Information Security Specialist

Job description

Job responsibilities

The Administration Services Support Manager will be responsible for the operational running for the administrative services within a department, acting as line manager for all direct reports and monitoring of budgetary issues. The expectation is the post holder will operate at a high level dealing with a range of complex issues and situations for most of the times.

The Administration Services Support Manager will also deputise for the Administration Services Manager. The post holder will be a team player and will actively contribute to continuous service improvement activities, including the maintenance and improvement of quality to ensure that services are delivered with a key results area.

Key result areas

1. Responsibility for communication and relationships

Identify key internal and external contacts at a range of levels, to understand their needs and manage their expectations, building a network of key stakeholders to share information and achieve results

Develop, influence and maintain effective and credible relationships with colleagues and internal senior management to enable the effective management of key aspects relevant to the assignment

Participate in discussions with stakeholders on a regular basis to review processes and requirements within role and wider business area to identify and implement changes which improve efficiency.

Negotiate with key stakeholders to agree required levels of reporting, communication and capture the outcome in regards to the service level agreements, using persuasive skills to ensure the service/services achieve the best outcome for their service users.

Manage the requirements and requests of different stakeholders through the development, communication and execution of repeatable processes.

Provide effective consultancy, direction and advice to stakeholders and colleagues, delivering timely and accurate information and giving clear explanations where the nature of the information is potentially complex

Deliver bad news to internal and external stakeholders when necessary (e.g. when approval of a request is delayed or rejected)

Resolve complex and or sensitive enquiries from staff and external stakeholders promptly and providing a timely response to emails and external enquiries.

Present complex and technical information clearly and concisely, adapting communication style to meet the needs of a variety of audiences

Provide reports and presentations to senior forums as determined by assignment, engaging in discussion, negotiation and exerting influence when required

Understand the impact and the rationale of relevant LCH/national changes that effect the whole organisation, persuading, motivating and influencing others to resolve the issues that may create substantial barriers to their acceptance

Negotiate adjustments in timelines and/or scope of work, when appropriate, with colleagues, to achieve a win-win outcome.

Exercise a high degree of confidentiality as required by the role, maintaining the integrity of investigations, budgets and reporting

Encourage collaborative team working within own team and across the directorate. Engendering a relationship of trust by providing and maintaining communication channels which can operate effectively across a diversely located team where necessary. Ensure feedback on issues is constructive and supports ongoing development

Positively represent the directorate and ensure a cohesive cross organisation process through working collaboratively with key stakeholders.

The post holder will engage with a range of stakeholders both internal and external which may vary dependent on role.

The post holder contributes and participates on all Information Security matters relating to the IG workstreams to ensure that the Trust complies with current and future legislation, national guidance and best practice, including requirements set by NHS England, Government and other mandating agencies.

The post holder will support a wide variety of projects relating to the management and development of the Trusts Information Security Agenda, this involves the on-going review and development of the Trusts Information Governance policy and strategy, ensuring that any action plans, policies and procedures are fully implemented.

This role reports to the Head of Information Governance and DPO and ensures that the technology, infrastructure, systems and supporting processes and organization, collectively provide adequate and cost-effective protection against cyber threats and all identified Cyber Security risks.

The role will involve taking ownership and accountability for a number of security focused technical projects and initiatives aligned with the overall strategic direction of the Trust. The Information Security Specialist will deal with a wide range of stakeholders, defining and delivering appropriate Cyber solutions and deliverables and liaising with staff to ensure that IT systems are robust, secure and cyber compliant.

Person Specification

Qualifications

• Degree level or specialist experience in a technical field or equivalent qualification;
• Proven track record of delivering technical infrastructure projects across a number of service areas;
• Evidence of continuing professional development;
• Information security qualification (e.g. CISMP, CISSP, CompTIA Security+).

• IT certification from a recognised accredited body (e.g. Microsoft MCSA/MCSE, Cisco CCDA/CCNA, VMware VCP)
• Prince 2 Foundation Certificate;
• ITILv3 Foundation Certificate;

Skills and Attributes

• Minimum of 4 years broad IT experience and at least 2 in a security role.
• A good working knowledge of the Information security principles and practices
• Knowledge of current national and regional health policy and guidance in relation to information security;
• In depth knowledge of the latest information and communications technology innovations and how they can support improvements in healthcare delivery;
• Good working knowledge of information risk management techniques and analysis
• Thorough working knowledge of relevant legislation/guidelines e.g. GDPR, Data Protection Act, Freedom of Information Act 2000, information confidentiality security and guidance, Data Security and Protection Toolkit Standard

• In-depth knowledge of the use and management of clinical information systems;
• Integration and interfacing workflows.
• Evidence of specialist knowledge and expertise in IT infrastructure;
• Specialist knowledge of server infrastructure, network architecture, telecommunications;
• Thorough knowledge of structured IT Service Management methodology (such as ITIL)

Experience

• Understanding of Information Security at an academic level and or practical experience of information technology support
• Experience of the use of IT security frameworks at both a strategic design and practical implementation level;
• Practical experience of the design and implementation of enterprise-wide system security.
• Ensuring that the Trust develops IT systems with a technical infrastructure which complies with established best practice, including system security, confidentiality, data protection and disaster recovery;
• Proven experience of managing a complex IT infrastructure over multiple sites;
• Working in a highly technical role for at least 3 years in a complex environment bringing about significant change in line with agreed strategic and operational objectives;
• Working with a range of stakeholders to ensure their successful engagement in projects and programmes of work;
• Evidence of commitment to delivering high quality service to customers;
• Deploying appropriate technology to achieve agreed quality and safety metrics with efficiency and productivity savings;
• Resolving complex technical issues and communicating these to staff at all levels;

• Experience of best practice in IT infrastructure design, implementation and project management;
• Experience of successful delivery of cost improvements;
• Experience of working in Community setting

Disclosure and Barring Service Check

This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.

Employer details

Employer name

Leeds Community Healthcare NHS Trust

Address

Building 3 White Rose Park

Millshaw Park Lane

Leeds

LS11 0DL

https://www.leedscommunityhealthcare.nhs.uk/join-our-team1/