operation Centre (ISOC); ability to detect, respond to, and utilise related platforms and applications to perform cyber security initiatives.
Skills and Experience
In‑depth knowledge and ability to utilise tools and techniques for assessing the effectiveness of information security measures, identifying potential risk exposures, and protecting the availability, confidentiality and audit trails of information from destruction or manipulation.
Detailed knowledge and ability to protect information and information systems while ensuring confidentiality, integrity and availability.
Qualifications
Master’s level degree in Cyber Security or a relevant subject, or equivalent level of experience.
Disclosure and Barring Service Check This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and requires a submission for Disclosure and Barring Service to check for any previous criminal convictions.
Security Clearance All NHS England Cyber Security personnel must hold Security Clearance level SC as a minimum. Candidates must satisfy SC requirements: 5 years continuous UK residency, or 3 years continuous UK residency with additional overseas checks for the previous two years. Those posted abroad for service with HM Government, Armed Forces or within a UK government role are still considered. Failure to achieve SC after an offer will result in the job offer being withdrawn.
Benefits £103,355.20 to £119,091.70 a year, inclusive of a Recruitment and Retention Premia (RRP) payment of 30% per annum. RRP is non‑contractual and subject to review.
#J-18808-Ljbffr