Head of Cyber Programmes
- Employer
- Liverpool University Hospitals NHS Foundation Trust
- Location
- Liveprool
- Salary
- £74,290 to £85,601 per annum
- Closing date
- 11 Sep 2024
View moreView less
- Profession
- Other Health Profession
- Grade
- Band 8C
- Hours
- Full Time
You need to sign in or create an account to save a job.
Head of Cyber Programmes
An exciting, career defining opportunity has arisen for an enthusiastic cyber security professional to help shape and deliver the cyber security agenda within the NHS across multiple organisations and Integrated Care Systems (ICS).
The post holder will lead the development of cyber strategies and target operating models, and will lead and deliver programmes at ICS level, which will turn these strategies into programmes and into business-as-usual activities within: -
Governance
Risk Management
Third-party / supply chain risk
Incident management
Assurance and standards
People and culture and,
The provision of virtual Chief Information Security Officer services
Working in an ever changing and increasingly challenging environment, the post offers the chance to make a real difference, protecting systems and data that support the delivery of critical health and social care.
Does this sound like the career move you are looking for?
Are you committed to driving real change to improve and cyber resilience?
Are you ready to work in a dynamic environment where your professional skills and judgements are valued by colleagues and care professionals?
Then we want to hear from you!
Main duties of the job
The key purpose of this role is to:
Develop and deliver cross-community and organisational cyber strategies and target operating models.
Develop, deliver, lead and oversee highly complex cross community cyber improvement programmes.
Develop, deliver, lead and oversee highly complex cross community cyber security services covering multiple organisations.
Act in the role of cyber lead and/or incident response lead at relevant client organisations and, where relevant, across communities.
Acts in the role of cyber lead and/or incident response lead at relevant client organisations.
Ensures that highly complex cyber programmes are underpinned by first class solutions support and portfolio and programme management arrangements.
Acting as budget holder to manage programmes, services and assignments, often spanning multiple years, to budget, within agreed timescales and to the expected quality standards including the setting and monitoring of budgets to manage costs and ensure income recovery.
Lead MIAA's internal security programme covering accreditations to ISO27001, ISO27701, Cyber Essentials Plus and the NHS Data Security and Protection Toolkit as well monitoring cyber performance and addressing areas for improvement.
About us
MIAA is an NHS Shared service, hosted by Liverpool University Hospitals NHS Foundation Trust. Established in 1990, we have grown exponentially over the years to become a leading provider of assurance services to the NHS. In recent years, our expertise has expanded to other public and third sector organisations including Local Government, Police & Fire, charities, and housing organisations.
Whilst we are proud of the range of services, we provide what is more important to us is why we do it. As a public sector not for profit organisation, we are focused on enabling our clients to deliver the best possible public service outcome.
MIAA provides internal audit services to over 50+ NHS and public sector organisations in the Northwest and beyond. We also offer clients a number of services in addition to internal audit including Solutions, Anti-Fraud, Technical Risk Assurance, Capital, Clinical Coding, Healthcare Quality Support.
MIAA's budgeted turnover is 12 million, which is demonstrative of the organisation's ambitious and strategic goals. MIAA is committed to maximising social value in all that we do - both internally, with our workforce, or externally, to maximise the positive impacts on our customers, SMEs, and the local communities where we work. We are focused on supporting the development of health, happy and thriving communities through employing local people, supporting local SMEs, and growing the local economy through this work.
Job description
Job responsibilities
The purpose of the role is to lead the delivery of significant, highly complex, multi- faceted Cyber Programmes across multiple MIAA clients and internally with MIAA.
Client facing
The role will work with executive teams, senior digital leaders across the MIAA client base (including Chief Information Officers, Chief Clinical Information Officers, Chief Nursing Information Officer and Senior Information Risk Owners as well as information governance leads and operational IT and cyber security staff) to identify, scope, agree and deliver a range of highly complex, multi-facets transformational cyber security support programmes both within individual organisations and across systems and place including acting in the role of cyber lead and/or incident response lead at relevant client organisations.
The post holder will ensure that local and highly complex and competing cross- organisational dependencies and risks are well identified and managed, and benefits are planned and delivered appropriately.
This will include communications and engagement across a wide constituency of staff at the clients as well as at place and system levels to ensure that programmes meet their time, cost and quality objectives and budgets ensuring that programmes effectively
contributed to delivering the highest quality patient care through delivery of systems and the capacity to achieve continuous improvement.
Internal
The post holder will develop and oversee the highly complex and technical security monitoring, of the MIAA IT infrastructure, delivering and/or maintaining relevant security certifications, developing, and delivering technical processes and tooling for the security monitoring of the infrastructure, for reporting the security posture of the organisation and for identifying and leading complex security improvement where appropriate.
Please read Job description and Person Specification in full for principal and key responsibilities.
Person Specification
Qualifications
Essential
Desirable
Experience
Essential
Desirable
Knowledge
Essential
Desirable
Skills
Essential
Other
Essential
Employer details
Employer name
Liverpool University Hospitals NHS Foundation Trust
Address
Regatta Place
Brunswick Business Park, Summers Road
Liveprool
L3 4BL
Any attachments will be accessible after you click to apply.
287-MIAA-12-24
An exciting, career defining opportunity has arisen for an enthusiastic cyber security professional to help shape and deliver the cyber security agenda within the NHS across multiple organisations and Integrated Care Systems (ICS).
The post holder will lead the development of cyber strategies and target operating models, and will lead and deliver programmes at ICS level, which will turn these strategies into programmes and into business-as-usual activities within: -
Governance
Risk Management
Third-party / supply chain risk
Incident management
Assurance and standards
People and culture and,
The provision of virtual Chief Information Security Officer services
Working in an ever changing and increasingly challenging environment, the post offers the chance to make a real difference, protecting systems and data that support the delivery of critical health and social care.
Does this sound like the career move you are looking for?
Are you committed to driving real change to improve and cyber resilience?
Are you ready to work in a dynamic environment where your professional skills and judgements are valued by colleagues and care professionals?
Then we want to hear from you!
Main duties of the job
The key purpose of this role is to:
Develop and deliver cross-community and organisational cyber strategies and target operating models.
Develop, deliver, lead and oversee highly complex cross community cyber improvement programmes.
Develop, deliver, lead and oversee highly complex cross community cyber security services covering multiple organisations.
Act in the role of cyber lead and/or incident response lead at relevant client organisations and, where relevant, across communities.
Acts in the role of cyber lead and/or incident response lead at relevant client organisations.
Ensures that highly complex cyber programmes are underpinned by first class solutions support and portfolio and programme management arrangements.
Acting as budget holder to manage programmes, services and assignments, often spanning multiple years, to budget, within agreed timescales and to the expected quality standards including the setting and monitoring of budgets to manage costs and ensure income recovery.
Lead MIAA's internal security programme covering accreditations to ISO27001, ISO27701, Cyber Essentials Plus and the NHS Data Security and Protection Toolkit as well monitoring cyber performance and addressing areas for improvement.
About us
MIAA is an NHS Shared service, hosted by Liverpool University Hospitals NHS Foundation Trust. Established in 1990, we have grown exponentially over the years to become a leading provider of assurance services to the NHS. In recent years, our expertise has expanded to other public and third sector organisations including Local Government, Police & Fire, charities, and housing organisations.
Whilst we are proud of the range of services, we provide what is more important to us is why we do it. As a public sector not for profit organisation, we are focused on enabling our clients to deliver the best possible public service outcome.
MIAA provides internal audit services to over 50+ NHS and public sector organisations in the Northwest and beyond. We also offer clients a number of services in addition to internal audit including Solutions, Anti-Fraud, Technical Risk Assurance, Capital, Clinical Coding, Healthcare Quality Support.
MIAA's budgeted turnover is 12 million, which is demonstrative of the organisation's ambitious and strategic goals. MIAA is committed to maximising social value in all that we do - both internally, with our workforce, or externally, to maximise the positive impacts on our customers, SMEs, and the local communities where we work. We are focused on supporting the development of health, happy and thriving communities through employing local people, supporting local SMEs, and growing the local economy through this work.
Job description
Job responsibilities
The purpose of the role is to lead the delivery of significant, highly complex, multi- faceted Cyber Programmes across multiple MIAA clients and internally with MIAA.
Client facing
The role will work with executive teams, senior digital leaders across the MIAA client base (including Chief Information Officers, Chief Clinical Information Officers, Chief Nursing Information Officer and Senior Information Risk Owners as well as information governance leads and operational IT and cyber security staff) to identify, scope, agree and deliver a range of highly complex, multi-facets transformational cyber security support programmes both within individual organisations and across systems and place including acting in the role of cyber lead and/or incident response lead at relevant client organisations.
The post holder will ensure that local and highly complex and competing cross- organisational dependencies and risks are well identified and managed, and benefits are planned and delivered appropriately.
This will include communications and engagement across a wide constituency of staff at the clients as well as at place and system levels to ensure that programmes meet their time, cost and quality objectives and budgets ensuring that programmes effectively
contributed to delivering the highest quality patient care through delivery of systems and the capacity to achieve continuous improvement.
Internal
The post holder will develop and oversee the highly complex and technical security monitoring, of the MIAA IT infrastructure, delivering and/or maintaining relevant security certifications, developing, and delivering technical processes and tooling for the security monitoring of the infrastructure, for reporting the security posture of the organisation and for identifying and leading complex security improvement where appropriate.
Please read Job description and Person Specification in full for principal and key responsibilities.
Person Specification
Qualifications
Essential
- Level 7 Qualification in an Informatics or Cyber Security subject. Examples include: o Master's degree/equivalent
- Certified Information Security Manager
- CREST Penetration Tester
- CHECK Team Member
- CHECK Team Leader
Desirable
- PRINCE2 project management OR Managing Successful Programmes
Experience
Essential
- Must have senior experience of working in cyber security in either an operational, assurance or consultancy capacity.
- Must have experience of working in the NHS or other public sector organization resulting in a developed understanding of digital systems, risks, and processes. Alternative experience in an equivalent organization may be acceptable.
- Experience authoring technical strategies
Desirable
- Must have significant experience of recruiting, developing, managing and supervising staff.
- Extensive NHS experience involving close working relationships with senior managers, clinicians, and multidisciplinary environment.
Knowledge
Essential
- Must have a full and mature understanding of NHS and public sector structures, policy, functions, and digital systems together with the aptitude to build on that knowledge.
- Must have an understanding of the background to and aims of current health/social care policy and appreciate the implications of this on engagement
- Must have a full understanding of the digital agenda, corporate governance, risk management and assurance principles and practice
- Highly developed knowledge of how ICT systems support care delivery within a health and social care system.
Desirable
- Highly developed specialist knowledge, underpinned by theory and experience in all aspects of secure IT infrastructure and technical architecture
- Data center management including design, specification, procurement, implementation, and service management.
- Secure Cloud hosting including design, specification, procurement, implementation, and service management.
Skills
Essential
- Excellent, and demonstrable, relationship building skills and an ability to communicate effectively with large audiences through a variety of mediums.
- Excellent communication skills including providing and receiving highly complex, sensitive or contentious information and writing highly complex reports
- Excellent negotiation skills.
- Ability to make judgments on multi- stranded or complex IM& T security problems which may have no precedent or where there are conflicting opinions
- Ability to formulate long-term, strategic security plans which involve uncertainty, and which may impact across multiple organisations
- Analyse user security requirements which may require defining the configuration of software and/or hardware
- Proven ability in delivery of work within complex project/programmes delivering successful implementation and transformation
- Ability to maintain focus and objectivity under various conditions and skill in managing and maintaining a multi-priority workload within changing environment
- Ability to plan and organise complex activities such as workshops and vendor engagement events
- Demonstrated capability to plan over short, medium, and long-term timeframes and adjust plans and resource requirements accordingly
- Ability to work autonomously to achieve agreed objectives within broad professional policies
- Develops and takes the lead in advising on long-term strategic IM& T/business planning for the whole organisation
- Ability to react to immediate problems of a complex nature with associated risk factors and deliver pragmatic solutions sometimes under high pressure
- Capability for prolonged concentration interpreting complex requirements, assess IT solutions and production of project and technical documentation e.g., business plans, business cases, options analysis, project plans, IT architecture, designs and policy/procedure documents for the partnership and other organisations
- Ability to analyse complex facts and situations and develop a range of options
- Ability to anticipate and resolve problems before they arise.
- Ability to link strategy to policy which meets both internal and external requirements
- Ability to implement business security change to IM& T and operational clinical user security working practices.
- Ability to accommodate changes in legislation and NHS national mandates in relation to process re-design and change management
- Ability to undertake day to day management of section e.g., recruitment, appraisal, performance, training
- Must be able to prioritise own work effectively and be able to direct activities of others
Other
Essential
- Must have the ability to travel to a range of sites and work in a range of environments. A driving license and own transport is essential
Employer details
Employer name
Liverpool University Hospitals NHS Foundation Trust
Address
Regatta Place
Brunswick Business Park, Summers Road
Liveprool
L3 4BL
Any attachments will be accessible after you click to apply.
287-MIAA-12-24
You need to sign in or create an account to save a job.
Get job alerts
Create a job alert and receive personalised job recommendations straight to your inbox.
Create alert