Cyber Security Engineer
The Christie NHS FT
- Manchester, England, United Kingdom
- Manchester, England, United Kingdom
Über
As a Cyber Security Analyst at The Christie, your main duties will encompass a range of responsibilities crucial to protecting our digital infrastructure and data. You will play a key role in administering and optimising our cyber security toolset, which includes antivirus solutions, vulnerability scanners, and threat protection services. Your proactive approach will ensure that all cyber security tools are configured according to best practices and compliant with NHS guidelines.
Responsibilities
Administer and optimise the use of the Trust's cybersecurity toolset, which includes antivirus software, vulnerability scanners, SIEM systems, threat protection services, and patch management solutions.
Ensure that all cybersecurity tools are configured according to best practices and compliant with NHS guidelines and standards.
Conduct continuous monitoring of the Trust’s IT systems to detect, analyse, and respond to cybersecurity incidents and breaches.
Manage the incident response process, including documentation and reporting, to mitigate risks and minimise the impact of security breaches.
Assess and manage cybersecurity risks associated with IT systems and operations.
Manage, maintain, and update firewall rules in line with security best practice and ITIL change management.
Ensure compliance with relevant legal and regulatory requirements, including GDPR and NHS-specific security mandates.
Maintain the Trust's risk register, updating and evaluating the effectiveness of security measures regularly.
Prepare comprehensive reports on the state of the Trust’s cybersecurity, detailing vulnerabilities, incidents, and overall security posture for review by senior management.
Document security breaches and the measures taken to resolve them in a timely and detailed manner.
Communicate effectively with internal and external stakeholders to raise awareness about cybersecurity issues and strategies.
Provide regular updates to senior management and non‑technical staff on critical security matters and preventive measures.
Collaborate with Digital Services teams to design and implement system enhancements that bolster the Trust’s cybersecurity defences.
Participate in the planning and execution of security projects, ensuring alignment with strategic goals and IT infrastructure developments.
Work with audit teams to address any findings and implement recommended changes to security practices and controls.
Stay abreast of the latest cybersecurity trends, tools, and practices through continuous professional development.
Facilitate and participate in cybersecurity training sessions for other IT staff and end‑users within the Trust to promote security awareness and best practices.
Ensure that all backup systems are secure, and that data integrity is maintained during backup and recovery processes.
Maintain flexibility to respond to urgent cybersecurity issues outside of normal working hours as required.
Person Specification Qualifications (Essential)
University Degree in a related subject or demonstrable equivalent experience in Cyber Security.
Working toward IT certifications in security (ISC, ISACA, CompTIA, etc.).
Qualifications (Desirable)
Current or prior IT Infrastructure certificates.
ITIL – IT Service Management.
Experience (Essential)
Experience of enterprise scale infrastructure and how all the components work together.
Experience of dealing with malware, working with antivirus tools, Microsoft Defender for Endpoint, Windows patching.
Experience of firewall configurations, rules, and network topologies.
Experience with security tools (e.g. Nessus, Pentera, LogPoint, and penetration testing).
Patch and vulnerability remediation experience.
Anti‑Virus tools experience.
Experience (Desirable)
Previous IT infrastructure experience.
Previous NHS experience.
Experience with Palo Alto firewalls.
Skills & Abilities (Essential)
Able to troubleshoot complex IT issues involving multiple teams and technologies.
Ability to ensure the security systems and tools we use are up‑to‑date and managed.
Strong analytical abilities to diagnose and resolve complex technical issues efficiently.
Excellent verbal and written communication skills to effectively interact with all levels of staff and external partners.
Ability to manage multiple projects simultaneously, prioritising tasks to meet deadlines and organisational objectives.
High adaptability to rapidly changing technology environments and the ability to quickly learn and implement modern technologies.
Skills & Abilities (Desirable)
A good and up‑to‑date knowledge of Windows and Linux operating systems.
Familiar with software updates and the need for continuous assessment.
Ability to think creatively to develop new solutions or approaches to ongoing challenges.
Knowledge (Essential)
Excellent knowledge of security best practices, standards, and frameworks (e.g. MITRE).
Excellent knowledge of the Windows operating system, workstation, and server.
Understanding of Linux Operating systems.
Experience of the change management process, problem management, and incident handling.
Threat intelligence and threat assessment.
Knowledge (Desirable)
Working knowledge of NHS and government cyber security systems (e.g. CareCerts, CSOC, DSPT, and NCSC).
Communication (Essential)
Ability to articulate complex technical information clearly to non‑technical staff and senior management.
Strong people skills to foster positive relationships with team members, other departments, and external partners.
Proficient in creating detailed documentation, including system configurations, standard operating procedures, and project reports, ensuring they are understandable and accessible.
Communication (Desirable)
Confident in discussing a wide range of IT security related information with other teams.
Effective negotiation skills when dealing with vendors, contractors, and other external parties to secure favourable terms and maintain productive relationships.
Personal and People Development (Essential)
Commitment to continuous professional development, staying updated with the latest industry trends, technologies, and best practices.
Personal and People Development (Desirable)
Willingness to take on leadership training and roles, preparing for potential advancement within the organisation.
Ability to mentor and coach team members, enhancing their technical skills and career progression.
Freedom to Act (Essential)
Empowered to make independent decisions regarding system configurations, troubleshooting without direct supervision.
Has the discretion to apply best practices and innovative solutions to resolve technical challenges and optimise system performance.
Freedom to Act (Desirable)
Participates in the development and revision of IT policies and procedures, ensuring they align with current best practices and organisational objectives.
Other (Essential)
The ability to participate in an On‑Call rota with a commute to the Trust within 1 hour.
Disclosure and Barring Service Check This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.
Certificate of Sponsorship Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the
website .
From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement.
Employer Details Employer name : The Christie NHS FT
Address : IT ICT - E00387
Wilmslow Road
Manchester
M20 4BX
Employer's website
#J-18808-Ljbffr
Sprachkenntnisse
- English
Hinweis für Nutzer
Dieses Stellenangebot stammt von einer Partnerplattform von TieTalent. Klicken Sie auf „Jetzt Bewerben“, um Ihre Bewerbung direkt auf deren Website einzureichen.