Senior Cyber & IT Security Officer (Audit and Assurance)
Mersey Care NHS Foundation TrustSearch for more jobs in Prescot
Job overview
Responsible for the preparation and evidence gathering for the Data Security Protection Toolkit, and other assurance and IG requirements.
Manage the task list for DSPT and IG tasks and allocate as appropriate. To contribute within Informatics Merseyside, Trusts and ICB Assurance and Information Security and Governance best practice.
Main duties of the job
1. The post holder will have a broad understanding of IM&T technologies and broad knowledge of key technologies such as firewalls, email filters, anti-virus and intrusion detection technologies. 2. Contribute to the development of the monthly Cyber Dashboard report. 3. To contribute to the development of information security and technical plans that will feed into the wider Partner Organisations, and Informatics Merseyside strategies. 4. Assist in the formulation and development of information security plans and strategies to enable the successful completion and implementation of new systems. This might include logistics for equipment and software delivery and installation, scheduling human resources for training and configuration tasks and change control to minimise potential down time. 5. Assist with the develop of information security policies and procedures that will be required the secure operation of systems built by the IT Security team. The policies will have far ranging impact across Informatics Merseyside and Partner Organisations.
Detailed job description and main responsibilities
1. Assist with the design and implementation of information security solutions that meet the needs either specified by users or by senior team members. Would be expected to be capable of undertaking the analysis of an existing system for further development. 2. The post holder will need to be aware of the development of legislation making sure that as the laws and guidelines change, information security strategies and policies keep in step. 3. Regularly devote time to the research of newly discovered internet threats, software vulnerabilities and issues arising from poor information security practice. Using this information develop strategies for mitigating the potential risk. Either through procedural change or implementation of new software and hardware tools. 4. The post holder will work to agreed guidelines and targets but will have the freedom to work in a way they deem fit. Can give advice and support without referring to line management. May be a lead specialist in specific technologies. 5. There may be a requirement to attend meetings for the Deputy Cyber & IT Security Manager.