| Job Title: | Security Information Manager |
|---|---|
| Reference: | CQC0004 |
| Salary: | £55,000 inclusive of London Weighting |
| Location(s): | London |
| Industry(s): | Public Sector, NHS/Gov, Information Technology, Health/Medical, Data Specialists |
| Advertiser: | CQC |
| Employment Type: | Permanent |
| Posted: | 28-01-2010 |
Description:
Security Information Manager£55,000 inclusive of London Weighting
London
It’s our job at the Care Quality Commission (CQC) to take a joined-up view of a whole range of health and social care services, and protect the interests of everyone who uses them, particularly the most vulnerable. The sensitive nature of some of the data we work with means that information security and compliance is high on our list of priorities – which is where you come in.
In a nutshell, your role will involve providing strategic direction for information security planning, developing information security initiatives and ensuring that these are implemented across infrastructure, applications and service support. You will be comfortable in identifying risk, assessing its extent and impact and developing pragmatic business focussed solutions that manage and mitigate those risks.
You’ll develop information security in line with organisational requirements, as well as HMG’s Security Policy Framework, Connecting for Health’s Information Governance Toolkit and the Cabinet Office Data Handling Review. Managing key internal and external information security relationships, including those with the Department of Health and CESG, will be key. We’ll also look to you to provide advice on business processes, systems and operations, and to establish effective monitoring processes.
Experienced in developing and applying information security frameworks with a business focus, you’ll be well versed in supporting change processes and implementing technical, secure solutions. A public sector background would be advantageous, along with knowledge of IS0 27001, the Data Protection Act 2008, Freedom of Information Act 2000 and related legislation. You should also have experience of providing risk reports, commenting on business cases and Security Exception Risk Acceptances, and grasping technical points that come up in investigations. This, of course, will mean that you require excellent communications skills.
The role offers a great deal of autonomy and every opportunity to implement your new ideas, so you’ll need to be confident of your abilities and comfortable with change.
In return, you can look forward to an NHS pension scheme and generous annual leave entitlement.
To apply, please visit www.cqc.org.uk/aboutcqc/jobsatcqc.cfm to download an application form and job profile. Closing Date: 12 February 2010.
