Cyber Security Analyst

Job summary

We are seeking a highly skilled and motivated Cyber Security Analystto join our Digital Data & Technology (DDaT) team. This is a pivotal role supporting the Chief Information Security Officer (CISO) in delivering cyber security services across the Trust and wider health and care system.

The role will support the CISO in delivering digital safety, security and overall improvement, adhering to the Target Operating Model. The Information Security Analyst will manage the delivery of all cyber security related services. This will include cyber risk management, Data Security Protection Toolkit (DSPT) compliance against cyber relatedassertions, policy and procedure lifecycle management, and ensuring theTrust's information compliance adheres to the Cyber Assurance Framework (CAF) and ISO27001.

Main duties of the job

Provide expert guidance on the selection, design, justification,implementation and operation of Cyber Security strategies, technologies,processes, procedures and standards. Support the development of controlsand management approaches to maintain the safety, confidentiality,integrity, availability and security of the Trust's digital infrastructure andsystems; including the protection of Trust and patient data and informationstored and processed by infrastructure or systems managed by, or under the control of the Trust

As the Cyber Security Analyst, you will ensure that technology,infrastructure, systems and supporting processes possess adequate andcost-effective protection against cyber threats and all identified CyberSecurity risks.

As the Cyber Security Analyst, you will provide expert advice on, andmanagement of, the Trust's defence against cyber threats, data breachesand Cyber Security technologies.

Support the development of controls and management approaches tomaintain the safety, confidentiality, integrity, availability and security of the Trust's digital infrastructure and systems; including the protection of patient data and information stored and processed by infrastructure or systems managed by, or under the control of the Trust.

About us

Diversity makes us interesting... Inclusion is what will make us outstanding.

Inequality exists and the journey to eliminate it is not easy. Every step we take will be a purposeful step forward to deliver a truly inclusive culture where all our people are enabled to deliver outstanding care, where background is no barrier, and where everyone can be their authentic self and we truly represent our patient community.

We are committed to equal opportunities and welcome applications from all sections of the community, regardless of any protected characteristics. Reasonable adjustments will be made for disabled applicants where possible. All applicants who have a disability and meet the minimum criteria for the post can opt for a guaranteed interview.

If you need additional help with your application please get in touch by calling the recruitment team on 0118 322 6997 or 0118 322 5342.

Our primary method of communication will be via email. However, if you would prefer to be contacted through a different method, please inform the recruitment team.

Job description

Job responsibilities

PRINCIPAL RESPONSIBILITIESSupport the CISO in developing, implementing and monitoring a strategic, comprehensive cyber, enterprise information security, resilience, information governance and IT risk management strategy and plan.Provide expert cyber security advice to senior stakeholders and technical teams across the organisation.Work directly with key stakeholders to facilitate risk assessment and risk management processes. Collaborate with all departments within the Trust (and ICS) where necessary to identify and disseminate high-quality information that facilitates effective cyber and information security management and improvement. Use advanced analytic tools to determine emerging threat patterns and vulnerabilities. Scoping and delivery of penetration tests and ensure actions from vulnerability assessments are resolvedLead on audit and audit preparation relating to IT security Maintaining compliance with various standards in place e.g. Data Security and Protection Toolkit, CareCERT, Cyber Essentials+, Network and Information Systems Regulations etc.

Act as the Trusts advisor on cyber security protection, detection, response and recovery.Analyse complex data and oversee the production of detailed informationWork closely with the Emergency Preparedness, Resilience and Response teams to ensure that preparations include events relating to cyber security. Evaluate options and be able to persuade and influence others to ensure that risks in relation to cyber, resilience and information integrity and security are addressed appropriately.isk and benefit. Ensure that all local information and cyber security strategies and activities align with the national Plan. To assist with the development of disaster recovery and business continuity strategies for Trust digital services, wider stakeholders and partner organisations.

To perform security reviews, audits and risk assessment All activities will be conducted within the context of professional standards, including, but not limited to, PRINCE II and ITIL.This post requires continual upgrading of skills to reflect rapid changes in technology, the Trusts environment and the needs of the Trust. This is achieved through formal training; informal skills transfer and self-tuition.Business Change and Transformation

Person Specification

Qualifications

Essential
  • ITIL v3 Service Management Qualification
  • Educated to degree level or equivalent
  • Formal certification (ISACA: Certified Information Security Manager (CISM). CISSP, or CRISC) and/or formal training in information security standards and best practice (e.g.: ISO 27001/2, COBIT), or equivalent work experience demonstrating understanding of the same.

Experience

Essential
  • Extensive experience of developing and delivering an Information Security service to a large complex organisation using confidential and/or sensitive information
Desirable
  • IT experience gained in both and Acute and Community setting

Disclosure and Barring Service Check

This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.

Certificate of Sponsorship

Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website.

From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants.

Employer details

Employer name

Royal Berkshire NHS Foundation Trust

Address

Royal Berkshire Hospital

Princes House, London Road

Reading

RG1 5UZ

Employer's website

https://www.royalberkshire.nhs.uk/



Apply Now
Apply Now

Job Details

Company
Royal Berkshire NHS Foundation Trust
Location
Reading, RG1 5UZ, United Kingdom
Salary
£49387.00 to £56515.00
Posted