Information Security Analyst

NHS Resolution is an arm's–length body of the Department of Health and Social Care. We provide expertise to the NHS on resolving concerns and disputes fairly, sharing learning for improvement and preserving resources for patient care.

Our purpose is to provide expertise to the NHS to resolve concerns fairly, share learning for improvement and preserve resources for patient care, and our main functions include:

• Claims Management: dealing with claims for compensation on behalf of the NHS in England
• Practitioner Performance Advice: managing concerns raised about the performance of doctors, dentists and pharmacists
• Primary Care Appeals: dealing with appeals and disputes between primary care contractors and NHS England
• Safety and Learning: helping providers of NHS care to understand their own claims risk profiles to target safety activity and share learning across the health service nationwide.
• IT and Facilities: enabling us to deliver our services effectively and keep the information we hold safe with robust data security
• Corporate services: providing expertise in finance, human resources/organisational development, corporate governance and business development

The Role

NHS Resolution is looking to recruit an Information Security Analyst to work in the Digital, Data and Technology Department (DDaT). The Information Security Analyst will be working at the boundary between technology and compliance ensuring that penetration tests, compliance audits and corrective actions are taken. GRC will play a main part in the role, as you will need to lead on the management of effective monitoring systems to measure compliance with professional and regulatory standards.

Your Profile

• Previous experience in undertaking compliance audits
• Knowledge and experience using security frameworks such as ISO27001, GDPR
• Knowledge and experience of Visio, Virtualisation (Hyper–V and VMware) technologies
• Detailed knowledge of security, governance, implementation for both on premise and cloud–based technologies (Active Directory)
• Detailed knowledge and understanding of database and information system architecture
• Knowledge and understanding of Data Protection Act/General Data Protection Regulations (2018)
• Previous management experience or any relevant qualification
• Ability to communicate and liaise with staff at all levels within NHS Resolution as well as external stakeholders to identify any remediate risk

As an employer of choice, NHS Resolution offers an extensive benefits package including:

• Competitive salary package up to GBP55,049 per annum,dependent on experience
• Generous allowance of 27 days annual leave – increasing with service and holiday buying option
• Generous NHS pension scheme
• A healthy work–life balance for all employees with a strong flexible working culture and much more!

Closing date: 26th March 2023

Interviews will take place virtually from 3rd April 2023