Logo of Huzzle

Home

Matches

Explore

Manage

Information Security Manager

image

Guy's and St Thomas' NHS Foundation Trust

Nov 6, 2024

Applications are closed

  • Job
    Full-time
    Senior Level
  • Government & Politics
    IT & Cybersecurity
  • London

Requirements

  • - Proven experience in information security management, specifically in cyber security.
  • - In-depth knowledge of cyber security policies, standards, and frameworks.
  • - Experience in developing and delivering cyber security strategies and risk management.
  • - Strong communication and interpersonal skills to build relationships at all levels.
  • - Ability to engage with external stakeholders and convey complex security concepts.
  • - Experience in working with NHS Digital or similar standards in health and care systems.
  • - Leadership experience in managing cyber security initiatives and teams.
  • - Understanding of regulatory requirements and compliance in cyber security.
  • - Strong analytical and problem-solving skills to assess security risks.
  • - Flexibility to travel to partner Trusts and supplier sites as necessary.

Responsibilities

  • This role will be primarily responsible for supporting the Trust in delivering fit for purpose cyber security plans, improving the Trust’s cyber security posture and reducing the risk of impact from a cyber security incident.
  • The specific responsibilities of the role will include developing and raising awareness of the Trust’s cyber security strategy, policy, standards and frameworks, embedding robust cyber security risk controls within Trust systems and services, and providing assurance that patient services and systems are being safely and securely operated in alignment with required policies and standards.
  • The Information Security Manager will need to form a large number of senior relationships across the Trust and more broadly across the health and care system, including clinical Strategic Business Units, key IT suppliers and Internal Audit, and will be frequently called-upon to explain the security-preparedness and cyber risk environment to Trust senior management and to key external stakeholders.
  • The Information Security Manager is accountable for ensuring that Guy’s and St. Thomas’ NHS Foundation Trust can protect patient data and services from cyber risk, and can meet national NHS standards for cyber security, specifically in relation to development and delivery of cyber policy and assurance.
  • Reporting directly to the Head of Information Security, the Information Security Manager will lead on the development and promotion of cyber security policy, standards and frameworks, and will strategically engage with NHS Digital and other key third parties to ensure that the Trust is empowered to deliver excellent standards of patient care.
  • The post holder will provide leadership and guidance on cyber risk management and reporting, and will lead on the development and delivery of the Trust’s cyber audit and assurance framework, working closely with internal business units, DT&I colleagues, key IT systems suppliers and Internal Audit.

FAQs

What is the main responsibility of the Information Security Manager?

The main responsibility is to support the Trust in delivering cyber security plans, improving cyber security posture, and reducing the risk of impact from cyber security incidents to protect patient data and services.

Who does the Information Security Manager report to?

The Information Security Manager reports directly to the Head of Information Security.

What skills are required for the Information Security Manager role?

Skills required include developing and promoting cyber security policies, engaging with NHS Digital and third parties, managing cyber risk, and providing leadership on cyber audit and assurance frameworks.

Will the Information Security Manager need to engage with external stakeholders?

Yes, the role requires frequent engagement with Trust senior management, external stakeholders, key IT suppliers, and other partners within the health and care system.

Where is the primary location of the Information Security Manager role?

The primary location is at the Trust's locations in central London, with some travel to partner Trusts and supplier sites as necessary.

Is there an emphasis on team development in this role?

Yes, the team emphasizes personal development and offers extensive training opportunities to ensure team members operate at the forefront of cybersecurity.

What type of environment does the Information Security team promote?

The Information Security team promotes a supportive environment focused on continuous learning and collaboration, aimed at creating a secure digital workplace for patient care.

How can I contact for more details about the job position?

You can contact Paul Merison, Head of Information Security and Risk, at paul.merison@gstt.nhs.uk or by telephone at 07596889062.

Does the role require previous experience in information security?

While specific experience requirements aren't detailed, extensive knowledge and experience in information security practices and cyber risk management are expected.

What is the goal of the Information Security Manager regarding national NHS standards?

The goal is to ensure the Trust can protect patient data and services from cyber risk and meet national NHS standards for cyber security through effective policy and assurance development.

image

Guy's and St Thomas' NHS Foundation Trust

Our values: put patients first, take pride in what we do, respect others, act with integrity, strive to be the best. 💙

Science & Healthcare
Industry
10,001+
Employees

Mission & Purpose

Guy's and St Thomas' NHS Foundation Trust is a leading healthcare provider in the UK, offering a wide range of medical services through its hospitals and community services. The Trust is dedicated to providing high-quality, compassionate care to patients while advancing medical research and education. Their ultimate mission is to improve health outcomes and enhance the well-being of the communities they serve. The Trust is committed to innovation, excellence in care, and ensuring equitable access to healthcare for all.