Job Vacancy

IT Cyber Security Officer

Apply Now

Job summary

The IT Cyber Security Officers role is to assist in the planning, organisation, and management of IT Security tasks as assigned by the IT Cyber Security Manager ensuring the security and resilient operation of Trust and but not limited to its current customers' IT infrastructures. This includes developing, monitoring, maintaining, supporting, and optimising key Cyber security areas, particularly Network and Server infrastructure, Networks and Data communications. The IT Cyber security Officer will also schedule and direct activities to resolve cyber problems in a timely and accurate fashion.

There is an expectation of out of hours support to deal with system upgrades and failures as required by the line manager.

There will be a requirement to be involved with the out of hours' service rota as required. This involves having the appropriate skills to ensure emergency call outs are handled as quickly as possible and escalating faults to other on-call teams and the On-call Manager where necessary.

Main duties of the job

  • Undertake Cyber Security systems management tasks as assigned by the IT Cyber security manager.
  • Work with the Cyber Security Manager to design and implement short- and long-term strategic plans to ensure infrastructure security.
  • Monitoring and testing the security of IT Infrastructure
  • Contribute and assist in the Development of IT Security testing frameworks
  • Develop, implement, and maintain policies, procedures, and associated training plans for IT infrastructure Cyber security administration and project management.
  • Manage, maintain and monitor a robust patch management procedure
  • Respond and record in a line with internal process to NHS digital Cyber alerts and CareCERT Notifications.
  • Assist with the annual cyber/security accreditation process.
  • Monitor/maintain Cyber security records on Trust local risk registers.
  • Conduct research and make recommendations on security products, services, protocols, and standards in support of all infrastructure procurement and development efforts.
  • Assist in the preparation of bid proposals, contracts, scope of work reports, and other documentation for infrastructure security projects and associated efforts.
  • Test server, application and database security, providing statistics and reporting when required.
  • Implement and ensure data security, integrity and protection against unauthorized access or intrusion.
  • Contribute to the design, implementation and testing of Trust IT disaster recovery systems.

    About us

    At Somerset NHS Foundation Trust, we're committed to supporting our employees with a range of benefits designed to enhance your professional and personal life. We offer:

    • Flexible working options to help you balance work and life
    • NHS pension scheme for long-term financial security
    • Generous annual leave allowance to recharge and relax
    • A strong focus on career development to help you grow and achieve your potential

    Additionally, you'll gain access to our Blue Light Card, unlocking exclusive discounts on shopping, dining, and leisure activities, as well as NHS-specific perks to support you both inside and outside of work.

    We are proud to foster a diverse, skilled, and inclusive workforce, and we encourage applications from all backgrounds.

    Why Somerset? Somerset offers the perfect blend of idyllic countryside, outstanding areas of natural beauty, and breathtaking coastlines, with vibrant cities like Bristol, Bath, and Exeter just a short drive away - and only two hours to London.

    The region is home to excellent educational facilities, and with affordable housing compared to other parts of the country, it's a great place to build both your career and your future.

    Somerset truly has it all - the peaceful countryside and cosmopolitan city life, with something for everyone to enjoy.

    Job description

    Job responsibilities

    • Undertake Cyber Security systems management tasks as assigned by the IT Cyber security manager.
    • Work with the Cyber Security Manager to design and implement short and long term strategic plans to ensure infrastructure security.
    • Monitoring and testing the security of IT Infrastructure
    • Contribute and assist in the Development of IT Security testing frameworks
    • Develop, implement, and maintain policies, procedures, and associated training plans for IT infrastructure Cyber security administration and project management.
    • Assist in the development of IT strategies in collaboration with the CTO and Deputy CTO.
    • Manage, maintain and monitor a robust patch management procedure
    • Respond and record in a line with internal process to NHS digital Cyber alerts and CareCERT Notifications.
    • Assist with the annual cyber/security accreditation process.
    • Monitor/maintain Cyber security records on Trust and local risk registers.
    • Conduct research and make recommendations on security products, services, protocols, and standards in support of all infrastructure procurement and development efforts.
    • Assist in the preparation of bid proposals, contracts, scope of work reports, and other documentation for infrastructure security projects and associated efforts.
    • Negotiate with vendors, outsourcers, and contractors to secure cyber security specific products and services.
    • Contribute to the research, planning and deployment and monitoring of infrastructure and systems cyber security measures.
    • Manage and set priorities for the design, maintenance, development, and evaluation of all cyber security systems.
    • Conduct feasibility studies for various upgrade projects, improvements, and other conversions.
    • Contribute to the definition of hardware and software standards in conjunction with owners and stakeholders.
    • Monitor and maintain cyber security systems performance.
    • Test server, application and database security, providing statistics and reporting when required.
    • Establish and maintain regular written and in-person communications with Digital Services Senior Management Team and customer organisation's executives, decision-makers, stakeholders, department heads, and end users regarding pertinent infrastructure activities.
    • Practice IT hardware & software asset management, including maintenance of component inventory and related documentation.
    • Implement and ensure data security, integrity and protection against unauthorized access or intrusion.
    • Assist in the establishment, management and monitoring of supplier/customer performance contracts and service level agreements.
    • Contribute to and assist with IT procurement processes.
    • Plan and ensure IT security performance and capacity is able to support new business growth.
    • Contribute to the design, implementation and testing of Trust IT disaster recovery systems.

    Person Specification

    Qualifications

    Essential
    • Relevant on the job IT experience.
    Desirable
    • Educated to degree level and/or have an appropriate level of experienceCyber Security certification (CISSP, CEH, SCCP)IT certification (MCSE, CCNE,)PRINCE II Management QualificationITIL Qualification

    Experience

    Essential
    • IT Security Management in the NHS, public sector or major private sector organisation.Good knowledge & experience of data networking technologies & protocols.Good knowledge in the field of cyber security, securing and monitoring networks, systems and devices.Good technical knowledge of Operating systems (Windows, Linux).Knowledge Active Directory/Azure design, Implementation and Management.Demonstrable experience in design installation and commissioning of highly complex cyber security protection & monitoring systems.Working with 3rd party suppliers ensuring a high-quality service is delivered.Working with NHS professionals to implement information and operational systems.Experience in the day-to-day operational support of complex IT infrastructure within large or multi-site environments.Experience of managing priorities and participating in large projects.IT Security Management in the NHS, public sector or major private sector.Demonstrable evidence of working in a technical IT Environment.Able to work in a team with good interpersonal skills including tact and discretion.Ability to communicate clearly with Digital Services colleagues, senior managers, clinicians and external contractors.Articulate, with good persuasive skills and an ability to negotiate effectively with external companies. Ability to convey highly complex information to both technical and non-technical staff including presentations to large groups.High standard of written and verbal communication
    Desirable
    • A Technical knowledge of Database AdministrationExperience in project management and knowledge of planning/management methods with particular reference to PRINCE 2.Experience of working in an ITIL based environment with an emphasis on project management, change control, incident management, customer service and service delivery.Knowledge of Health Informatics Functions and National IT ProgrammesKnowledge of Project Management methodologiesUnderstanding of NHS IT Policies and StrategiesExperience of Developing and Supporting external customer IT Systems & Infrastructure

    Additional Criteria

    Essential
    • Ability to present information in a meaningful manner to non-technical audience, as well as analyse, present and interpret data from a number of different sourcesStrategic thinker with strong analytical and problem solving skills -- often approaching issues where guidance or support is ambiguous or non-existentAbility to rapidly assess major issues requiring actions and select the best course of action with information available whilst under pressureAbility to plan a range of ongoing service activities some complex with interdependencies that will need adjustment according to evolving trust and Health Community priorities therefore ability to prioritise when there are conflicting demands a time pressures.Ability to create and input to project plans.Ability to write strategies that take account of Trust business strategy as well as evolving technologies.Ability to manage teams, allocate and prioritise resources, meet objectives, work under pressureSelf motivatedProactiveCurrent full UK driving license and access to a car or other private transport.
    Desirable
    • Ability to deal with manage conflict

    Disclosure and Barring Service Check

    This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.

    Employer details

    Employer name

    Somerset NHS Foundation Trust

    Address

    Yeovil District Hospital

    Higher Kingston

    Yeovil

    Somerset

    BA21 4AT


    Employer's website

    https://www.somersetft.nhs.uk/

    Company
    Somerset NHS Foundation Trust
    Location
    Yeovil, United Kingdom BA21 4AT
    Employment Type
    Permanent
    Salary
    £37338.00 - £44962.00 a year
    Posted
    Apply Now
    Apply Now
    Company
    Somerset NHS Foundation Trust
    Location
    Yeovil, United Kingdom BA21 4AT
    Employment Type
    Permanent
    Salary
    £37338.00 - £44962.00 a year
    Posted