Job summary
A challenging new role has arisen in IT Service Management for a Cyber Security Analyst to join a growing team responsible forcontinuously assessing and monitoring the security of Trust IT infrastructure, including firewalls, network switches, servers, VM environments, client machines and cloud services. This technical role will require the successful candidate to
- Interview date: 02 September 2022
- 37 hours 30 minutes/week
- You will be redirected to Trac to apply for the vacancy. Please expand the job details section and read all of the information before applying for the vacancy.
Please note it is a requirement of The Newcastle upon Tyne Hospitals NHS Foundation Trust that all successful candidates who require a DBS for the post they have been offered pay for their DBS certificate.The method of payment is a salary deduction from your first month's pay.
Newcastle Hospitals encourages all staff and volunteers who are appointed to join the Trust to be fully vaccinated against COVID-19
Main duties of the job
This technical role will require the successful candidate to
- Continuously assessing and monitoring the security of Trust IT infrastructure, including firewalls, network switches, servers, VM environments, client machines and cloud services.
- Monitor and respond to systems and infrastructure alerts and scheduled system reports
- Provide technical security support and training to users, this could be educating users on how to spot a phishing email or explaining the importance of using multi factor authentication
- Assist with IT audits
- Investigate and resolve complex information queries and issues such as breaches of security and confidentiality. Implement security controls and respond to security incidents
- To develop, maintain and implement IT Security operational procedures and policies to enable consistent service delivery to all areas of the Trust
- Produce a monthly cyber security report of KPI's to be made available to the CIO and wider Trust
- Support the development and improvement of Cyber Security processes
- Reduce threats and outages by identifying weaknesses in Cyber Security and lead activities to resolve them
- Proactively assess and maintain the security of IT infrastructure to identify and mitigate security risks and issues
About us
Newcastle Hospitals NHS Foundation Trust is one of the busiest, largest and most successful teaching NHS foundation trusts in the country, with over 18,000 staff and an annual income of £1 billion.
Rated 'Outstanding' by theCQC for the second consecutive time in 2019, we have a long history of providing high quality care, clinical excellence, and innovation in medical research regionally, nationally and internationally.
We're also proud to be the second largest provider of specialised services in the country. This means we support people with a range of rare and complex medical, surgical and neurological conditions, cancers and genetic orders.
Our staff oversee around 1.84 million patients 'contacts' each year, delivering high standards of healthcare.
We are committed to promoting equality and diversity and recognise the benefit in providing an inclusive environment. We value and respect the diversity of our employees and aim to recruit a workforce which reflects the communities we serve, and is equipped to deliver the best service to our patients. We welcome all applications irrespective of people's race, disability, gender, sexual orientation, religion or belief, age, gender identity, marriage and civil partnership, pregnancy and maternity and in particular those from under- represented groups.
Job description
Job responsibilities
- Continuously assess and monitor the security of IT infrastructure, including firewalls, network switches, servers, VM environments, client machines and cloud services
- Monitor and respond to systems and infrastructure alerts and scheduled system reports
- Provide technical security support and training to users, this could be educating users on how to spot a phishing email or explaining the importance of using multi factor authentication
- Assist with IT audits
- Investigate and resolve complex information queries and issues such as breaches of security and confidentiality. Implement security controls and respond to security incidents
- To develop, maintain and implement IT Security operational procedures and policies to enable consistent service delivery to all areas of the Trust
- Produce a monthly cyber security report of KPIs to be made available to the CIO and wider Trust
Job description
Job responsibilities
- Continuously assess and monitor the security of IT infrastructure, including firewalls, network switches, servers, VM environments, client machines and cloud services
- Monitor and respond to systems and infrastructure alerts and scheduled system reports
- Provide technical security support and training to users, this could be educating users on how to spot a phishing email or explaining the importance of using multi factor authentication
- Assist with IT audits
- Investigate and resolve complex information queries and issues such as breaches of security and confidentiality. Implement security controls and respond to security incidents
- To develop, maintain and implement IT Security operational procedures and policies to enable consistent service delivery to all areas of the Trust
- Produce a monthly cyber security report of KPIs to be made available to the CIO and wider Trust
Person Specification
Qualifications & Education
Essential
- Be educated to degree level or have equivalent relevant management and technical experience plus experience in a supervisor or management role.
- A portfolio of practical experience in Cyber Security
Desirable
- Experience of ITIL service management
- Project management skills
- CISSP or related Certification
Knowledge & Experience
Essential
- Broad based technical knowledge covering all aspects of infrastructure from networking, end user devices through to servers and data centres
- Understanding of Information Security principles
- Knowledge of the Data Protection Act
Desirable
- Strong interpersonal and influencing skills
- Strong presentation skills
- Strong analytical skills are required to interpret, analyse and present highly complex multi stranded information of varying quality from a number of diverse sources.
- Experience of producing business cases and executive papers
- Good stakeholder management
- Report writing
Skills & Abilities
Essential
- Ability to communicate highly complex issues to a wide range of non-technical end users from multiple backgrounds and organisations, including "difficult" users
- Must have excellent documentation writing skills to create and develop processes and procedures relating to the services delivered by the Infrastructure teams
- Excellent interpersonal skills, building effective professional relationships with end users, departmental system administrators and departmental managers
- Ability to perform as an effective team player, and on own initiative
- Establish and maintain informal internal or external relationships to gain knowledge that can be adopted and adapted to the improvement the IT department
Desirable
- Ability to communicate effectively with 3rd party vendors such as Large Account Resellers (LAR's), staff and technical staff from other NHS organisations including NHS Digital, NSCS and Information Governance
Person Specification
Qualifications & Education
Essential
- Be educated to degree level or have equivalent relevant management and technical experience plus experience in a supervisor or management role.
- A portfolio of practical experience in Cyber Security
Desirable
- Experience of ITIL service management
- Project management skills
- CISSP or related Certification
Knowledge & Experience
Essential
- Broad based technical knowledge covering all aspects of infrastructure from networking, end user devices through to servers and data centres
- Understanding of Information Security principles
- Knowledge of the Data Protection Act
Desirable
- Strong interpersonal and influencing skills
- Strong presentation skills
- Strong analytical skills are required to interpret, analyse and present highly complex multi stranded information of varying quality from a number of diverse sources.
- Experience of producing business cases and executive papers
- Good stakeholder management
- Report writing
Skills & Abilities
Essential
- Ability to communicate highly complex issues to a wide range of non-technical end users from multiple backgrounds and organisations, including "difficult" users
- Must have excellent documentation writing skills to create and develop processes and procedures relating to the services delivered by the Infrastructure teams
- Excellent interpersonal skills, building effective professional relationships with end users, departmental system administrators and departmental managers
- Ability to perform as an effective team player, and on own initiative
- Establish and maintain informal internal or external relationships to gain knowledge that can be adopted and adapted to the improvement the IT department
Desirable
- Ability to communicate effectively with 3rd party vendors such as Large Account Resellers (LAR's), staff and technical staff from other NHS organisations including NHS Digital, NSCS and Information Governance
Additional information
Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab).
From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab).
