Job summary
The Royal Surrey County NHS Foundation Trust and are seeking to recruit an experienced Server Cyber Engineer.
The Server Cyber Engineer role is a new position created in the IT Team. The role requires a security specialist within the designated server specialism to help the Server/Datacentre Team and the Head of Cybersecurity to elevate security. This means improving security posture, reducing cyber risk, and improving security operations within the Server/Datacentre Team.
The role calls for a specialist security resource within IT and as such will have, or will develop, technical or specialist excellence across their designated discipline and services that fall under the responsibility of the server infrastructure team.
The role will often have opportunities to work on project work and the adoption of new technologies in line with business requirements.
The role also requires flexible working by the organisation, including early start times and late finishes as required, to maintain appropriate coverage from 8am until 5pm.
Main duties of the job
This is a hands-on role and some of the core activities will include:o Asset Management (Servers, Storage, Hypervisors, Systems, Services, Software etc)o Vulnerability Managemento Risk Managemento Patch Management (Windows and Linux Servers)o Security Controls identification and implementation (in conjunction with the Cyber Lead)o Incident Responseo Compliance (DSPT, CAF, etc)o Be a part of the IT/Cyber Engineering on-call rota
About us
Royal Surrey is a compassionate and collaborative acute and community Trust. Recognising that our 5000 colleagues are our greatest strength, we offer a comprehensive health and wellbeing program along with a commitment to developing and advancing your career. Our diverse and welcoming Royal Surrey family will ensure you that you feel valued from your initial interview through your entire tenure.
We are clinically led and provide joined up care by bridging the gap between hospital and community services alongside regional specialist cancer care. Our main acute hospital site is in Guildford with community hospital sites at Milford, Haslemere and Cranleigh. We provide adult community health services in homes across Guildford and Waverley.
The Care Quality Commission (CQC) have given us an overall rating of Outstanding.
Royal Surrey has a strong reputation and history to build on. We are proud of our achievements and we are investing in our colleagues through our commitment to supporting professional development as well as investing more than £45 million in our physical environment and new equipment in the next few years. There has never been a better time to join us.
Although it isn't the Trusts normal practice, adverts may close early, so you are encouraged to submit an application as soon as possible.
A video about the Royal Surrey - https://www.youtube.com/watch?v=R96pMboIYdo
Job description
Job responsibilities
Participate in a progressive cyber improvement programme.
Deliver services through a focus on proactive monitoring and methodical troubleshooting to resolve security issues and risks in line with business demands and requirements.
Bring a broad technical security understanding and specialism supporting the wider IT function.
Improve security within the Server and Datacentre specialism.
Contribute to the compliance and assurance obligations.
Populate the Information Security Management System (ISMS) Repository with important artefacts.
Help improve emergency resilience and response within the Server Team and wider IT Department
The Server Cyber Engineer role is a new position created in the IT Team. The role requires a security specialist within the designated server specialism to help the Server/Datacentre Team and the Head of Cybersecurity to elevate security. This means improving security posture, reducing cyber risk, and improving security operations within the Server/Datacentre Team.
Job description
Job responsibilities
Participate in a progressive cyber improvement programme.
Deliver services through a focus on proactive monitoring and methodical troubleshooting to resolve security issues and risks in line with business demands and requirements.
Bring a broad technical security understanding and specialism supporting the wider IT function.
Improve security within the Server and Datacentre specialism.
Contribute to the compliance and assurance obligations.
Populate the Information Security Management System (ISMS) Repository with important artefacts.
Help improve emergency resilience and response within the Server Team and wider IT Department
The Server Cyber Engineer role is a new position created in the IT Team. The role requires a security specialist within the designated server specialism to help the Server/Datacentre Team and the Head of Cybersecurity to elevate security. This means improving security posture, reducing cyber risk, and improving security operations within the Server/Datacentre Team.
Person Specification
Qualifications
Essential
- Educated to Masters level OR equivalent, specialist knowledge acquired through relevant experience.
- MCSE, or equivalent experience
- Dell Enterprise Storage Certification, or equivalent experience
- VMware VCP Certification, or equivalent experience
Desirable
- Azure Certification, or equivalent experience
- Linux Administration Certification
- Cyber Certification: A+ Security, SSCP, CISA, or equivalent experience
Knowledge
Essential
- Experience of working in an environment supporting 2000+ users and 2000+ devices across both wired and wireless networks
- Responsibility for the delivery of a security services within a technical environment
- Experience in cybersecurity, leading or active involvement in patch management, vulnerability management, endpoint detection and response, risk management, and security controls implementation.
- Strong interpersonal, reporting and communication skills
- Knowledge of IT concepts and systems
- Proven troubleshooting skills
- Experience of healthcare applications
- Experience of IT services
- Experience of liaising with clients, collating requirements and mapping them to business processes
- The ability to work with multiple stakeholders to develop project plans and work streams with them.
Desirable
- Understand the importance of data, data structures, confidentiality and the use of data
- Project and process management skills demonstrated through experience and/or education
- Experience in sourcing approaches and evaluations linked to business needs
Person Specification
Qualifications
Essential
- Educated to Masters level OR equivalent, specialist knowledge acquired through relevant experience.
- MCSE, or equivalent experience
- Dell Enterprise Storage Certification, or equivalent experience
- VMware VCP Certification, or equivalent experience
Desirable
- Azure Certification, or equivalent experience
- Linux Administration Certification
- Cyber Certification: A+ Security, SSCP, CISA, or equivalent experience
Knowledge
Essential
- Experience of working in an environment supporting 2000+ users and 2000+ devices across both wired and wireless networks
- Responsibility for the delivery of a security services within a technical environment
- Experience in cybersecurity, leading or active involvement in patch management, vulnerability management, endpoint detection and response, risk management, and security controls implementation.
- Strong interpersonal, reporting and communication skills
- Knowledge of IT concepts and systems
- Proven troubleshooting skills
- Experience of healthcare applications
- Experience of IT services
- Experience of liaising with clients, collating requirements and mapping them to business processes
- The ability to work with multiple stakeholders to develop project plans and work streams with them.
Desirable
- Understand the importance of data, data structures, confidentiality and the use of data
- Project and process management skills demonstrated through experience and/or education
- Experience in sourcing approaches and evaluations linked to business needs
Disclosure and Barring Service Check
This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.
