Cyber Security Manager

The Cybersecurity Manager has a pivotal role within the organisation, reporting directly to the Deputy IT Operations Manager. The role holder will oversee and manage the cybersecurity function within IT Operations with the primary objective being the provision and maintenance of secure, efficient IT services to support healthcare delivery and the digital strategy of the Trust. Collaborating with cross-functional teams, vendors, and stakeholders, they will develop strategies, implement best practises, and ensure the reliability, availability, and security of IT systems in line with national and local cybersecurity frameworks, policies and guidance.

The Cyber Security Manager oversees the daily operations of the cyber security team, ensuring high-quality service delivery. They act as a subject matter expert, providing guidance to the cyber and senior leadership teams, and build strong relationships with diverse stakeholders. Key responsibilities include managing the IT Operations cyber function, implementing best practices, and assessing risks using methods like Agile and Lean.

They advise on securing data and systems during partnerships and new projects, analyze and report on high-risk areas, and review cyber threats and vulnerabilities. The role involves coordinating the cyber security incident response plan, ensuring compliance with security controls, and contributing to the overall cyber strategy. They also identify and organize cybersecurity training, use security tools for intrusion detection, and manage large projects such as annual pentests.

Additionally, the Cyber Security Manager oversees the operation of information systems and security tools, provides assurance to the Board on security controls, and liaises with external organizations during incident investigations. They play a crucial role in delivering high complexity and risk-based digital transformation, ensuring the organization's cyber security posture is robust and resilient.

Why Work With Us: Our dynamic department comprises a talented and motivated team of IT professionals, who bring a wealth of expertise and experience to the table. With a strong work ethic and a collaborative mindset, we strive for excellence in delivering top-notch IT services. Our team members embrace a culture of continuous learning and innovation, constantly staying updated with the latest technological advancements. We take pride in our ability to overcome challenges and find creative solutions. Working together, we foster a supportive environment where everyone's contributions are valued, and professional growth is encouraged. It's a rewarding experience to be part of this team, where we collaborate seamlessly and leverage our skills to drive success for the organization.

Job responsibilities

Full Vacancy details can be found on the attached Job Description/Person Specification. Please refer to your suitability to the post in your supporting information from the role requirements or person specification.

Qualifications & Training

Essential

• Master's degree level qualification relevant for the role or demonstrable equivalent level of experience
• Prince2 / AGILE Foundation Project Management, or proven experience
• Specialist Cyber Security Industry Qualification
• 3+ Years Experience working in Cyber Security

Desirable

• ITIL Service Management Foundation (ITIL3 or ITIL4)
• ITILV4 Managing Professional Certification
• PRINCE2 Practitioner
• Evidence of Continuing Professional Development

Knowledge

Essential

• Previous experience of imputing into strategic plans and policies.
• Previous experience of project and change management skills and/or techniques.
• Previous experience of team management.
• Advanced Reporting & Presentation Skills
• In depth knowledge of digital & cyber best practice and procedures.
• Previous experience of cyber assurance, audit and compliance processes.
• Understanding of NHS Procurement procedures including but not limited to...Contracts and Commercial issues, including negotiation of same
• Experience of healthcare computing in the NHS, with a very detailed working knowledge of Communications Networks (LAN/WAN/Wireless), Servers, Telephony and Desktop systems.
• Experience of working in the NHS at a senior level
• Able to use own judgement and problem solve on highly complex issues.
• Able to effectively evaluate multiple options to aid decision making.

Desirable

• Previous experience of DSPT/CAF cybersecurity frameworks.
• Knowledge of Primary and Secondary Care NHS business processes and systems
• Previous experience of large IT procurements, including commercial negotiations

Work Environment

Essential

• Must be able to contribute to 6-person On-call Rota
• Must be able to attend Regent House at least once per week
• Must be able to work from Regent House every day whilst 'On-Call'