Job summary
- Main area
- IT
- Grade
- Band 5
- Contract
- Permanent
- Hours
- Full time
- Flexible working
- Job ref
- 025-AC339-1225
- Employer
- Digital Health and Care Wales
- Employer type
- NHS
- Site
- Hybrid working
- Town
- Location to be confirmed at interview
- Salary
- £31,516 - £38,364 per annum
- Salary period
- Yearly
- Closing
- 11/01/2026 23:59
Employer heading
IT Specialist (Cyber Resilience)
Band 5
Digital Health and Care Wales is an ambitious organisation created by Welsh Government to lead on the digital transformation of health and care. It builds on the digital architecture and national services put in place by the NHS Wales Informatics Service over the past decade.
The organisation will lead on large-scale developments that make a significant difference to the people of Wales as well as to health and care professionals, such as expansion of the digital patient record and the creation of a National Data Resource. It will improve the way data is collected, shared and used. Please check your email account regularly. Successful applicants will receive all recruitment related correspondence via the email account registered on the application form.
All applicants are invited to apply in Welsh, any application submitted in Welsh will not be treated less favourably than an application made in English.
Job overview
An exciting opportunity has arisen to join the NHS Wales Cyber Resilience Unit as an IT Specialist. We are looking for someone with a proven background in Information/Cyber security, a flexible 'can-do' attitude and approach to work, and the ability to provide advice and assurance that security risk across NHS Wales is being managed appropriately.
Who are the CRU?
The NHS The NHS Wales Cyber Resilience Unit (CRU) is an independent team hosted by Digital Health and Care Wales (DHCW). The CRU has been established to operationalise the NIS regulations on behalf of Welsh Government. It has oversight of NIS audits, and the associated action plans to remediate any gaps which those audits identify.
The CRU also provide support and advice for those completing the NCSC CAF reporting framework and reporting incidents in line with legislation such as NIS and the upcoming CSRB. They are also responsible for reporting on the status of the NHS Wales cyber posture to Welsh Government as Competent Authority.
Main duties of the job
An IT Specialist (Cyber Resilience) is responsible for providing support to the CRU team to ensure the auditing and reporting service to NHS Wales is of an excellent standard in order to establish the CRU as world-class national service.
The IT Specialist will support the reporting and auditing process, carrying out their duties in a consistent, concise and professional manner, in accordance with cyber security legislation such as the NIS regulations and the upcoming CSRB, best practice, and Welsh Government requirements.
Please see the attached Job Description for a more complete picture of the post.
The ability to speak Welsh is desirable for this post; Welsh and/or English speakers are equally welcome to apply.
Working for our organisation
Digital Health and Care Wales (DHCW) is an expert national body and part of NHS Wales. We work in partnership with NHS Wales colleagues and other key stakeholders to provide national digital and data services which support the delivery of health and social care in Wales. Modern health and care services depend on good digital tools, data and information. DHCW runs or works with more than 100 services and delivers major national digital transformation programmes to support this. In addition, DHCW provides expert advice in relation to cyber security and information governance. We give frontline staff the digital tools which help them provide safer and more efficient care. We are also giving patients and the public digital tools to better manage their own health and wellbeing, empowering people to live healthier lives. We put people at the heart of what we do, working to the highest standards to deliver quality and make digital a force for good in health and care.
Working for DHCW offers lots of employee benefits, including flexible working, a competitive salary, 28 days of annual leave plus Bank Holidays and opportunities for career development. We are committed to recognising and celebrating our staff as the most valuable part of our organisation.
Detailed job description and main responsibilities
You will be able to find a full Job description and Person Specification attached within the supporting documents or please click "Apply now" to view in Trac
What we are looking for
IT Specialists in Cyber Resilience should be educated to, or working towards, degree level (preferably ICT or Cyber Security), or have an equivalent level of work experience and knowledge, preferably in an Audit, IT or Cyber Security function.
Candidates will have a good level of knowledge gained through higher-level education, training, and/or work experience at this level, across the range of work ICT and information security procedures and practices. The following would be an advantage:
-
An understanding of the NCSC Cyber Assessment Framework (CAF).
-
Theoretical and specialist knowledge gained via recognised Audit or Cyber Security qualification or equivalent.
-
Knowledge of NHS Wales or the Health sector.
There will be a requirement to travel throughout Wales between sites, as required by the job and the ability to speak Welsh is desirable for this post; Welsh and/or English speakers are equally welcome to apply.
Person specification
Qualifications and Knowledge
Essential criteria
- Educated to or working towards degree level (preferably ICT or Cyber Security) or equivalent level of work experience and knowledge.
- Evidence of relevant experience, higher-level education and/or training.
Desirable criteria
- An understanding of the NCSC Cyber Assessment Framework (CAF).
- Theoretical and specialist knowledge gained via recognised Audit or Cyber Security qualification or equivalent
- Knowledge of NHS Wales or the Health sector.
Experience
Essential criteria
- Evidence of relevant further higher-level professional development.
- Relevant experience working in an Audit, IT or Cyber Security function.
- A good understanding of application and network security
- Experience in providing guidance or technical / security support at appropriate level.
Desirable criteria
- Experience with ICT service provision in a health care setting.
- Report, SOP/Procedure writing.
- Experience working with SIEM solutions.
Skills and Attibutes
Essential criteria
- Ability to communicate clearly with technical and non-technical staff at all levels of the organisation.
- Ability to communicate clearly with technical and non-technical staff at all levels of the organisation.
- Able to evaluate and assist in selection of best practice security controls.
- A broad range of ICT Skills and understanding.
- Enthusiastic, self-motivated, looks for opportunities to improve services, staff and self.
Desirable criteria
- Welsh language skills are desirable at levels 1 or above.
Employer certification / accreditation badges
Applicant requirements
You must have appropriate UK professional registration.
Welsh language skills are desirable
Documents to download
Further details / informal visits contact
- Name
- Ana Pereira
- Job title
- Compliance Manager (Cyber Resilience)
- Email address
- [email protected]
- Additional information
List jobs with Digital Health and Care Wales in Administrative Services or all sectors