Isle of Wight NHS Trust

Technical Services Security Supervisor

The closing date is 07 July 2025

Apply for this job

Job summary

Location: Across sites, both Isle of Wight NHS Trust and Portsmouth Hospitals University NHS Trust (frequency of visits to each site, to be agreed locally)

Salary: Band7 (£46,148 to £52,809)

Hours: 37.5 hours per week (Full time)

Contract Type: Permanent

An opportunity has arisen for the full time post of Technical Service Security Supervisor to lead our Cyber Security Team for Isle of Wight and Portsmouth Hospitals University NHS Trusts, as part of our Single Corporate and Digital Services. The post holder will work from our offices in Portsmouth and Isle of Wight and up to two days a week from home.

As team leader for the Cyber Security Team, the post holder will manage a team of three Security Specialists and one Security Architect, to ensure we maintain the highest levels of security compliance to maintain the confidentiality, integrity and availability of our corporate and clinical digital systems. The Technical Security Supervisor will report to the Technical Service Manager, but will work across Digital and closely with colleagues across our Corporate Services and our clinical divisions.

Isle of Wight and Portsmouth Hospitals NHS Trust Digital Team support some 13,500 users and a combined patient population of 820,000.

Main duties of the job

Communication and Working Relationships

  • The role requires well developed communications and relationship management skills. Promote effective communication and networking with multi-disciplinary and multi-agency teams to ensure information security risks are well understood and managed, while developing a shared understanding of the pressures and priorities of partner organisations
  • The post holder will provide face to face, written, verbal and electronic communications to a range of The Trusts managers and senior managers.

Analytical and Judgement

  • Identify and analyses information security risks within new and changed IT Infrastructure components.
  • Investigate highly complex information security issues such as related to breaches of security, identify of architectural security solutions to resolve including resource requirements from within Digital and Information Governance.

Planning and organising

  • The post holder is required to plan and organise broad range of complex activities; formulates, adjusts plans or strategies Plans projects which impact across the department & organisation, delivery of Digital services for own area, contributes to medium term Digital strategy.

Patient Client Care

  • The post holder will have occasional contact with patients and carers in a wide variety of situations (including mental health) during the course of their duties.
  • They will Assist patients /clients during incidental contacts.

About us

Our vision for Single Corporate Services Isle of Wight NHS Trust (IWT) and Portsmouth Hospitals University NHS Trust (PHU) have a shared vision of a single corporate service across our two organisations, supported by a single set of identical systems and processes, under joint leadership, to drive significant efficiencies, improve employee experience, and return time to patient care.

Why are we changing the way we deliver Corporate Services?Working as a partnership, both IWT and PHU have a shared vision for excellence in care for our patients and communities; with a set of strategic aims underpinning how we will achieve this. The creation of a single corporate service is essential for us to support our clinical and operational services, and our wider transformation programme.

The single corporate service is delivered across both organisation. For leaders managing staff across multi-site locations, you will need to be visible and provide in person leadership. The arrangements and frequency will be agreed locally.

Details

Date posted

20 June 2025

Pay scheme

Agenda for change

Band

Band 7

Salary

£46,148 to £52,809 a year

Contract

Permanent

Working pattern

Full-time

Reference number

REF1537V

Job locations

Queen Alexandra Hospital

Southwick Hill Road

Cosham

Portsmouth

PO6 3LY


St Mary's Hospital

Parkhurst Road

Newport

Isle of Wight

PO30 5TG


Job description

Job responsibilities

The Technical Security Supervisor will lead the Digital Cyber Security Team, helping to ensure the Confidentiality, Integrity and Availability of our infrastructure, systems and applications in line with established best practice, NCSC Cyber Assessment Framework, Data Security and Protection Toolkits and the Group Cyber Security Strategy.

Team Management

  • The postholder will report to the Technical Services Manager and is responsible for the management and day to day operation of the Cyber Security Team. Ensuring that tasks are appropriately prioritised and scheduled, skills appropriately utilised, procedures documented and followed, adequate coverage for absence and Out-of-Hours support is in place, and consistent, up-to-date documentation is established and maintained.
  • Provide the immediate line management for the Security Specialists and Information Security Architect within the Technical Security Team.
  • Monitor security standards for the Technical Services team, monitoring achievement against these, and devising improved ways of working, working with the Technical Services Manager.
  • As a team leader, take a lead role in the daily scrums held within the team to ensure the team collaboration and focus is aligned to the business outcomes.

System Design & Hosting

  • Secure System Architecture: Working alongside the Digital Security Architect to design and implement robust security architectures for IT solutions, ensuring the integration of security principles such as least privilege, defence in depth, and secure by design throughout the IT solutions lifecycle.

  • Access Control Management: Develop and enforce access control policies, ensuring that only authorized personnel have access to sensitive systems and data, using multi-factor authentication, role-based access, and other security mechanisms.

Software and Hardware Installation

  • Secure Configuration and Hardening: Ensure that all software and hardware installations follow secure configuration guidelines and hardening practices to minimize vulnerabilities and reduce the attack surface.
  • Patch Management: Oversee the timely installation of security patches and updates for both software and hardware across the entire IT landscape & two hospitals, ensuring that systems are protected against known threats and vulnerabilities.
  • Malware Protection: Implement and configure antivirus, anti-malware, and intrusion detection/prevention systems during installation to safeguard against malicious software and unauthorized access.

Infrastructure Developments/Innovation

  • Secure Infrastructure Design: Working with the Digital Security Architect to support the development of secure infrastructure solutions, incorporating advanced security measures and best practices into the planning, design, and implementation of new technologies.
  • Emerging Threat Mitigation: Proactively identify and address emerging security threats and vulnerabilities, adapting infrastructure developments to stay ahead of potential risks and ensure ongoing protection.

Job description

Job responsibilities

The Technical Security Supervisor will lead the Digital Cyber Security Team, helping to ensure the Confidentiality, Integrity and Availability of our infrastructure, systems and applications in line with established best practice, NCSC Cyber Assessment Framework, Data Security and Protection Toolkits and the Group Cyber Security Strategy.

Team Management

  • The postholder will report to the Technical Services Manager and is responsible for the management and day to day operation of the Cyber Security Team. Ensuring that tasks are appropriately prioritised and scheduled, skills appropriately utilised, procedures documented and followed, adequate coverage for absence and Out-of-Hours support is in place, and consistent, up-to-date documentation is established and maintained.
  • Provide the immediate line management for the Security Specialists and Information Security Architect within the Technical Security Team.
  • Monitor security standards for the Technical Services team, monitoring achievement against these, and devising improved ways of working, working with the Technical Services Manager.
  • As a team leader, take a lead role in the daily scrums held within the team to ensure the team collaboration and focus is aligned to the business outcomes.

System Design & Hosting

  • Secure System Architecture: Working alongside the Digital Security Architect to design and implement robust security architectures for IT solutions, ensuring the integration of security principles such as least privilege, defence in depth, and secure by design throughout the IT solutions lifecycle.

  • Access Control Management: Develop and enforce access control policies, ensuring that only authorized personnel have access to sensitive systems and data, using multi-factor authentication, role-based access, and other security mechanisms.

Software and Hardware Installation

  • Secure Configuration and Hardening: Ensure that all software and hardware installations follow secure configuration guidelines and hardening practices to minimize vulnerabilities and reduce the attack surface.
  • Patch Management: Oversee the timely installation of security patches and updates for both software and hardware across the entire IT landscape & two hospitals, ensuring that systems are protected against known threats and vulnerabilities.
  • Malware Protection: Implement and configure antivirus, anti-malware, and intrusion detection/prevention systems during installation to safeguard against malicious software and unauthorized access.

Infrastructure Developments/Innovation

  • Secure Infrastructure Design: Working with the Digital Security Architect to support the development of secure infrastructure solutions, incorporating advanced security measures and best practices into the planning, design, and implementation of new technologies.
  • Emerging Threat Mitigation: Proactively identify and address emerging security threats and vulnerabilities, adapting infrastructure developments to stay ahead of potential risks and ensure ongoing protection.

Person Specification

Knowledge

Essential

  • Demonstrable in depth understanding of current NHS standards and policies relating to security.
  • Ability to manage multiple complex projects to a successful conclusion, using structured methodologies.
  • Substantial knowledge of Change Management processes and techniques.
  • Working to IT service management best practice.
  • Ability to forge long-term working partnerships with individuals and groups from internal and external departments and organisations.
  • Ability to write clear concise reports, letters, minutes and documents using a good standard of English.
  • Excellent organisational, problem solving, communication and analytical skills.
  • The ability to tackle highly complex issues and resolve them to the benefit of the service.
  • The ability to remain current with emerging technologies.
  • Sensible negotiator with practical expectation of what can be achieved.

Qualifications

Essential

  • ITIL v3 Foundation
  • Degree-level Qualification or equivalent in a Computing or analytical field
  • Technical Accreditation in one or more of the following: -
  • oMicrosoft MCP/MCSA/MCSE
  • oCisco CCNA
  • oCompTIA Security+
  • oCertified Ethical Hacker (CEH)

Desirable

  • ISO27001
  • CISSP

Experience

Essential

  • Broad practical experience and Hands-on technical experience in the majority of the following:
  • oMicrosoft Windows and BackOffice Servers (SQL Server, Exchange)
  • oApp-V or alternate Application Virtualisation solution
  • oCitrix XenApp
  • oCisco Switches and ASA and general networking
  • oSAN technologies (Block and File)
  • oAppSenseoVMware/Server Virtualisation
  • oSecurity Event Monitoring/Aggregation
  • oEvent Monitoring solutions (e.g. Solarwinds/Zabbix or similar)
Person Specification

Knowledge

Essential

  • Demonstrable in depth understanding of current NHS standards and policies relating to security.
  • Ability to manage multiple complex projects to a successful conclusion, using structured methodologies.
  • Substantial knowledge of Change Management processes and techniques.
  • Working to IT service management best practice.
  • Ability to forge long-term working partnerships with individuals and groups from internal and external departments and organisations.
  • Ability to write clear concise reports, letters, minutes and documents using a good standard of English.
  • Excellent organisational, problem solving, communication and analytical skills.
  • The ability to tackle highly complex issues and resolve them to the benefit of the service.
  • The ability to remain current with emerging technologies.
  • Sensible negotiator with practical expectation of what can be achieved.

Qualifications

Essential

  • ITIL v3 Foundation
  • Degree-level Qualification or equivalent in a Computing or analytical field
  • Technical Accreditation in one or more of the following: -
  • oMicrosoft MCP/MCSA/MCSE
  • oCisco CCNA
  • oCompTIA Security+
  • oCertified Ethical Hacker (CEH)

Desirable

  • ISO27001
  • CISSP

Experience

Essential

  • Broad practical experience and Hands-on technical experience in the majority of the following:
  • oMicrosoft Windows and BackOffice Servers (SQL Server, Exchange)
  • oApp-V or alternate Application Virtualisation solution
  • oCitrix XenApp
  • oCisco Switches and ASA and general networking
  • oSAN technologies (Block and File)
  • oAppSenseoVMware/Server Virtualisation
  • oSecurity Event Monitoring/Aggregation
  • oEvent Monitoring solutions (e.g. Solarwinds/Zabbix or similar)

Employer details

Employer name

Isle of Wight NHS Trust

Address

Queen Alexandra Hospital

Southwick Hill Road

Cosham

Portsmouth

PO6 3LY


Employer's website

https://www.iow.nhs.uk/ (Opens in a new tab)

Employer details

Employer name

Isle of Wight NHS Trust

Address

Queen Alexandra Hospital

Southwick Hill Road

Cosham

Portsmouth

PO6 3LY


Employer's website

https://www.iow.nhs.uk/ (Opens in a new tab)

Employer contact details

For questions about the job, contact:

Technical Delivery Manager

Andrew Fortune

andy.fortune2@nhs.net

Details

Date posted

20 June 2025

Pay scheme

Agenda for change

Band

Band 7

Salary

£46,148 to £52,809 a year

Contract

Permanent

Working pattern

Full-time

Reference number

REF1537V

Job locations

Queen Alexandra Hospital

Southwick Hill Road

Cosham

Portsmouth

PO6 3LY


St Mary's Hospital

Parkhurst Road

Newport

Isle of Wight

PO30 5TG


Supporting documents

Privacy notice

Isle of Wight NHS Trust's privacy notice (opens in a new tab)