ICT Senior Networking & Security Engineer

Principal Networking & Security Engineers are expected to oversee the management and ongoing development of the Trust's data and telephony network (wired and wireless) and to keep the organisation safe and secure by managing cyber security aspects across the organisation. The role will cover: Responsibility for the execution of analytics, investigations, resolution, and reporting to a highly complex level for network and cyber security matters Responsibility for the day to day operational running of the Trust's network, wired and wireless and to troubleshoot issues and outages. Responsibility for the day-to-day supervision and running of the Cyber Security Operations Centre. Escalation point to the team, but also to the wider ICT management to support the delivery of the Departmental and Trust objectives. Providing a high level of support to the Networking and Security Engineers. Responsibility for dealing with and resolving network and cyber security incidents in a timely manner. Responsibility for ensuring any changes to the data and telephony networks, as well as cyber security tools and monitoring do not impact on service Responsibility for evaluating and testing network and security tools., Understand of the demands of the organisation on the ICT department to deliver clinical care to our patients and the network and cyber security functions required to satisfy the corporate needs of the Trust as a whole. Hold relevant professional qualifications, in depth knowledge obtained through formal training to Master's degree level and/or relevant experience within a similar role within Networking and Security. Responsible for managing incoming work for others, distributing work in line with priorities, ensuring service management and project work are delivered in line with deadlines and service standards Responsible for ensuring adequate systems, policy and procedures are in place covering data protections, data loss/theft, Network intrusion detection/prevention and systems from security threats Point of contact, technical lead and escalation point for additional governance, security or legislative requirements which have an impact or requirement covering our IT estate Responsible for the design, implementation, performance and conducting regular internal and external vulnerability scans within our environment

Working for our organisation

We are committed to recruiting the best person for the job through a fair, open and consistent process that is free from bias and discrimination.

We are working towards becoming an anti-racist organisation. This means creating a workplace where every colleague feels seen, heard and valued, and where racism in any form has no place. Our anti-racism commitment is backed by action through our Anti-Racism Statement and action plan, developed in collaboration with our REACH staff network.

We actively challenge discrimination, dismantle barriers and embed equity across all aspects of our workforce, including recruitment, progression and development. All applicants will receive equal consideration regardless of race, ethnicity, nationality, religion or belief, sexual orientation, gender identity, age, disability, health condition or employment history.

We particularly welcome applications from ethnically diverse communities, people with disabilities or long-term health conditions, and LGBTQ+ community members. We are proud to be a Disability Confident Employer, a member of the Business Disability Forum, and a Stonewall Diversity Champion.

Our staff networks, including REACH, PRIDE, ENABLED and Women's Networks, are active and executive supported. These employee-led networks play a vital role in shaping an inclusive culture at GOSH and are open to all colleagues.

Together, we are building a culture where inclusion is not optional - it is essential.

GCSE grade C or above in Mathematics and English / Educated to Master's Degree Level or equivalent experience One or More Professional information security qualification, such as Certificate in Information Security Principles; CompTIA Security+ or qualified to similar level by experience ITIL Foundation and CCNA

Desirable criteria Cisco Certified Network Professional (CCNP) qualification

Experience/Knowledge

Essential criteria Previous ICT endpoint support (2nd line) or substantial equivalent experience of working in a Cyber Security Operations Centre including working to ISO27001 Excellent knowledge and experience in securing the configurations of hardware endpoint devices and software to mitigate malware, common exploit and vulnerability attack vectors Excellent computer competency coupled with an understanding in networking and security principles Very good knowledge and understanding of up to date security threats and common exploits Substantial proven experience of managing the activities of a small team working in a busy ICT Cyber Security Operations Centre Experience of presenting technical specialist topics into business language and vice-versa A very good understanding of the underlying protocols and data used as the basis for the security monitoring service, including: HTTP, HTTPS, SQL, TCP/IP, Active Directory

Desirable criteria Good knowledge and experience of CISCO networks, their threats and vulnerabilities Very good knowledge and experience working with security tools used to monitor business environments (SIEM, Netflow, IDS/IPS, Vulnerability Management, Advanced malware detection, Antivirus etc.).

Skills/Abilities

Essential criteria Excellent verbal and written communications skills in English and is highly articulate - very able to express technical ideas to a non -technical audience Able to undertake root cause analysis of simple to highly complex security issues Analytical and proven ICT based technical skills being very attentive to detail ensuring accuracy, relevancy and timeliness The ability to maintain a professional approach and demonstrate excellent interpersonal skills at all times (organisational and communication) Excellent practical knowledge of Windows and Mac operating systems and mobile devices (smartphones and tablets, etc.) Excellent practical knowledge of CISCO networks and equipment - able to interrogate and undertake root cause analysis to a highly complex level Excellent aptitude for sharing knowledge and skills with other ICT team members Good ability to re -prioritise work streams as required by unexpected events and manage staff and customer expectations

Desirable criteria Able to interrogate and re -configure CISCO equipment to maintain and implement Trust security to a highly complex level