ICT Head of Cyber Security: Sponsorship Available

King's College Hospital NHS Foundation Trust

Job Summary

The ICT Head of Cyber Security will act as the Trusts expert on cyber security protection, detection, response, and recovery. The ICT Head of Cyber Security will be responsible for the strategic approach to cyber threat management, the strategic planning of current and future IT security solutions. The post holder will manage, support and develop the Trust cyber security team.

The ICT Head of Cyber Security will own and be responsible for the completion of parts of the Data Security Assessment Toolkit in relation to ICT cyber security obligations in addition to working towards and maintaining Cyber Essentials Plus and ISO27001 certification. The post holder will work closely with a range of ICT departments, plus key stake holders in the Trust such as the Head of IG, the Trust SIRO and the Trust Information governance committee. Close working relationships with other Trusts and external organisations will be required

 

Main duties of the job

Lead strategic planning for current and future IT security solutions, aligning with best practice and emerging technologies

Collaborate with teams to ensure compliance with security standards..

Lead on internal and external audits and audit preparation relating to IT security

Maintain compliance with standards including DSPT, CareCERT, Cyber Essentials+, NIS, and ISO 27001

Act as the Trusts advisor on cyber security protection, detection, response and recovery

Develop and advise on implementing policies, procedures, and guidance for cyber and IT security systems and processes

Advise ICT senior leaders to shape a robust IT security service across the department and its systems

Monitor incidents and take appropriate actions to correct, notify and prevent reoccurrence

Work with the Technical teams to maintain all security tools and technology used in the department

Work with technical teams to deliver and manage cyber security and compliance across internal and externally hosted systems

Undertake scoping and delivery of penetration tests and ensure actions are resolved

Supporting wider IT functions in the evaluation and implementation of new technology and controls

Defining and documenting a security incident response program

Respond to High priority NHS Digital Care Cert alerts in line with NHS Digital requirements

Produce a monthly cyber security KPI report for the Trust Information Governance Committee and ICT senior leaders

Person Specification

Education and Qualifications

Essential

  • Educated to Degree Level or significant Cyber Security Experience plus Master’s Level or equivalent experience.
  • Hold and retain a security industry recognised qualification (HCISSP, CISSP, CISM, CISA, CRISC, CSSP).

Desirable

  • ITIL Foundation, Prince 2 Foundation. Knowledge of the full product development lifecycle

Knowledge and Experience

Essential

  • Broad based technical knowledge covering all aspects of infrastructure from networking, end user devices through to servers and data centres.
  • Ability to converse fluently, logically and confidently with a wide range of levels of staff; possess good interpersonal and communication skills.
  • Broad experience using a range of cyber security software and applications (Access control software, anti-virus software, network monitoring tools, Microsoft security features, PAMs, internet monitoring tools, email monitoring tools).
  • Experience of working in an NHS cyber security regulatory environments or similar organisations.
  • Staff management and development experience of complex technical teams.

Professional / Technical / Innovative Skills

Essential

  • Excellent communication, interpersonal and influencing skills.

Disclosure and Barring Service Check

This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.

Certificate of Sponsorship

Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab).

From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab).

Closing Date: 18 June 2026

To apply for this job please visit apps.trac.jobs.