Job summary
- Main area
- IT
- Grade
- Band 7
- Contract
- Permanent
- Hours
- Full time
- Flexible working
- Job ref
- 025-AC119-0625
- Employer
- Digital Health and Care Wales
- Employer type
- NHS
- Site
- Hybrid working
- Town
- Location to be confirmed at interview
- Salary
- £46,840 - £53,602 per annum
- Salary period
- Yearly
- Closing
- 18/06/2025 23:59
Employer heading
Security Specialist Design
Band 7
Digital Health and Care Wales is an ambitious organisation created by Welsh Government to lead on the digital transformation of health and care. It builds on the digital architecture and national services put in place by the NHS Wales Informatics Service over the past decade.
The organisation will lead on large-scale developments that make a significant difference to the people of Wales as well as to health and care professionals, such as expansion of the digital patient record and the creation of a National Data Resource. It will improve the way data is collected, shared and used. Please check your email account regularly. Successful applicants will receive all recruitment related correspondence via the email account registered on the application form.
All applicants are invited to apply in Welsh, any application submitted in Welsh will not be treated less favourably than an application made in English.
Please be advised that there is a temporary top up for Bands 2 and 3 to reflect the incorporation of the top up to the living wage of £12.60 per hour - £24,638 per annum.
This temporary top up will be in place until the annual pay uplift for 2025/26 is confirmed
Job overview
The Cyber Security team are looking to recruit a specialist to join the team and work alongside lead roles and team members, in order to assist with the design, development & assurance of new services
What we are looking for
We are seeking candidates with the commitment, experience, skills and knowledge to provide the necessary level of cyber security involvement for services across NHS Wales. Candidates must be capable of managing the robust and consistent design and assurance required to support the delivery new digital services. Experienced in managing the delivery and provision of cyber security services within a large and complex organisation, you will have excellent planning and organization skills, coupled with practical knowledge of risk management methodology. An exceptional communicator, you shall be expected to establish working relationships with staff at all levels within DHCW, including clinicians and the wider user community.
Main duties of the job
As a specialist, you will primarily be responsibility for the workstream within the national assurance group, ensuring that all proposals receive a thorough review to identify all necessary cyber security activities and are fully integrated within the internal risk management process.
This role will also be responsible for ensuring the correct implementation of the cyber security strategies to enhance the protection of critical national infrastructure and clinically critical applications. Working closely with stakeholders at all levels within local Health Boards / Trusts, other public sector organisations in Wales, and security professionals throughout the UK in order to ensure that our systems are positioned to proactively identify, respond, recover and ultimately defend against Cyber related threats.
Working for our organisation
Digital Health and Care Wales (DHCW) is an expert national body and part of NHS Wales. We work in partnership with NHS Wales colleagues and other key stakeholders to provide national digital and data services which support the delivery of health and social care in Wales. Modern health and care services depend on good digital tools, data and information. DHCW runs or works with more than 100 services and delivers major national digital transformation programmes to support this. In addition, DHCW provides expert advice in relation to cyber security and information governance. We give frontline staff the digital tools which help them provide safer and more efficient care. We are also giving patients and the public digital tools to better manage their own health and wellbeing, empowering people to live healthier lives. We put people at the heart of what we do, working to the highest standards to deliver quality and make digital a force for good in health and care.
Working for DHCW offers lots of employee benefits, including flexible working, a competitive salary, 28 days of annual leave plus Bank Holidays and opportunities for career development. We are committed to recognising and celebrating our staff as the most valuable part of our organisation.
Detailed job description and main responsibilities
You will be able to find a full Job description and Person Specification attached within the supporting documents or please click “Apply now” to view in Trac
We are looking for candidates who can demonstrate proven experience and strong skills in the following areas:
-
A good understand of cyber security design process and have the ability to take a structured approach when reviewing system design.
-
A strong technical background - including networking, computing, software development, systems integration and compliance frameworks.
-
Formal qualifications in cyber security.
-
An understanding of malicious attack processes along with the ability to verify services for vulnerabilities that might allow those attack to be achieved.
-
Good verbal and written communications skills and must understand when to escalate concerns to line manager.
-
The ability to work to very tight deadlines and work proactively under pressure
-
Deliver projects and work packages against individual and team Key Performance Indicators
-
Proven ability to manage large scale Cyber Security projects, and appropriate communications
-
A good understanding of best practice security controls for market leading technologies
-
Must be keen and proactive and able to work on your own initiative.
Person specification
Qualifications and Knowledge
Essential criteria
- Educated to degree level (or equivalent qualification / experience) in an associated professional field
- Technical knowledge of application and network security.
Desirable criteria
- Registered with a relevant informatics professional body
- FEDIP Practitioner, or equivalent recognised Intermediate level Professional qualification.
Experience
Essential criteria
- Experience of conducing Cyber reviews of IT systems.
- Experience of producing risk reports to a hight level and delivering them to project teams.
Desirable criteria
- A clear understanding and appreciation of NHS Wales’ national infrastructure and organisational structures.
- Experience of working in an NHS/Healthcare or Public Sector environment
Skills and Attributes
Essential criteria
- Excellent communication and interpersonal skills when dealing with highly technical and complex information to a wide range of stakeholders across organisational boundaries.
- Confident in dealing with and resolving scenarios where people’s opinions may conflict.
Desirable criteria
- Welsh language skills at level 1, or above
Employer certification / accreditation badges
Applicant requirements
Welsh language skills are desirable
Documents to download
Further details / informal visits contact
- Name
- Andy Shanahan
- Job title
- Cyber Assurance Lead
- Email address
- [email protected]
List jobs with Digital Health and Care Wales in Administrative Services or all sectors