Digital Cyber Security & Compliance Specialist: Sponsorship Available

Manchester University NHS Foundation Trust

Job Summary

We’re looking for a motivated and detail-focused Digital Cyber Security & Compliance Specialist to join Manchester University NHS Foundation Trust’s expanding cyber team.

You’ll play a key role in protecting the Trust’s digital estate — monitoring systems, analysing threats and supporting the delivery of secure, compliant digital services that underpin patient care. Working alongside senior cyber, infrastructure and operations colleagues, you’ll help maintain and improve the Trust’s security posture in line with national frameworks such as the Data Security and Protection Toolkit (DSPT)

This role is ideal for someone with hands-on technical experience who’s ready to build deeper expertise in cyber security within a large-scale, high-impact healthcare environment.

 

Main duties of the job

  • Support daily monitoring of security tools (antivirus, encryption, SIEM, firewall, vulnerability scanning) to detect and respond to potential threats.
  • Assist with incident response and forensic investigation, producing accurate reports and escalation where required.
  • Contribute to the development and maintenance of cyber security policies, procedures and awareness materials.
  • Participate in regular security testing, auditing and compliance reviews, tracking actions through to closure.
  • Help assess and document cyber risks, recording these within the Trust’s assurance framework.
  • Support the configuration and monitoring of patching, updates and endpoint protection across the digital estate.
  • Provide specialist advice to colleagues and suppliers on security best practice and data protection requirements.
  • Keep up to date with emerging threats, vulnerabilities and technologies, sharing insights with the wider team.
  • Build strong working relationships with clinical, operational and technical stakeholders to ensure secure service delivery.
  • Contribute to training and awareness sessions promoting good security behaviour across MFT.

Person Specification

Qualifications

Essential

  • MCSE or equivalent level and Degree Level (or) Equivalent knowledge skills and experience
  • Evidence of Personal Development

Desirable

  • Expert knowledge of IT security industry and developments.

Knowledge and Experience

Essential

  • Knowledge of current IT cyber security issues
  • Management of a complex IT Infrastructure within the NHS or large enterprise level organisation.
  • Good knowledge of security standards, legislation and best practice
  • Knowledge of: o Network security o Operating systems and application security o Access control methodology o Physical security in an IT environment o Incident response o Risk assessment
  • Up to date knowledge of technical applications
  • Ability to think ahead and anticipate problems, issues and solutions
  • Active Directory Management
  • Anti-Virus infrastructure
  • Windows 2003/8/12 Server knowledge

Desirable

  • Experience developing and managing best-of-breed enterprise IT security appliances
  • Work under pressure with time restrictions
  • Disaster recovery and Business Continuity knowledge
  • Citrix XenDesktop/XenApp Experience
  • Firewall technologies knowledge
  • SAN Technologies
  • VMware knowledge
  • Azure / AWS

Skills

Essential

  • Specialist technical knowledge of security Issues and products so that complex security issues can be quickly diagnosed and resolved.
  • Capacity to undertake complex risk assessments
  • Organisational skills
  • Strong communications skills, verbally and written.
  • Report writing and procedure /policy development
  • Good time management.
  • Capacity to communicate complex matters to non technical persons
  • Ability to organise self and others and to work on own initiative
  • Ability to work to deadlines, prioritise tasks and manage in a busy pressurised climate
  • Ability to prioritise and plan use of resources

Desirable

  • Ability to communicate complex information to all levels of staff
  • Project Management
  • Business Change Management

Knowledge

Essential

  • In Depth Knowledge of the laws as it applies to IT Security and recommended standards as applied by appropriate bodies e.g. NHSDigital
  • Knowledge across many of the below areas: o IT desktop applications o Operating systems o Networking o Computer technology o Database technology o Security o Virtualisation o Citrix o SAN Technologies o Microsoft Server and Supporting Services

Desirable

  • Knowledge of current NHS Information Technology issues, standards and procedures

Disclosure and Barring Service Check

This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.

Certificate of Sponsorship

Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab).

From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab).

Closing Date: 29 December 2025

To apply for this job please visit apps.trac.jobs.