Job Description
We have a fantastic opportunity for someone with a deep understanding of information technology and cyber security to come in and steer our new function as Head of Information Security.
The salary on offer starts at £100,000+, with up to 10% annual bonus, up to 6% matched pension and 27 days annual leave. We will be accepting candidates nationally as this role can be remote to suit your personal needs.
About the role:
This position has been newly created to head up a new, innovative function which will establish and lead the Digital and Data Information Security function (including cyber security) to ensure that information assets and associated technology and processes are adequately protected in the digital ecosystem in which we operate. This new role will be responsible for developing and implementing procedures and policies designed to protect enterprise communications, systems and assets from both internal and external threats.
You will be expected to set direction and clarify priorities and goals for functional areas whilst creating and delivering inclusive People plans to enable high performance and functional resilience including colleague wellbeing.
You will report directly to the CIO and be required to regularly update board members and therefore be a key part of the senior leadership team and act as deputy SIRO. Your remit as an NHSPS leader extends beyond functional and you will be expected to fulfil a wider leadership role across the organisation, where the development and identification for future executive directors begins.
Functional elements of the role include:
- Working alongside key stakeholders determine acceptable levels of risk for the organisation and be able to articulate the impact of cybersecurity on (digital) business and be able to communicate this to senior stakeholders.
- Liaising with external agencies, such as National Cyber Security Centre and NHS Digital and other advisory bodies, as necessary, to ensure that the organisation maintains a strong security posture and is kept well-abreast of the relevant threats identified.
- Working with peers across Technology Services and the business to ensure effective disaster recovery policies and standards, incident management procedures are in place and align with business continuity management goals and will ensure recovery in event of a security event
- Attending monthly in-person SLT meetings (occasional travel is required)
Key experience and knowledge to help succeed in this role:
- Leading of management teams in a complex environment
- Multi-sector experience and breadth
- Experience of delivering a significant change project
- Track record of success in leading business operations at different stages of the business lifecycle
- Demonstrated experience and success in senior leadership roles in risk management, information security, and IT security
- knowledgeable on legal, regulatory and obligations such as GDPR, NHS DSP Toolkit
- Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework, Cyber Essentials Plus
- Cyber Security configuration for Azure / Office 365
As well as a competitive salary and benefits, we have a smarter working policy, which allows us to support you, wherever possible, so that you don’t miss out on what truly matters to you.
If you do ever need a little bit of extra help we have a great employee assistance programme, financial well-being support and access to great discounts with leading high street names with the bluelight discount card.
Our range of network groups are also there to support you to truly be yourself at work and play a key role in helping shape our future. We ‘hire for attitude and train for skills’ providing opportunities for our people to develop & progress their careers at all levels through our Professional Excellence Framework.
Who are we?
We are part of the NHS family with 6,000 professionals supporting over 3,000 healthcare properties across England. Our purpose is to enable excellent patient care by being the best property and facilities provider to the NHS.
Our services include estate strategy and optimisation, property management, facilities management, property development and construction project management. We help support millions of patients and NHS colleagues in collaboration without 7,000 customers who range from Integrated Care Systems, health providers, charities and more.
Our culture and values seek to place our NHS colleagues and their patients, at the heart of everything we do.
We celebrate diversity, and we are working hard to create an inclusive environment where people love to work and can fulfil their potential.