Cyber Security Analyst - Bicester | South Central Ambulance Service NHS Foundation Trust
| Dyddiad hysbysebu: | 23 May 2024 |
|---|---|
| Cyflog: | Heb ei nodi |
| Gwybodaeth ychwanegol am y cyflog: | £43,742 - £50,056 pa pro rata per annum |
| Oriau: | Part time |
| Dyddiad cau: | 22 June 2024 |
| Lleoliad: | Bicester, OX26 6HR |
| Cwmni: | South Central Ambulance Service NHS Foundation Trust |
| Math o swydd: | Permanent |
| Cyfeirnod swydd: | 6075121/195-24-088-TAM |
Crynodeb
We have an exciting opportunity to work in an evolving and busy Information Security and Governance team, working closely with our Digital Colleagues.
This role plays an important part in supporting front line NHS staff such as Paramedics, 999 and 111 call takers, Patient transport services, as well as to our corporate enablers such as finance, estates and HR. No two days are the same, but you will be part of a vital organisation helping to save lives, covering a wide area with a population of 7 million from Oxfordshire, Buckinghamshire, Berkshire to Hampshire.
We also cover Sussex for Patient Transport Services. The role will also work alongside technical specialists and third-party services including NCSC and NHS England's CareCERT service, drawing on their skills and knowledge to provide a cohesive support service and to help deliver the future Digital roadmap to this respected NHS Ambulance Service.
If you have a good work ethic, are a great team worker, flexible and innovative, can think outside the box, are prepared to bring solutions to problems and have a background in Cyber Security, then we'd love to hear from you!
To support the Head of Information Security and Governance in the delivery of the Information Security and Governance (ISG) activities of the Trust providing assurance that the security, confidentiality and integrity of systems and data is maintained.
Support the delivery of projects to achieve both CareCERT, Cyber Essentials and the Digital Security and Protection Toolkit (DSPT) accreditation for the Trust and implement processes that assure ongoing maintenance of this accreditation & provide support in the day-to-day management of information security and governance service provision to all users ensuring the Trust’s compliance with the Data Protection Act 1998, Access to Health Records Act 1990, Freedom of Information Act and those regulations that supersede or supplement these from time to time.
Interpret complex legislation or regulations related to information governance and information security such as ISO/IEC 27001, the Data Protection Act 1998, NHS Information Risk Management, Computer Misuse Act, implementing and enforcing suitable and relevant information security policies and procedures across the Trust.
The role will include supporting the implementation and development of systems, policies and procedures which comply with ISO/IEC 27001, NHS England, CareCERT guidance, Cyber Essentials, DSPT, NHS Information Risk Management and other relevant guidance.
Please see attached the Job Description
Benefits we offer:
• Full training and support when you join and ongoing throughout your employment with us.
• Holiday entitlement is 27 days rising to 29 days after 5 years and 33 days after 10 years, plus 8 bank holidays (pro rata for part time).
• Enrolment into the NHS Pension Scheme.
• Access to continual professional development and opportunities within SCAS and the NHS.
• Occupational Health support along with an Employee Assistance Programme.
• NHS Discounts in over 200+ stores including Holidays, Days out, Car insurance, Restaurants and Clothing.
• Staff networking and support groups.
About Us
South Central Ambulance Service NHS Foundation Trust provides a range of emergency, urgent care and non-emergency healthcare services, along with commercial logistics services.
The Trust delivers most of these services to the populations of Berkshire, Buckinghamshire, Hampshire and Oxfordshire as well as non-emergency patient transport services in Sussex.
We serve a population of over 7 million and answer over 500,000 urgent calls a year. We employ 4,551 staff who, together with over 1,100 volunteers, enable us to operate 24 hours a day, seven days a week.
In SCAS, we know that colleagues who are cared for and valued are enabled to provide the right care, first time, every time. That is why we strive to foster a culture that balances fairness, compassion, learning and accountability; a ‘just and learning culture’.
• Ensure the delivery of projects to achieve both CareCERT, Cyber Essentials and DSPT accreditation for the Trust and implement processes that assure ongoing maintenance of this status
• Provide support in the day-to-day management of information security and governance service provision to all users ensuring the Trust’s compliance with the Data Protection Act 1998, Access to Health Records Act 1990, Freedom of Information Act and those regulations that supersede or supplement these from time to time
• To assist in the ISG continuous improvement work stream within the Digital Directorate that seeks to improve the Trust’s operational management of Information Security and Information Governance
• Interpret highly complex legislation and regulations related to information governance and information security such as ISO/IEC 27001, the Data Protection Act 1998, NHS Information Risk Management, Computer Misuse Act and develop, implement, and enforce suitable and relevant information security policies and procedures across the Trust.
• To assist in ensuring all information systems and underlying technical architectures and changes to the technical environment are assessed against Information Security best practice to assure the Trust and external bodies that information held by the Trust is secure.
• Provide regular reports to the Head of Information Security and Governance on areas such as Project Progress, Security, in relation to upcoming threats, number of security incidents (detected and prevented) and compliance of ICT systems and equipment including patching levels.
• Provide support for Information Asset Owners (IAOs) through effective networking structures, sharing of relevant experience, provision of training and creation of information risk reporting structures, ensuring the completeness and accuracy of the Trust’s information asset register.
• Assist in ensuring Digital staff are suitably trained and understand Digital Security including the generation and provision of IG and IS training at part of IG training, staff induction and specialist training sessions, such as for IAOs and IAAs (information Asset Administrators).
• Ensure that identified information threats and vulnerabilities are followed up for risk mitigation, and that perceived or actual information incidents are managed in accordance with NHS ISG requirements, leading on the assessment of all reported IG incidents
• Ensure the Trust responds to, and is protected against, all new threats identified within Information Security Notices and alerts (including those from CareCERT).
• Monitor Security systems for alerts and investigations
This advert closes on Thursday 6 Jun 2024
Aelod balch o'r cynllun cyflogwyr Hyderus o ran Anabledd
Hyderus o ran Anabledd
Gwybodaeth am Hyderus o ran Anabledd
Yn gyffredinol, bydd cyflogwr Hyderus o ran Anabledd yn cynnig cyfweliad i unrhyw ymgeisydd sy'n datgan eu bod yn anabl ac yn bodloni'r meini prawf lleiaf ar gyfer y swydd fel y diffinnir gan y cyflogwr. Mae'n bwysig nodi, mewn rhai sefyllfaoedd recriwtio fel nifer fawr o ymgeiswyr, cyfnod tymhorol ac amseroedd prysur iawn, efallai y bydd y cyflogwr am gyfyngu ar y niferoedd cyffredinol o gyfweliadau a gynigir i bobl anabl a phobl nad ydynt yn anabl. Am fwy o fanylion ewch i Hyderus o ran Anabledd.