Overview
Join NHS England Cyber Operations as a Security lead to support safe care and build public trust by building NHS England's cyber resilience and enabling the wider health system to be cyber resilient.
This post is within Service Integration and Ownership (SIO), which is part of Cyber Operational services. SIO is primarily external facing, managing a portfolio of Cyber Services to the NHS, to manage cyber risk and ultimately provide cyber resilience while underpinning the delivery of patient services and outcomes.
You would be providing Security leadership to a subset of the services in our portfolio throughout their lifecycle ensuring they improve cyber resilience. Developing, assessing and reviewing security requirements, providing security consultancy, advising health and care organisations how to get the best out of the services.
Services we provide include Secure Boundary, Vulnerability management, Cyber security ratings service and the Data Security and Protection Toolkit.
Consistent, efficient, proportionate security risk management is best achieved by a blend of centralised advice, control and security services blended with individual security responsibility and actions. You would be supporting the NHS by keeping their services secure, deliver managed security services to the system, filling the gaps where secure design & operation or other constraints fail to deliver proportionate security across the system.
Responsibilities
The role requires an individual with excellent knowledge and experience of working in a cyber environment providing expertise to both support strategic decisions and security requirements to the portfolio of cyber services managed centrally. This may include the full management and delivery of a subset of the portfolio and subsequent replacement/renewal of services managing this across the whole lifecycle from requirements gathering, transitioning and ownership.
As a Security Lead you will:
* Have a good understanding of information security / governance frameworks / Security operations.
* Have a good understanding of the end-to-end management and enhancement of services, including management of 3rd party providers.
* Have detailed understanding of what constitutes good and poor cyber hygiene.
* Have a good understanding of the health and care system in England.
* Be able to communicate complex concepts to audiences that have limited knowledge of cyber security.
* Be able to influence organisations in improving their cyber posture whilst maximising the value from central services.
* Support the portfolio of cyber services delivered by the SIO team to the wider NHS.
The role will also be required to manage members of the team, ensuring they deliver on team objectives and promote their personal development ambitions.
About us
The NHS England board has set out the top-level purpose for the new organisation to lead the NHS in England to deliver high-quality services for all. We will achieve this by enabling local systems and providers to improve health, reduce inequalities, making the NHS a great place to work, collaborating to ensure the workforce has the right knowledge, skills, values and behaviours to deliver accessible, compassionate care, and by optimising the use of digital technology, research and innovation, delivering value for money.
If you would like to know more or require further information, please visit the NHS England careers site.
Location and terms
* Job locations: Wellington Place, Leeds / Hexagon House, Exeter
* Band: Band 8b
* Salary: £83,792 to £97,365 per year (includes a Recruitment and Retention Premia payment of 30%)
* Contract: Fixed term
* Duration: 13 months
* Working pattern: Full-time
* Reference number: 990-TD-15009-E
Colleagues with a contractual office base are expected to spend, on average, at least 40% of their time working in-person.
If you are successful at interview, an Inter Authority Transfer (IAT) will be run in the Electronic Staff Record system (ESR) for onboarding. You will have the opportunity to indicate if you do not consent to this.
Requirements and disclosures
Residency and security requirements: All NHS England Cyber Security personnel must hold Security Clearance level as a minimum. SC clearances require 5 years continuous UK residency, which can in some cases be reduced to 3 years with additional overseas checks for the previous two years. Applicants should ensure they meet these requirements before applying. You do not need to have SC at the application stage, but failure to meet SC requirements after an offer may result in withdrawal. For guidance see the UK government security vetting pages.
Residency and job title: Should you be successful, you will be hired to the job title of Security Lead, which is advertised to attract the right skills for the role.
RRP: The post of Security Lead has a Recruitment and Retention Premia (RRP) of 30% per annum. RRP is non-contractual and subject to review.
Secondments: NHS staff may be offered on a secondment basis with employer agreement prior to applying. The fixed term is due to a short-term vacancy.
Qualifications and experience
Essential: CISSP or CISM qualifications; extensive knowledge of information security management, governance, and ability to deploy and monitor information security systems; experience providing technical or business guidance to clients; ability to assess and control organisational risk.
Desirable: Detailed knowledge of cybersecurity risk management tools and processes; knowledge of domestic and international information security laws and how they impact the business.
Disclosure and Barring Service (DBS) check: This post is subject to DBS check via the Rehabilitation of Offenders Act 1975.
Certificate of Sponsorship: Applications from those requiring Skilled Worker sponsorship are welcome and will be considered. See UK Visas and Immigration guidance for further details.
Application notes
Please ensure your supporting statement includes demonstrable evidence and specific examples showing how you meet the key skills. This will be used in shortlisting and interview processes.
#J-18808-Ljbffr