Cyber Security and Risk Committee Chair and Nhs - London, United Kingdom - NHS England

NHS England
NHS England
Verified Company
London, United Kingdom

2 days ago

Tom O´Connor

Posted by:

Tom O´Connor

beBee Recruiter
Description

To support the delivery of its duties and responsibilities, the NHS England Board established a Cyber Security and Risk Committee, as a sub-committee of the Audit and Risk Assurance Committee (ARAC), which forms a core part of NHSE's internal control and risk management system, providing assurance to the Board, through ARAC, on cyber security and insider threats.

It is a multi-agency Committee which oversees governance, risk management and controls covering corporate and national systems, NHS England provided cyber services and standards for the wider system and supply chain.


The Chair of the Cyber Security and Risk Committee is a high profile, national position in the NHS, which has a vital role in establishing best practice and equipping the NHS to deliver sustainable improvement in cyber, security, insider threat and information governance.

The Chair is responsible for leading the Committee and ensuring the effective discharge of its duties.


In addition, the Committee Chair is responsible for advising the Audit and Risk Assurance Committee and the Board on cyber, security, insider threat and information governance.


The postholder will be charged with championing cyber, security, insider threat and information governance within NHS England and across the NHS and will be an experienced leader in these areas, with extensive knowledge, credibility, and experience.


As the Chair of the Cyber Security and Risk Committee the post holder will chair meetings, provide leadership and strategic oversight to the Committee, and advise the Audit and Risk Assurance Committee and the Board on relevant matters as appropriate.


The post holder will be an experienced board member, either in a non-executive or executive role, and leader in cyber security with professional credibility and have a strong track record in understanding and delivering improvements in complex operating environments, with knowledge, skills and experience in cyber, security, insider threat and information governance.


NHS England has a broad range of functions and responsibilities in relation to cyber, security, information governance, and insider threat.


This includes, but is not limited to:
The operation of population-scale, complex IT services that are required to be secure, live and working 24/7.

These include key enabling systems such as NHS Mail and NHS Pathways (which powers the triage engine in 111 online and the NHS website and is a system that is itself offering clinical services).

NHS England is wholly accountable for build, delivery, security, safety, operations of these and many other national scale systems.


Managing and securing sensitive patient identifiable data as well as high volumes of less sensitive data (managing includes the process of collecting, curating, cleaning, some analysis and disseminating/sharing to different audiences under different safeguards).


Having direct responsibility for the security of corporate and national IT systems and providing operational cyber security support across the wider NHS system.


In this role, the person should expect to:
Provide credible and visible cyber, security, insider threat and information governance expertise.

Ensure effective, proportionate management of the critical infrastructure NHS England delivers.


Provide national influence and leadership to the health system, to the Department of Health and Social Care and Ministers, focusing on improving resilience and effectively mitigating risk.


Work with the Committee members to develop and oversee delivery of NHS England's cyber strategy to ensure that it carries out its statutory responsibilities and delivers its mandate, meeting its targets and objectives, and ensuring that the Executive Team is held to account for doing so.


Ensuring the Committee reinforces the values of the organisation by setting a high standard for ethics and responsible business, and by maintaining and enhancing NHS England's reputation as an open and independent body, which puts the interests of the public and patients first.


Setting the agenda for the Committee, ensuring appropriate engagement with members and colleagues across the organisation, and from the wider system, providing counsel, advice, challenge and support to management; establishing an environment of constructive debate on key issues in order to build consensus.


Ensuring that management develops and maintains strong working relationships with the Department of Health and Social Care, the other health arms-length bodies and other stakeholders.


Build NHS partnerships and governance priorities with system collaboration, ensuring that cyber, security, insider threat and information governance is central to our approach.


Work with the NHS England Board, National Directors, National Specialty Advisors, and other key Stakeholders in driving forward the cyber strategy and implementation plan.

Horizon scan to provide intelligence for the Committee in terms of future improvement oppo
More jobs from NHS England
See all jobs of NHS England