Job Summary
Are you an experienced Cyber Security specialist who is dedicated to ensuring that our public services are safe and secure? Do you enjoy collaborating and implementing across different functions and divisions? The Cyber Security Technical Specialist is a permanent role at Public Health Wales that will help us deliver our Digital and Data Strategy.
Full time permanent.
Interview: The interview will take place virtually.
A degree in IT or equivalent experience, along with previous work in cyber security, is essential. You must also be prepared to work from our Cardiff location when required, including on short notice.
Main duties of the job
This post plays a critical role in protecting and securing Public Health Wales’ information and digital assets from cyber threats.
The Cyber Security Technical Specialist operates with a degree of autonomy while receiving guidance from senior cyber security staff, playing a key role in implementing and maintaining security controls across the organisation.
The role involves supporting and leading efforts related to cyber security protocols, conducting risk assessments, and responding to incidents.
The specialist is responsible for developing, maintaining, and supporting cyber security systems in line with Public Health Wales’ operational requirements.
They are expected to participate in early/late shift rotations and the on-call rota.
A crucial part of the role includes staying current with emerging security technologies and threats, conducting research, and evaluating how to manage new risks.
The specialist also leads assurance assessments to ensure the effectiveness of security controls and compliance with relevant laws, regulations, and industry best practices.
Additionally, the role encompasses continuous monitoring, threat detection, and incident investigation to protect organisational assets, as well as leading vulnerability management activities such as scanning, assessment, remediation coordination, and tracking of security weaknesses.
Person Specification
Qualifications and Knowledge
Essential
- Degree-level qualification in a relevant IT subject or equivalent experience. .
- Evidence of continuing professional development.
- Understanding of Cyber Security best practices, standards, certifications, and terminology.
- Awareness of national and international cyber security regulations, standards and frameworks (e.g. NIS Regulations, ISO 27001, NIST)
Desirable
- Holds a relevant cyber security certification (e.g CompTIA Security+, SSCP).
- Registered with a relevant informatics professional body.
- Experience applying Cyber Security in a healthcare environment.
- Understanding of NHS standards and legal requirements related to Information Governance and Security.
- In-depth knowledge of network technologies
Experience
Essential
- Demonstrated experience in cyber security role(s).
- Good understanding and experience with application and network security.
- Hands-on experience with SIEM (Security Information and Event Management) systems and vulnerability scanning tools
- Involvement in creating training materials, including phishing simulation exercises.
- Experience in providing technical/ security support.
Desirable
- Cloud Security experience (e.g Azure, AWS, GCP)
- Relevant experience working in a Cyber Security role in a healthcare environment
- Experience documenting procedures, policies and standards.
- Experience of taking a lead role in developing and implementing Network/Security related systems and services
Skills and Attributes
Essential
- Good communication skills, including the ability to explain complex ideas to non-technical staff.
- Able to provide guidance and support to staff.
- Ability to challenge poor behaviour constructively.
- Effective team member within a multi-disciplinary environment.
- Ability to analyse and resolve complex IT issues.
- Ability to learn new technologies with minimal supervision.
- Pragmatic in balancing security and business needs. .
- Experience working with third parties and suppliers to establish project assurance.
- Ability to work on own initiative
- Experience working with third parties and suppliers to establish project assurance.
Desirable
Other
Essential
- Ability to travel between sites in a timely manner to meet the needs of the service
- Ability to travel and work away from base.
- Able to periodically work out of hours or at weekends when required.
- Able to participate in on-call rota.
Disclosure and Barring Service Check
This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.
Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab).
From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab).
Closing Date: 25 August 2025