Job summary
The successful candidate will have the opportunity to use their proven existing, and develop new skills and knowledge, and to be a part of many exciting and challenging projects currently being undertaken at the Trust as part of our Digital Transformation agenda and contribute to the progression of the Cyber Security Strategy within The Shrewsbury and Telford Hospital NHS Trust.
The post holder will work as part of the Cyber Security Team in protecting the Trusts digital assets, data and information in accordance with policies and procedures. The post holder will be required to bring their specialist skills and knowledge to enable them to engage all users within the Trust and interested parties that deal with the Trust including suppliers, digital service providers and regulators. In a fast changing and evolving lT security landscape the Cyber Security Engineer will need to keep abreast of threats, vulnerabilities trends, technologies and ensure their skill set is appropriate and up to date, and participate in the Cyber Security Team on call rota.
Main duties of the job
- To act as the key contact and responsible person for ensuring all networked devices are compliant, reporting non-compliance appropriately.
- Participate in an out of hours on-call Cyber Security rotaThrough proven experience and knowledge in IT infrastructure build, configuration, maintenance, and diagnostic resolution, identify and recommend remediations for systems.
- Contribute to the meeting of and implementation of NHS Digital / England's Cyber standards including the Data Protection Toolkit.
- To participate in systems monitoring and incident reporting, analysis and remediation of cyber threats to the organisation.
- To work with third party companies that the Trust utilises for penetration / security health tests and external auditing companies.
- To assist and contribute towards the development of Trust cyber awareness and training in conjunction with the IT training function.
- To liaise with other IT disciplines and managers i.e. development, infrastructure, support, project and training functions identifying the security threats and vulnerabilities to these disciplines and the wider.
- To develop expert knowledge in the use of cyber related technologies used by the Trust.
About us
Working with the whole IT Team, the post holder will be required to contribute to the planning, implementation and review of cyber security tasks and projects liaising with the wider IT organisation as appropriate.
You will work closely with all stakeholders and provide a robust, proactive and resilient service on which our customers can rely upon.
Job description
Job responsibilities
For full duties and responsibilities please refer to the attached document entitled Job Description.
Job description
Job responsibilities
For full duties and responsibilities please refer to the attached document entitled Job Description.
Person Specification
Skills & Knowledge
Essential
- Excellent attention to detail and high level of accuracy
- Excellent verbal and written communication skills
- Proven skill in problem solving and diagnostics through to resolution
- Ability to understand and interpret applicable legislation (e.g. Data Protection Act, GDPR, NIS)
- Familiarity with current computing technologies
- Knowledge of the Data Protection and Security Toolkit
- Knowledge of common cyber security related toolsets
Desirable
- Basic Project Management Skills
- Good understanding of NHS working practices and standards
Experience
Essential
- Experience of working in an ITIL Environment
- Experience of managing Information/cyber security applications and risks in a related area either in NHS, service industries or commerce
- Experience of working in a large organisation supporting a large estate of end-point devices
- Significant, proven experience of infrastructure configuration, build, maintenance, diagnostic, resolution
- Proven experience of working on remediation plans as an output of an audit or penetration test
- Proven experience in responding to high severity threat alerts in agreed timescales
- Proven experience of involvement in recovery from cyber security incidents
Desirable
- Proven relevant practical knowledge and experience of working within a Cyber Security Team
- Experience of report writing
- Experience of supporting IT technologies in a clinical setting
- Experience of working with internal and external auditors
Qualifications
Essential
- Educated to Degree level or equivalent standard / experience
Desirable
- Professional Cyber Security related qualifications e.g. SSCP, CISSP
- Profession IT Infrastructure Certifications
Person Specification
Skills & Knowledge
Essential
- Excellent attention to detail and high level of accuracy
- Excellent verbal and written communication skills
- Proven skill in problem solving and diagnostics through to resolution
- Ability to understand and interpret applicable legislation (e.g. Data Protection Act, GDPR, NIS)
- Familiarity with current computing technologies
- Knowledge of the Data Protection and Security Toolkit
- Knowledge of common cyber security related toolsets
Desirable
- Basic Project Management Skills
- Good understanding of NHS working practices and standards
Experience
Essential
- Experience of working in an ITIL Environment
- Experience of managing Information/cyber security applications and risks in a related area either in NHS, service industries or commerce
- Experience of working in a large organisation supporting a large estate of end-point devices
- Significant, proven experience of infrastructure configuration, build, maintenance, diagnostic, resolution
- Proven experience of working on remediation plans as an output of an audit or penetration test
- Proven experience in responding to high severity threat alerts in agreed timescales
- Proven experience of involvement in recovery from cyber security incidents
Desirable
- Proven relevant practical knowledge and experience of working within a Cyber Security Team
- Experience of report writing
- Experience of supporting IT technologies in a clinical setting
- Experience of working with internal and external auditors
Qualifications
Essential
- Educated to Degree level or equivalent standard / experience
Desirable
- Professional Cyber Security related qualifications e.g. SSCP, CISSP
- Profession IT Infrastructure Certifications
Disclosure and Barring Service Check
This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.
Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab).
From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab).
Additional information
Disclosure and Barring Service Check
This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.
Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab).
From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab).
