Main duties of the job
As a Senior Security Specialist, you will lead and support the investigation, analysis, and resolution of complex cyber security incidents, using a wide range of tools and techniques to identify threats, assess their impact, and implement effective responses. You will provide specialist advice across a variety of technical and operational areas, ensuring that systems are developed and maintained securely, in line with national guidance and good practice. You will also support the ongoing improvement of security procedures, contribute to threat intelligence activities, and help ensure critical national infrastructure and information remain protected. The ability to speak Welsh is desirable for this post; Welsh and/or English speakers are equally welcome to apply.
About us
Digital Health and Care Wales (DHCW) is an expert national body and part of NHS Wales. We work in partnership with NHS Wales colleagues and other key stakeholders to provide national digital and data services which support the delivery of health and social care in Wales. Modern health and care services depend on good digital tools, data and information. DHCW runs or works with more than 100 services and delivers major national digital transformation programmes to support this. In addition, DHCW provides expert advice in relation to cyber security and information governance. We give frontline staff the digital tools which help them provide safer and more efficient care. We are also giving patients and the public digital tools to better manage their own health and wellbeing, empowering people to live healthier lives. We put people at the heart of what we do, working to the highest standards to deliver quality and make digital a force for good in health and care.
Job details
Posted: 01 October 2025 | Pay scheme: Agenda for change Band 6 | Salary: £39,263 to £47,280 a year | Contract: Permanent | Working pattern: Full-time, Flexible working | Reference number: 025-AC233-1025 | Job locations: Ty Glan yr Afon, Cardiff – Hybrid Working, 21 Cowbridge Road West, Cardiff, CF11 9AD
Person Specification
Essential Qualifications and Knowledge:
* A Postgraduate degree (or equivalent qualification / experience) in an associated professional field.
* Practical experience, working at this level, across the range of work procedures and practices.
Desirable Qualifications and Knowledge:
* Professional Cyber Security qualification.
* ITIL practitioner, or equivalent qualification.
Essential Experience:
* Experience of working within a successful team, preferably in a large complex digital organisation, monitoring and responding to cyber incidents affecting IT systems and applications.
* Proficient in analysing and investigating the nature, impact and root cause of cyber threats, and implementing mitigation and remediation actions.
* Proficient in the identification, monitoring and interpretation of information logs and alerts detected by an organisation’s tools and systems.
* Familiar with supporting audits and risk assessments, producing complex reports and analysing data within set timescales.
* Familiar with developing training materials to effectively accommodate participants with differing learning styles.
* Familiar with incident management tools, including interrogation of incident database, creation of parent and child incidents, creation of queries to seek trends and use of known error logs / databases.
* Familiar with any tool or system which provides security access control (i.e. prevents unauthorised access to systems).
Desirable Experience:
* Experience of writing clear and effective Standard Operational Procedures and processes.
Essential Skills and Attributes:
* Analytical Thinking skills to acquire a proper understanding of a problem or situation by breaking it down systematically into its component parts and identifying the relationships between these parts, selecting the appropriate method/tool to resolve the problem and reflecting critically on the result, so that what is learnt is identified and assimilated.
* Information Acquisition skills to identify gaps in the available information required to understand a problem or situation and devise a means of resolving them.
* Technical Adaptability skills to learn and assess new methodologies or technologies quickly, understanding their wider implications and where appropriate implement them.
#J-18808-Ljbffr