Overview
The Health Informatics Service (THIS) provides IM&T services across multiple customer organisations. The Cyber & IT Security Service (CITS) is a principal service area within THIS. The post holder will be a key member of the Chief Technology Officer’s staff and will lead the design, delivery and continuous improvement of the CITS service, ensuring the strategic vision is developed and delivered in line with national policy and the internal Governance, Risk and Compliance (GRC) Framework.
Responsibilities
* Lead the development and direct the implementation of the overall strategic vision of the CITS Service, including service and personnel development/improvement, professionalisation and commercialisation.
* Lead on the development and implementation of the GRC Programme from a CITS perspective, ensuring all current and emerging national and locally mandated compliant areas are encompassed (ISO27001:2013, Cyber Essentials Plus, NIS Regulation, GDPR, Data Protection Act 2018, ENISA, DSPToolkit, OWASP Top 10).
* Lead on the strategic development of THIS Cyber Security Service.
* Maintain up-to-date awareness of current security threats (threat actors/attack vectors) and ensure risk assessments are applied to promote mitigation.
* Research and evaluate the latest Cyber Security, Information Security and IT Governance products and protocols.
* Lead on the development and delivery of a range of Cyber & IT Security awareness sessions/workshops/presentations to improve cyber safety throughout the business, customer base and wider regional footprint.
* Manage, develop, support and deliver all CITS services delivered to internal and external customers.
* Create and continually develop a structure that consistently delivers excellent service and meets all customers' requirements.
#J-18808-Ljbffr