ICT Senior Network and Cyber Security Analyst: Sponsorship Available

Barts Health NHS Trust

Job Summary

Manage, and responsible for the operation, installation and maintenance of the Trust’s ICT network and security infrastructure, systems and software, providing advanced level operational support on a range of network devices and associated services in order to support over 15,000 users across 6 hospital sites, running 24/7/365.

Monitor networks to detect any suspicious or activities and take measures, such as installing firewalls, to defend against malicious attacks on the systems.

Correct flaws in any of the Trust’s security systems, solutions and programs while recommending specific measures that can improve the Trust’s overall security profile.

Main duties of the job

  • Actively manage and maintain the Trust’s network and security infrastructure, systems and software.
  • Implement and recommend controls that will improve the Trust’s security posture.
  • Regularly develop, maintain and update policies, procedures, guidelines and standards for all relevant systems and processes.
  • Proactively monitor the infrastructure with the available tools to identify suspicious activities and take preemptive action to defend against them.
  • Take the lead on vulnerability management.
  • Ensure patching is done regularly in accordance with the agreed standards and completed within agreed procedures.
  • Effectively and actively use threat intelligence to improve our security posture.
  • Provide technical assistance and expertise during incident resolution.
  • Work closely with relevant parties to ensure compliance with various standards.

Person Specification

Knowledge

Essential

  • Significant technical knowledge of security principles, controls, risk and threat mitigation.
  • Good general knowledge of IT infrastructure (network, PCs, firewalls, telephones, servers)
  • Knowledge of web applications and their common vulnerabilities.
  • Understanding of cyber security frameworks e.g CAF, NIST, DSPT, ISO 27001.
  • Awareness and understanding of emerging IT developments and potential implications

Desirable

  • Knowledge of Cloud technologies.

Communication

Essential

  • Highly effective interpersonal and coordinating skills with the ability to interpret and communicate complex information to staff with varying degrees of technical know how.
  • Excellent written and verbal communication skills suitable for a range of audiences, including chairing of meetings
  • Able to document routine fixes in the ICT knowledge base and training documents
  • Able to work effectively as part of a team
  • Able to lead and direct individuals to achieve a common aim.

Qualifications

Essential

  • Educated to degree level in an IT-related subject (or equivalent experience)
  • Professional Cybersecurity qualification (CISMP, Security +, Cysa +)
  • Professional Computer networking qualification (CCNA)

Desirable

  • CISSP qualification
  • ITIL Foundation qualification

Experience

Essential

  • Significant experience of working in a large organisation (over 5,000 users) with a proven experience of leading or actively involved in a wide variety of cybersecurity responsibilities.
  • Practical and extensive experience of threat detection, intrusion prevention/detection techniques and attack vectors.
  • Technical and working knowledge of different security tools.
  • Experience of working in an ITIL environment.
  • Experience of conducting risk assessments and developing mitigation plans
  • Experience of working with a wide range of 3rd parties; managed services; and managing relationships.
  • Experience of using threat intelligence effectively to improve security posture.
  • Demonstrable experience of vulnerability management and taking actions to remediate findings.
  • Experience of conducting security assessment for third parties.

Desirable

  • Experience of working in an enterprise network environment
  • Previous experience in a similar position within the NHS or healthcare provider
  • Demonstrable experience of IT security experience in an enterprise network.
  • Experience of automating routine infrastructure tasks with scripting tools
  • Experience of writing technical and executive reports.
  • Demonstrable experience of reviewing and recommending IT security solutions and controls.
  • Experience of responding to cyber incidents.
  • Experience of participating in a DSPT audit.

Disclosure and Barring Service Check

This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.

Certificate of Sponsorship

Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab).

From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab).

Closing Date: 03 February 2025

To apply for this job please visit apps.trac.jobs.