Job summary

The IT Risk, Governance & Cyber Team is responsible for ensuring that the Trust’s applications, systems &data is secure and protected. They will manage all areas of IT Risk and Governance as well as providingassurance and reporting both within the IM&T directorate and up to board level. You will need to have a keyeye for detail and have excellent written and oral communication skills.

Main duties of the job

The main duties are wide and varied, including, but not limited to.Responsible for monitoring, analysing, providing assurance and reporting on various tools including:o SIEM alerts.o Identity and Access Management tools.o Vulnerability testing and the remediation of any vulnerabilities.o Advanced threat protection, intrusion detection and prevention systems.

Responsible for various business as usual activities, including, but not limited to:o Responding to security incidents.o Ensuring that all cyber risks are monitored and mitigated.o Assisting in the preparation of incident response and disaster recovery planso Responsible for developing and configuring both ad-hoc and scheduled detailed/highly technical reports within Excel & PowerBio Collaborate with the relevant IM&T teams to ensure that IT health checks and annual Pen testing activities have taken place.o Write and publish complete technical documentation and user guides.o Responsible for the creation, development and maintenance of Trust wide policies, ensuring they are regularly reviewed and are fit for purpose.

About us

This is an exciting time to join the London Ambulance Service Trust as we merge various functions withinthe IM&T directorate to form a brand new team focusing on Cyber Operations, IT Risk & IT Governance/Assurance

Date posted

17 November 2022

Pay scheme

Agenda for change

Band

Band 6

Salary

£40,448 to £47,965 a year per annum inclusive of HCAS

Contract

Permanent

Working pattern

Full-time

Reference number

308-CORP-2372

Job locations

Waterloo

London

SE1 8SD

Job description

Job responsibilities

The IT Risk, Governance & Cyber team is responsible for protecting the organisations applications, information and systems based on confidentiality, integrity and availability.

The team also ensures that all incidents, risks, data breaches and vulnerabilities are responded to and remediated in a timely manner.

The purpose of the IT Risk, Governance & Cyber Analysts role is to assist all IM&T departments in providing adequate and cost-effective protection against cyber threats and all identified Cyber Security risks. IM&T is a critical dependency in healthcare, therefore, availability of the Trusts digital services to assist with patient care is essential.

Responsible for the day to day management of Cyber related alerts and incidents, ensuring they are responded to proactively.

Job description

Job responsibilities

The IT Risk, Governance & Cyber team is responsible for protecting the organisations applications, information and systems based on confidentiality, integrity and availability.

The team also ensures that all incidents, risks, data breaches and vulnerabilities are responded to and remediated in a timely manner.

The purpose of the IT Risk, Governance & Cyber Analysts role is to assist all IM&T departments in providing adequate and cost-effective protection against cyber threats and all identified Cyber Security risks. IM&T is a critical dependency in healthcare, therefore, availability of the Trusts digital services to assist with patient care is essential.

Responsible for the day to day management of Cyber related alerts and incidents, ensuring they are responded to proactively.

Person Specification

Qualifications

Essential

  • Educated to degree level in a Cyber Security discipline, or at least 1 years relevant operational experience
  • CompTIA/CISCO/SANS/Crest/EC Council certifications such as CyberOps Associate, Certified SOC Analyst (CSA), Certified Ethical Hacker, CompTIA Security+ or relevant experience in Cyber Security
  • Cyber Security Training certifications such as Cybrary, Hack-the-box or relevant experience in Cyber Security
  • Information Technology Infrastructure Library (ITIL) Qualified, or experience of working within an IT Service framework
  • Experience

    Essential

  • Previous experience with SIEM tools/logs and alerts
  • Experience with vulnerability scanning technology and using findings to mitigate and remediate vulnerabilities
  • Experience in conducting high quality report writing and analysis on the current security status, and analyse and report on security events
  • Proven ability to interpret security tools; identify events, contain them and escalate appropriately
  • Experience of producing, analysing and interpreting information and data, including manipulating highly complex technical data sets, and, presenting/ reporting findings to senior management
  • Experience of writing reports using Power Bi, or equivalent
  • Experience of using, creating and developing Excel (using formulae, functions, complex calculations and other statistical techniques
  • Experience of identifying and developing systems/processes to improve the quality and integrity of data and promote efficient working
  • Person Specification

    Qualifications

    Essential

  • Educated to degree level in a Cyber Security discipline, or at least 1 years relevant operational experience
  • CompTIA/CISCO/SANS/Crest/EC Council certifications such as CyberOps Associate, Certified SOC Analyst (CSA), Certified Ethical Hacker, CompTIA Security+ or relevant experience in Cyber Security
  • Cyber Security Training certifications such as Cybrary, Hack-the-box or relevant experience in Cyber Security
  • Information Technology Infrastructure Library (ITIL) Qualified, or experience of working within an IT Service framework
  • Experience

    Essential

  • Previous experience with SIEM tools/logs and alerts
  • Experience with vulnerability scanning technology and using findings to mitigate and remediate vulnerabilities
  • Experience in conducting high quality report writing and analysis on the current security status, and analyse and report on security events
  • Proven ability to interpret security tools; identify events, contain them and escalate appropriately
  • Experience of producing, analysing and interpreting information and data, including manipulating highly complex technical data sets, and, presenting/ reporting findings to senior management
  • Experience of writing reports using Power Bi, or equivalent
  • Experience of using, creating and developing Excel (using formulae, functions, complex calculations and other statistical techniques
  • Experience of identifying and developing systems/processes to improve the quality and integrity of data and promote efficient working
  • Certificate of Sponsorship

    Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab).

    From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab).

    Additional information

    Certificate of Sponsorship

    Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab).

    From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab).