About the role

Do you want to help NHS England shape the future of health outcomes for people in England and equip health and care workers with all aspects of security services to reduce impact to patient outcomes?

Here at NHS England, we use the nation’s health data to drive research and transform services, supporting NHS Staff at work, helping people to get the best care.

An extraordinary health and care service deserves exceptional talent to support its delivery.

The security landscape is constantly evolving, and this is your opportunity to think creatively and positively contribute towards improving the security resilience of health and care organisations across England.

The Cyber Operations function sits within the Transformation Directorate in NHS England.  Cyber Operation's purpose is to support safe care and build public trust by building NHS England’s cyber resilience and enabling the wider health system to be cyber resilient.
Our regions are split into 7 geographical areas and each area has a Head of Security allocated to it. The Head of Security role has developed over the years and their sphere of influence has grown. To help support the Head of Security and ensure they can deliver effective engagement and reporting across their area of responsibility, this deputy role has been developed initially to support the Midlands region.


As a Cyber Security Lead- Regional Cyber Specialist, you will provide the Midlands region of England with information security subject matter expertise. This will range from providing tactical advice and guidance during a cyber security incident, to assurance of cyber security strategies and consultancy on aspects of strategic development.

You will join an 8 strong team of cyber professionals who are key to supporting the delivery, augmentation, awareness, and application of the services and offering regional health organisations with information security subject matter expertise when needed.

Some travel to visit health organisations across the Midlands will be expected. There may be a requirement to support in other areas, however, travel in other areas will be limited.

Some of your responsibilities will include:

  • Facilitating regional face to face meetings  
  • Leading on the engagement with local NHS organisation
  • Helping collate/create regional/ICS stats/KPIs, including providing info for briefings/presentations
  • Data source identification and analysis
  • Participation in discussions regarding the delivery of central cyber security products and services, e.g. Technical Remediation 
  • Support with other tasks – project support if Head of Security is Chairing meetings (Regional fora, Connected Medical Devices Local Organisation Working Group etc)  
  • Act as deputy to the Head of Security 

Important: Please be aware there are residency requirements you need to meet:

All NHS England Cyber Security personnel must hold security clearance SC level as a minimum. To meet National Security Vetting requirements, you must have resided in the UK for a minimum of 3 out of the past 5 years for SC clearance. Candidates who were posted abroad for service with HM Government, Armed Forces or within a UK government role - will still be considered. More information on SC clearance can be found here.

Please make sure you meet these requirements before applying for this role. You don’t need to have SC already, however, failure to achieve the requirements for SC after offer, will result in the job offer being withdrawn. 

About you

To thrive in this engagement role within in the Cyber Delivery Function in Cyber Operations, you will be able to demonstrate your knowledge and experience in the following areas:

Computer Crime - Demonstrable knowledge of concepts, tools and practices of dealing with computer crime; ability to detect and prevent business crimes that involve computers/networks as instruments.

Information Security Operation Centre (ISOC) - Proven knowledge of modules, processes and technologies of Information Security Operation Centre (ISOC); ability to detect, respond and utilise related platform and applications to perform cyber security initiatives.

Cybersecurity Risk Management - Detailed knowledge of tools, techniques, approaches and processes of cybersecurity risk management; ability to ensure organisational network operation and minimise negative effect by cybersecurity risks.

Information Security Audits - Specialist knowledge of and the ability to utilise tools and techniques for assessing the effectiveness of information security measures, identifying potential risk exposures, and protecting the availability, confidentiality and audit trails of information from destruction or manipulation.

Consulting - Extensive knowledge of techniques, roles, and responsibilities in providing technical or business guidance to clients, both internal and external; ability to apply this knowledge appropriately to diverse situations.

Information Assurance - Specialist knowledge of and the ability to protect information and information systems while ensuring their confidentiality, integrity and availability.

Vulnerabilities Assessment - Extensive knowledge of vulnerability assessment tools, techniques, models, and systems; ability to utilises the knowledge to identify vulnerabilities on network, operating system, mobile application, etc

You can find out more about the requirements of the role in the attached role profile, however, we encourage applications from people of all backgrounds and abilities.  Don't worry if you don’t meet all the criteria we’ve suggested – knowledge and experience you've gained in other ways might make us think about the role differently.

What's in it for you 
  • a role as part of a dynamic team using data and digital technology to transform health and care
  • a range of opportunities to build your experience in an environment where your
    work has a direct and positive impact
  • a real commitment to your personal and professional development with access
    to a broad range of learning opportunities

About us

We are a great place to work. What we do matters.

From April 2023, NHS England, Health Education England and NHS Digital became one single organisation, putting workforce, data, digital and technology at the heart of our plans to transform the NHS.  Our mission, to use data and technology to improve lives remains and we are currently recruiting critical, priority roles. Successful applicants should be aware that roles may be subject to change in the new organisation.

NHS England leads the NHS in England to deliver high quality care for all. We support NHS organisations to deliver better outcomes for our patients and communities, work to get the best possible value for taxpayers, and drive improvement across the NHS. This includes improving the health of the population and the quality of care, tackling inequalities, and delivering care more efficiently. 
Our outstanding teams are passionate about technology and public service, making use of everyone’s skills to improve people’s lives.

We collaborate to deliver world class tech and intelligence, so come and join us. We are committed to sustainability, diversity and inclusion; our people are at the heart of what we do.

To find out more about the type of work we do, please take a look at our website.

Why you should apply

We value the different experiences our people bring to their work. We're working to create an environment where everyone can make a full contribution no matter their background, identity, or circumstances.  Which means, we encourage applications from people of all backgrounds and abilities.  

Our work matters. You matter.

What we offer you:

  • we're moving to a hybrid working approach which offers you an informal, flexible way of blending home and office working. Colleagues with a contractual office base are expected to spend, on average, at least 40% of their time working in-person.
  • flexible working opportunities - we value and respect the diversity of our employees, and applications from prospective candidates who require flexible working arrangements are welcomed; these include part-time hours, job sharing, flexible hours and part-remote set ups
  • 27 days annual leave increasing to 33 days with service
  • a generous pension (with our contribution equal to 20.6% of your earnings)
  • NHS Discounts including shops, restaurants, gym, mobile phones, and insurance
  • employee benefit schemes including our Season Ticket Loan, Car Lease and Bike to Work schemes

We use NHS Terms and Conditions of Service (Agenda for Change) pay rates. Most new employees to the NHS will start at the bottom of the band. You can find more information about Agenda for Change pay rates here Pay scales for 2023/24 | NHS Employers.

Next steps

Our application process is straightforward, you will need to upload and CV and provide a supporting statement. The supporting statement is your opportunity to evidence how you meet the skills and experience highlighted in the "About you" section of the advert. 

Remote interviews will take place from 29th April via MS Teams. Applicants who are shortlisted for interview will be contacted by email.

If you require a reasonable adjustment or support with your application, please contact [email protected] 

This post is not exempt from the Rehabilitation of Offenders Act 1974. We only ask applicants to disclose convictions which are not yet spent / unspent under the Rehabilitation of Offenders Act 1974. Following an offer of employment, we will carry out a Basic Disclosure and Barring Service (DBS) check as part of the pre-employment check process.


Other jobs like this