Information Security Officer

Are you an experienced Information Security Officer looking for a new opportunity?

Do you have an understanding of an IT Strategy and implications for infrastructure?

Do you have Excellent analytical skills with an understanding of technical architectural issues?

Who We Are

As NHS Scotland's unique provider of a national tele-health and tele-care service, we are responsible for the delivery of health advice and information by telephone and online services to the population of Scotland 24 hours a day, 365 days a year. NHS 24 is a patient-focused service providing the people of Scotland with triage, advice, guidance, referral and information on health and healthcare services.

We have six regional centres – Aberdeen, Dundee, South Queensferry, Hillington, Cardonald and Clydebank.  NHS 24 supports hybrid working, and this post can be based within any NHS 24 regional centres.  The successful candidate must be within commuting distance to a regional centre to attend if required and must also be able to travel to other regional centres when requested to attend meetings, undertake training and any other activities.

There is requirement to attend mandatory meeting in person in Lumina Regional Centre in Hillington once a week.

The Role

The information security officer will be responsible for the co-ordination and execution of continuous review and improvement of all NHS 24 systems, to ensure security compliance. Including planning and ensuring the execution of the technology information security audit across the board.

They will also act as the Lead Technical Security Authority within NHS 24 with responsibility for the three main areas of Information Assurance which are Confidentiality, Integrity and Availability of all information.

Key Responsibilities

• Coordinate and maintain the Information Security Management System (ISMS) across the entire technical NHS 24 estate.
• Coordinate the provision and applicability of NHS 24’s technical disaster recovery solution, to ensure the availability of NHS 24 data during an adverse event.
• Provide security expertise to NHS 24 projects to identify, manage and establish appropriate mitigation in respect of risk.
• Provide input and advice for all technology procurements to ensure that NHS 24 security requirements are defined within all contract specifications.
• Provide expert technical assistance to identify vulnerabilities and weaknesses in relation to all NHS 24 systems and infrastructure.

Successful Applicant will:

• Hold a tertiary qualification in Information Security and have significant experience in an Information Security role.
• Have demonstrated knowledge and experience of Programme and Project Management as defined under PRINCE 2.
• Possess an understanding of an IT Strategy and implications for infrastructure.
• Have excellent analytical skills with an understanding of technical architectural issues.
• Demonstrate knowledge of Information Security & Governance related laws and regulations such as the Data Protection Act and Computer Misuse Act.

Benefits

NHS 24 offers a complete benefits package, with a permanent contract on Band 7 with a salary ranging from £46,244 to £53,789 Per Annum (pro rata if applicable). Placement on salary scale is dependent on confirmation of previous relevant NHS service.

We also offer you many supportive policies to enhance your employee journey and have a comprehensive Employee Assistance Programme Provider, Cycle to Work Scheme, bursary scheme and a range of learning and development. As an NHS Scotland employee you will be entitled to:

• 35 days annual leave (rising to 41) pro-rata
• Development opportunities including study bursaries, e-learning and classroom-based courses
• Enhanced pay for working public holidays
• Enrolment into the Scottish Public Pensions Agency (SPPA) pension scheme
• NHS discounts on goods and services
• HELP, employee support and assistance

This is an excellent opportunity for a motivated and experienced individual who is looking for a challenging and rewarding role that will contribute to the success of a public organisation.

Interested?

Please download the Digital Job Pack and Person Specification for full details of NHS 24 and this opportunity as well as the Candidate Application Guide which will support you in your application. 

We recommend that prior to application candidates read all the information provided in the Job Pack as it contains much of the information about NHS 24 and this vacancy to support a successful application.

NHS Scotland is reducing their full time working week from 37.5 to 37 hours per week from 1 April 2024 but with no change in pay.  This reduction will also be applied pro rata for part time staff.  This advert and any subsequent offer/contract of employment therefore reflects the new working hours.  However, as not all service areas will be able to adopt the 37 hour working week immediately from 1 April 2024, you may be required to work up to an additional 30 minutes per week for a temporary period for which you would be paid until the service you are working in changes rosters or working patterns to accommodate the new reduced working week.  If you have any questions or concerns please contact the Recruiting Board. 

NHS 24 is an equal opportunities employer committed to advancing equality and particularly welcomes applications from groups of people currently underrepresented within the workforce.  We are a committed participant in the Disability Confident Leader Scheme and guarantee to interview all disabled applicants who meet the minimum essential criteria for our vacancies.