Overview
Cyber Security and Risk Committee Chair and NHS England Board Advisor Jobs in Waterloo, England, United Kingdom at Health Education England
Title: Cyber Security and Risk Committee Chair and NHS England Board Advisor
Company: Health Education England
Location: Waterloo, England, United Kingdom
To support the delivery of its duties and responsibilities, the NHS England Board established a Cyber Security and Risk Committee, as a sub-committee of the Audit and Risk Assurance Committee (ARAC), which forms a core part of NHSE’s internal control and risk management system, providing assurance to the Board, through ARAC, on cyber security and insider threats. It is a multi-agency Committee which oversees governance, risk management and controls covering corporate and national systems, NHS England provided cyber services and standards for the wider system and supply chain.
The Chair of the Cyber Security and Risk Committee is a high profile, national position in the NHS, which has a vital role in establishing best practice and equipping the NHS to deliver sustainable improvement in cyber, security, insider threat and information governance. The Chair is responsible for leading the Committee and ensuring the effective discharge of its duties.
In addition, the Committee Chair is responsible for advising the Audit and Risk Assurance Committee and the Board on cyber, security, insider threat and information governance.
The postholder will be charged with championing cyber, security, insider threat and information governance within NHS England and across the NHS and will be an experienced leader in these areas, with extensive knowledge, credibility, and experience.
As the Chair of the Cyber Security and Risk Committee the post holder will chair meetings, provide leadership and strategic oversight to the Committee, and advise the Audit and Risk Assurance Committee and the Board on relevant matters as appropriate.
The post holder will be an experienced board member, either in a non-executive or executive role, and leader in cyber security with professional credibility and have a strong track record in understanding and delivering improvements in complex operating environments, with knowledge, skills and experience in cyber, security, insider threat and information governance.
ResponsibilitiesNHS England has a broad range of functions and responsibilities in relation to cyber, security, information governance, and insider threat. This includes, but is not limited to:
The operation of population-scale, complex IT services that are required to be secure, live and working 24/7. These include key enabling systems such as NHS Mail and NHS Pathways (which powers the triage engine in 111 online and the NHS website and is a system that is itself offering clinical services). NHS England is wholly accountable for build, delivery, security, safety, operations of these and many other national scale systems.
Managing and securing sensitive patient identifiable data as well as high volumes of less sensitive data (managing includes the process of collecting, curating, cleaning, some analysis and disseminating/sharing to different audiences under different safeguards).
Having direct responsibility for the security of corporate and national IT systems and providing operational cyber security support across the wider NHS system.
Alongside these responsibilities, NHSE is working in partnership to deliver the Department of Health and Social Care’s Cyber security strategy to 2030 (A cyber resilient health and adult social care system in England: cyber security strategy to 2030 – GOV.UK (www.gov.uk)), which sets out the criticality of building and maintaining our nation’s cyber defences as we look to protect …
