Information Security Manager - Digital jobs in United States
cer-icon
Apply on Employer Site
company-logo

NHS Ayrshire & Arran · 11 hours ago

Information Security Manager - Digital

positionHeadquarters, KY
timeFull-time
remoteOnsite
senioritySenior Level

NHS Ayrshire & Arran is dedicated to providing healthcare services to a population of 655,000. They are seeking an Information Security Manager to lead and guide on Cyber/Information Security governance, ensuring compliance with regulations and best practices while collaborating with various stakeholders.

Health CareHospital

Responsibilities

Provide leadership, technical direction and guidance on matters of Cyber / Information Security Governance, Risks/Issues, Technical Controls, Procedures, best practice and Standards
Ensure that NHS Lanarkshire achieves and maintains the assurance standards provided by Network and Information Security Regulation and Data Protection legislation
Be lead assessor for all Cyber Security Digital IT controls for NHS Lanarkshire and collaborate with partner organisations/agencies on a range of complex and sensitive security issues providing expert specialist advice on Information and Cyber Security to other IT Professionals, Clinicians and all staff in NHS Lanarkshire
Assist and advise the Head of Information Governance and Director of Digital on ensuring that NHS Lanarkshire Information Security Policies, Procedures, Active Cyber Defence Tools and Configurations are mitigating the Cyber Security Operational Risks, are following National Guidance, reflect the latest Good Practice for the Digital Estate, and aligns with the IT / Cyber Security industry
Work with our Enterprise Architect to ensure that NHS Lanarkshire’s security architecture and framework is appropriate and relevant to NHS Lanarkshire’s stated cyber security needs and objectives

Qualification

Cyber Security GovernanceInformation Security ManagementCISMCISSPIT Project ManagementHigh Availability EnvironmentAnalytical SkillsChange ManagementIncident Response KnowledgeProcurement ExperienceInterpersonal SkillsNegotiation SkillsOrganizational SkillsCommunication SkillsTeam Leadership

Required

Relevant and extensive IT experience gained through working within an IM&T setting at a senior level, in the areas of IT Infrastructure and or Applications management
Graduate or equivalent level qualification in Cyber Security or extensive experience within an Information Security role and an industry standard qualification preferred e.g. CISM, CISSP
Excellent analytical and technical skills
Hands-on experience in IT project management with formal processes
Must have sound experience in the architecture design and the operations of the high availability environment
Broad knowledge of the trends in technologies and the applicability of these technologies
Ability to quickly digest new technologies
Ability to communicate well with both technical and non-technical staff
Ability to determine and advise on the alignment of emerging technologies with the business objectives
Experience of creating or maintaining an Information Security Management System (ISMS)
Strong change management skills, including team leading experience
Knowledge of incident response and analysis, along with experience and awareness of the business issues in the NHS
Demonstrable experience of managing Information/cyber security applications and risks in a related area either in NHS, service industries or commerce
Experience of staff management/leadership
Evidence of Continuing Personal Development
Experience of procurement of information systems and associated tender processes
Ability to influence others and develop and maintain effective working relationships with senior managers, clinicians, administration staff, Informatics staff and third party service providers
Excellent interpersonal, negotiation, facilitation and communication skills
Ability to understand, analyse and re-engineer complex processes
Excellent organisational & time management skills
Ability to negotiate & influence change at all levels
Ability to understand, analyse & disseminate complex concepts to a wide range of staff with varying levels of technical understanding
A driving licence is required, this must be a full UK/EU/EEA licence

Preferred

Hold an industry standard Cyber/Information Security qualification e.g. CISM/CISSP
Evidence of continual professional development in an IT or Health Service related area
Experience in a senior cyber or information security role
Experience of managing Information/cyber security applications and risks in a related area either in NHS, service industries or commerce
Experience of reviewing working practices. Technology and information systems to ensure they are secure and meeting policy and legal requirements
Evidence of experience in a similar role
Experience of working with third party incident response specialists e.g. NCSC
Knowledge of Data Protection / privacy legislation
Prior knowledge of the main IT Systems used in NHS Scotland (i.e. Trakcare, Clinical Portal etc)
Knowledge of process and data flow techniques in planning and implementation activities in a complex environment
Knowledge of standard Microsoft desktop products, i.e. Microsoft Office.. MS project
Good knowledge of data Protection issues and IT security
Critical appraisal and report writing skills
Understand and interpret legislation associated with information governance
Ability to analyse highly complex incidents which may be open to external scrutiny e.g. court
Manage a broad range of complex activities which complement the cyber security strategy
Authoring and maintaining clear, easy to understand organisation wide policies to ensure compliance with legislation
Proven ability to manage own workload and often conflicting priorities
Ability to deal with sensitive information with discretion
Ability to deal diplomatically with staff and the public
Experience of developing and/or delivering training for cyber and information security
Ability to understand, analyse and re-engineer complex processes
Expertise in the subject areas and able to influence strategy, policy and operational decision-making

Benefits

A minimum of 27 days annual leave increasing with length of service
A minimum of 8 days of public holidays
Membership of NHS Pension Scheme, with life insurance benefits
Paid sick leave increasing with length of service
Occupational health services
Employee counselling services
Work-life Balance policies and procedures

Company

NHS Ayrshire & Arran

twittertwittertwitter
company-logo
NHS Ayrshire & Arran provides healthcare and social care services to the ayrshire and arran region.
location
Ayrshire, Iowa, USA
people-size1001-5000 employees
web-link
https://www.nhsaaa.net

Funding

Current Stage
Late Stage

Recent News

businessInsider
Two Scottish health boards needed large loans to break even in last financial year
2025-11-04
Company data provided by crunchbase