Cyber Security Manager: Sponsorship Available

Calderdale and Huddersfield NHS Foundation Trust

Job Summary

The Health Informatics Service (THIS), hosted by Calderdale and Huddersfield NHS Foundation Trust (CHFT), provides a broad range of IM&T services across many diverse customer organisations. A significant part of this provision reports to the Chief Technology Officer (which accompany Operational Support and Business Intelligence services). These services are based around those functions that provide people, who have highly developed specialist knowledge, skills and experience, allowing them to facilitate, train, manage and advise across a whole range of IM&T related areas. The Cyber & IT Security Service (CITS) is one of these principal service areas.

The post holder will be a key member of the Chief Technology Officers staff and have responsibility for leading the design, delivery and continuous improvement of the CITS service, ensuring that the strategic vision for the service is developed and delivered in line with mandated national policy and our internal Governance, Risk and Compliance (GRC) Framework.

Specifically, the post holder will direct and support the Operational Technical Managers with the implementation of the strategic vision for Cyber & IT Security, across THIS, CHFT and the wider customer base, ensuring professionalisation and commercialisation are embedded as central values throughout all levels of the service.

Main duties of the job

  1. To lead the development and to direct the implementation of the overall strategic vision of the CITS Service, including service/personnel development/improvement, professionalisation and commercialisation.

 

  1. Lead on the development and implementation of the GRC Programme from a CITS perspective, ensuring all current and emerging national and locally mandated compliancy areas are encompassed (ISO27001:2013, Cyber Essentials Plus, NIS Regulation, GDPR, DATA Protection Act 2018, ENISA, DSPToolkit, OWASP top 10).

 

  1. Lead on the strategic development of the THIS Cyber Security Service.

 

  1. Be responsible for remaining up to date on current security threats (threat actors/attack vectors) and ensure risk assessments are applied to promote mitigation.

 

  1. Be responsible for the research and evaluation of the latest Cyber Security, Information Security and IT Governance products and protocols.

 

  1. Lead on the development and delivery of a range of Cyber & IT Security awareness sessions/workshops/presentations that will focus on improving cyber safety throughout the business, customer base and wider regional footprint.

 

  1. Be responsible for the management, development, support and delivery of all CITS services delivered to both internal and external customers.

 

  1. To create and continually develop a structure that will consistently deliver excellent service and meet all customers’ requirements.

Person Specification

QUALIFICATIONS / TRAINING

Essential

  • Degree standard or equivalent level of knowledge acquired through experience
  • Leadership/management qualification or relevant experience
  • Cyber Security Certification (e.g. C|EH, CISSP, HCISPP, CISA etc.)
  • ITIL Framework Qualification or equivalent level of knowledge acquired through experience
  • Professional Qualification in Governance Risk and Compliance (eg GRCP)
  • Evidence of continuing professional development
  • Willingness to undertake professional training relating to the role

Desirable

  • Forward planning to support your Personal/Professional Development Plan (PDP)

KNOWLEDGE, EXPERIENCE & EXPERTISE

Essential

  • A senior service delivery position within a large public/private sector organisation
  • Experience of working across a complex range of health or social care organisations
  • A substantial proven track record of IT Security; planning and implementation of multiple complex systems – gained from working in a range of organisations in an NHS setting
  • A demonstrable understanding of the principles of modernisation in the NHS, including experience around service improvement and re-design, monitoring change and facilitating staff in changing their working practices, CareCert, GDPR etc
  • An understanding of corporate governance and risk management systems and processes
  • Able to develop, put in place and oversee progress tracking and reporting mechanisms which mitigate and manage delivery and operational risks
  • Experience of benefits realisation
  • Budget management experience, utilising standard financial budgetary controls
  • Experience of Vulnerability testing methodologies
  • Experience of Pen Testing Methodologies
  • Experience in the use of an Enterprise level Security portfolio
  • In-depth professional knowledge of relevant IM&T developments and programmes within the NHS environment and beyond, including European wide Cyber related Law
  • In-depth professional knowledge of the National and Local NHS Digital Health agenda
  • Flexible approach to work self-motivated and able to work on own initiative with minimum supervision and be able to handle many different competing priorities at once
  • Excellent interpersonal skills. Able to effectively communicate with all levels of staff both verbally and in writing
  • Ability to work nationally (with occasional overnight stays).
  • Ability to work in various locations throughout the network of services provided by Calderdale and Huddersfield NHS Foundation Trust.
  • Able to fulfil the health requirements of the post as identified in the Job Description, taking into account any reasonable adjustments recommended by Occupational Health.
  • Ability to source, assimilate and analyse extremely complex data and information relating to wide range of services and translate into an easily understood format

Desirable

  • Experience of Firewall configuration and audit criteria

Disclosure and Barring Service Check

This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.

Certificate of Sponsorship

Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab).

From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab).

Closing Date: 15 October 2025

To apply for this job please visit apps.trac.jobs.