Committee Chair and NHS Board Advisor
Location
Remote | United Kingdom
Job description
Cyber Security and Risk Committee Chair and NHS
England Board Advisor
NHS England
The closing date is 15 March 2024
Job summary
To support the delivery of its duties and responsibilities, the
NHS England Board established a Cyber Security and Risk Committee, as a
sub-committee of the Audit and Risk Assurance Committee (ARAC), which forms a
core part of NHSE's internal control and risk management system, providing
assurance to the Board, through ARAC, on cyber security and insider threats. It
is a multi-agency Committee which oversees governance, risk management and
controls covering corporate and national systems, NHS England provided cyber
services and standards for the wider system and supply chain.
The Chair of the Cyber Security and Risk Committee is a high
profile, national position in the NHS, which has a vital role in establishing best
practice and equipping the NHS to deliver sustainable improvement in cyber,
security, insider threat and information governance. The Chair is responsible
for leading the Committee and ensuring the effective discharge of its duties.
In addition, the Committee Chair is responsible for advising
the Audit and Risk Assurance Committee and the Board on cyber, security,
insider threat and information governance.
Main duties of the job
The postholder will be charged with championing cyber,
security, insider threat and information governance within NHS England and
across the NHS and will be an experienced leader in these areas, with extensive
knowledge, credibility, and experience.
As the Chair of the Cyber Security and Risk Committee the post
holder will chair meetings, provide leadership and strategic oversight to the
Committee, and advise the Audit and Risk Assurance Committee and the Board on
relevant matters as appropriate.
The post holder will be an experienced board member, either in
a non-executive or executive role, and leader in cyber security with
professional credibility and have a strong track record in understanding and
delivering improvements in complex operating environments, with knowledge,
skills and experience in cyber, security, insider threat and information
governance.
About us
NHS England has a broad range of functions and responsibilities
in relation to cyber, security, information governance, and insider threat.
This includes, but is not limited to:
- The operation of population-scale,
complex IT services that are required to be secure, live and working 24/7.
These include key enabling systems such as NHS Mail and NHS Pathways (which
powers the triage engine in 111 online and the NHS website and is a system that
is itself offering clinical services). NHS England is wholly accountable for
build, delivery, security, safety, operations of these and many other national
scale systems.
- Managing and securing sensitive patient
identifiable data as well as high volumes of less sensitive data (managing
includes the process of collecting, curating, cleaning, some analysis and
disseminating/sharing to different audiences under different
safeguards).
- Having direct responsibility for the
security of corporate and national IT systems and providing operational cyber
security support across the wider NHS system.
Alongside these responsibilities, NHSE is working in
partnership to deliver the Department of Health and Social Care's Cyber
security strategy to 2030 (A cyber resilient health and adult social care
system in England: cyber security strategy to 2030 - GOV.UK (
which sets out the criticality of building and maintaining our nation's cyber
defences as we look to protect the functions and services on which we all
depend.
Job description
Job responsibilities
In this role, the person should expect to:
- Provide credible and visible cyber,
security, insider threat and information governance expertise.
- Ensure effective, proportionate
management of the critical infrastructure NHS England delivers.
- Provide national influence and
leadership to the health system, to the Department of Health and Social Care
and Ministers, focusing on improving resilience and effectively mitigating
risk.
- Work with the Committee members to
develop and oversee delivery of NHS England’s cyber strategy to ensure that it
carries out its statutory responsibilities and delivers its mandate, meeting
its targets and objectives, and ensuring that the Executive Team is held to
account for doing so.
- Ensuring the Committee reinforces the
values of the organisation by setting a high standard for ethics and
responsible business, and by maintaining and enhancing NHS England’s reputation
as an open and independent body, which puts the interests of the public and
patients first.
- Setting the agenda for the Committee,
ensuring appropriate engagement with members and colleagues across the
organisation, and from the wider system, providing counsel, advice, challenge
and support to management; establishing an environment of constructive debate
on key issues in order to build consensus.
- Ensuring that management develops and
maintains strong working relationships with the Department of Health and Social
Care, the other health arms-length bodies and other stakeholders.
- Build NHS partnerships and governance
priorities with system collaboration, ensuring that cyber, security, insider
threat and information governance is central to our approach.
- Work with the NHS England Board,
National Directors, National Specialty Advisors, and other key Stakeholders in
driving forward the cyber strategy and implementation plan.
- Horizon scan to provide intelligence for
the Committee in terms of future improvement opportunities.
- Attend and contribute to relevant
internal and external meetings as a Committee representative.
- Contribute to national policy
development and implementation.
- Report and escalate issues to the NHS England
Audit and Risk Assurance Committee, contributing to and driving discussions on
cyber, security, information governance and insider threat strategy and
risk.
Person
Specification
Knowledge and
experience
Essential
- Expert knowledge of cyber security,
insider threat and information governance to support improvement across a range
of organisations and operating environments.
Knowledge and
experience
Essential
- Chairing skills, including complex
interdisciplinary meetings at a senior level.
Knowledge and
experience
Essential
- Ability to manage competing or differing
views, and positively challenge to achieve the desired outcome.
Knowledge and
experience
Essential
- Proven ability to build and maintain
meaningful relationships to promote and embed continuous
improvement.
Knowledge and
experience
Essential
- Ability to generate and develop good
working relations across NHS organisations at all levels, using influence and
persuasion to articulate a balanced view and to encourage constructive
debate.
Knowledge and
experience
Essential
- Ability to recognise discrimination and
bias in its many forms and promote Equality, Diversity, and Inclusion within
the operation of the Committee.
Knowledge and
experience
Essential
- Experience of assessing cyber, security,
insider threat and information governance improvement initiatives and their
impact to support identification of a best practice and subsequent adoption
across other organisations.
Knowledge and
experience
Essential
- Experience operating on the board of a
high-profile national organisation, in either a non-executive or executive
role, with an understanding of corporate governance.
Knowledge and
experience
Essential
- Experience operating on the board of a
high-profile national organisation, in either a non-executive or executive
role, with an understanding of corporate governance.
Knowledge and
experience
Essential
- Proven experience of influencing across
complex and multifaceted systems to gain buy-in and subsequent delivery of a
range of challenging improvement objectives.
Certificate of Sponsorship
Applications from job seekers who require current Skilled
worker sponsorship to work in the UK are welcome and will be considered
alongside all other applications. For further information visit the UK Visas
and Immigration website (Opens in a new
tab) .
From 6 April 2017, skilled worker applicants, applying for
entry clearance into the UK, have had to present a criminal record certificate
from each country they have resided continuously or cumulatively for 12 months
or more in the past 10 years. Adult dependants (over 18 years old) are also
subject to this requirement. Guidance can be found here Criminal records checks
for overseas applicants (Opens in a new tab) .
Job tags
Salary
£7.88k per annum
