Cyber Security Specialist

Job Summary

Are you passionate about cyber security and an experienced people manager looking to make a difference with your skills and influence?

We are looking for a Cyber Security Team Leader to join our DDAT team. This is a unique opportunity to support our people to ensure the security of our network infrastructure and information systems, while enabling open and modern secure digital services.

As Team Leader, you will lead a team to support the NHSBSA business areas to understand and shape security requirements whilst driving staff development and career progression. Leading on key people processes such as one-to-ones and performance reviews, while maintaining a strong focus on colleague wellbeing.

You will be an active member of the DDAT department based in Newcastle, on a hybrid working model where we all come together for 1 or 2 days per week. This is an exciting opportunity for someone who can enthuse a team and support them to rationalise highly complex technical information transforming it into understandable content for others to work with.

What do we offer?

• 27 days leave (increasing with length of service) plus 8 bank holidays
• Flexible working (we are happy to discuss options such as compressed hours)
• Flexi time
• Hybrid working model (we are currently working largely remotely)
• Career development
• Active wellbeing and inclusion networks
• Excellent pension (23.7% employer contribution)
• NHS Car lease scheme
• Access to a wide range of benefits and high street discounts!

Main Duties of the Job

As a Cyber Security Team Leader, your main responsibilities will include (but not limited to):

• The management of day-to-day activities and general management of the security operations team including development, recruitment, performance management and pastoral care.
• Supporting the outputs of the Cyber Security Improvement Programme.
• Ensuring appropriate access control and monitoring on NHS BSA IT systems.
• Actively monitoring and undertaking activities that mitigate threats to the integrity of the NHS BSA's Information Assets.
• Supporting the team to perform forensically sound acquisitions of computer systems and associated media.
• Supporting the management of the ICT security incident process.
• Carrying out reviews, internal audits and spot-checks to ensure the effective operation of security monitoring and alerting.
• Providing expert help and guidance across the lifecycle of a security solution implementation.

About Us

Here at the NHS Business Services Authority (NHSBSA), what we do matters.

We manage the NHS Pension scheme, process prescription payments and much more. Our services are used by NHS organisations, contractors and the public: we take pride in being part of something so meaningful, that touches millions of lives.

Just as we design our services around the needs of our customers, we place our people at the heart of our organisation. That's why when you join us, you'll be empowered and given the right support to help your career grow.

As one of the UK's Best Big Companies to work for, we're all connected to our values: Collaborative, Adventurous, Reliable and Energetic. We care about our people, our purpose, and your progress.

We strive to offer a fantastic colleague experience, where every voice is heard, and every colleague is supported and respected. Wellbeing, diversity and inclusion is at the centre of this, so when you join us, you can connect with our Lived Experience Networks who help us to bring our authentic selves to work.

We welcome applications from people of all backgrounds and circumstances. We are committed and proud to be a flexible employer and will endeavour to offer a working pattern that suits you wherever possible, whether that be hybrid working, flexible hours, job sharing and more.

Ready to join us on our journey to be a catalyst for better health? Apply today and see where the NHSBSA can take you.

Job Responsibilities

In this role, you are accountable for:

Security Operations

1. To ensure appropriate access control and monitoring on NHS BSA IT systems is maintained.
2. Actively monitor and undertake activities that mitigate threats to the integrity of the NHS BSA's Information Assets.
3. Ensure that all controls are in place to ensure continued certification to the Information Security Management Standard ISO27001.
4. When required, conduct forensically sound acquisitions of computer systems and associated media.
5. Support the management of the ICT security incident process.
6. Carry out reviews, internal audits and spot-checks to ensure effective operation of security monitoring.
7. Provide expert help and guidance across the lifecycle of a security solution implementation.

Knowledge Management

1. Maintain detailed technical knowledge of IT Security products, systems, policies and procedures used within the NHS BSA.
2. Keep abreast of technological advances and maintain an excellent understanding of the use of technology in delivering business objectives.

Relationship Management

1. Work across/within different programmes as needed and translate business security requirements into IT services and solutions.
2. Work with NHSBSA staff and Third Parties to ensure that security standards, governance and processes are in place.

Delivery Management

1. Carry out Information Risk Assessments and produce comprehensive Risk Assessment Documentation.
2. Acts as an SME and recognised point of contact for advising on queries.

People Management

1. The management of day-to-day activities and general management of colleagues.
2. Enabling the performance of others, including objectives setting fully aligned to departmental and organisational objectives.

In addition to the above accountabilities, as post holder you are expected to:

1. Undertake additional duties and responsibilities as agreed by your line manager.
2. Demonstrate NHSBSA values and core capabilities in all aspects of your work.
3. Encourage an environment where your own and colleagues safety and well-being is promoted.
4. Contribute to a culture which values diversity and inclusion.

Person Specification

Personal Qualities, Knowledge and Skills

Essential

• Developing, implementing and maintaining effective control monitoring activities.
• Extensive experience of managing security technologies.
• Designing and recommending appropriate controls to achieve Cyber security and business goals.
• Evaluation of threat intelligence data to inform decision making.
• A range of skills across a diverse and detailed technical knowledge.
• Interest in information security and keeping up-to-date with the latest news.
• Knowledge of risk management techniques.

Qualifications

Essential

• Degree calibre or demonstrable experience in an Information Technology related field.
• ICT qualification OR recent ICT experience.
• Other professionally recognised ICT/ Security certification.

Desirable

• IT Security Officer / IA Technical Architect at CCP associate or practitioner level.
• ITIL foundation.
• Project Management Foundation (Prince 2).
• A Professional Certification or qualification in Information Security.

Experience

Essential

• Recent security or support experience.
• Experience of working as part of a team to provide a service to customers.
• Experience with software and security architectures.

Desirable

• Cloud Security & monitoring.
• Development of a security architecture design.

Employer Details

Employer Name

NHS Business Services Authority
Address

Stella House
Goldcrest Way
Newcastle upon Tyne
NE15 8NY
Employer's Website