Director of Assurance & Cyber Security

Employer Manchester University NHS Foundation Trust Employer type NHS Site Manchester University NHS Foundation Trust, Cobbett House Town Manchester Salary £91,342 - £105,337 per annum (pro rata) Salary period Yearly Closing 21/09/2025 23:59Director of Assurance and Cyber Security

Band 8d

Job overview

A fantastic opportunity has arisen for a motivated and organised Director of Assurance and Cyber Security to join the Group Digital Services Team at Manchester Foundation Trust (MFT).The Director of Assurance and Cyber Security (and CISO) will be responsible for developing and implementing the Trust’s information Cyber Security strategy in line with the Digital Strategy.You will form part of a growing, motivated, and supportive team and will be well placed to develop your skills and knowledge.Main duties of the job

Provide a clear vision and direction for information and Cyber Security operations, promoting continuous improvement, innovation, and agility in service delivery, whilst working in consultation and collaboration with colleagues across the Trust to ensure that all information and cyber security policies are implemented and enforced.Responsible for overseeing a range of technical and process security controls and leading a programme of continuous improvement in response to changing security threats and risk.Leading and developing a specialist team to provide a progressive service developing innovative, future focused information and Cyber Security capabilities that can address the dynamic nature of cyber threats. Providing robust governance and assurance services across the entire IT security portfolio of activities.The role requires a thorough understanding of the technology underpinning the Trust digital systems, as well as a broad, up-to-date knowledge of information security frameworks, pertinent regulation and legislation, vulnerability management, incident management and response, secure development techniques and approaches, Cyber Security engineering and operations, and management and governance of Cyber risk and Cyber Security.Please review the Job Description and Person Specification document attached for details of the role and comparison against your skills, experience and knowledge.Working for our organisation

MFT is one of the largest NHS Trust In England with a turnover of over £3bn and is on a different scale than most other NHS Trusts. We’re creating an exceptional integrated health and social care system for the 1 million patients who rely on our services every year.Bringing together 10 hospitals and community services from across Manchester, Trafford and beyond, we champion collaborative working and transformation, encouraging our 30,000 workforce to pursue their most ambitious goals. We set standards that other Trusts seek to emulate so you’ll benefit from a scale of opportunity that is nothing short of extraordinary.We’ve also created a digitally enabled organisation to improve clinical quality, patient and staff experience, operational effectiveness and driving research, and innovation through the introduction of Hive; our Electronic Patient Record system which launched in September 2022.We’re proud to be a major academic Research Centre and Education provider, providing you with a robust infrastructure to encourage and facilitate high-quality research programmes. What’s more, we’re excited to be embarking on our Green Plan which sets out how MFT continues to play its part in making healthcare more sustainable.At MFT, we create and foster a culture of inclusion and belonging, provide equal opportunities for career development that are fair, open, and transparent, protecting your health and wellbeing and shaping the future of our organisation together.Detailed job description and main responsibilities

To find out more about the key responsibilities and the specific skills and experience you’ll need, take a look at the Job Description and Person Specification attachments under the ‘Supporting Documents’ heading. So that you’re even more equipped to make an informed decision to apply to us, you’ll need to take time to read the ‘Candidate Essentials Guide’ that sits with the Job Description and Person Specification. This document provides you with details about the Trust, our benefits and outlines how ‘we care for you as you care for others’. Most importantly, it also contains critical information you’ll need to be aware of before you submit an application form.Diversity MattersMFT is committed to promoting equality of opportunity, celebrating, and valuing diversity and eliminating any form of unlawful discrimination across our workforce, ensuring our people are truly representative of the communities we serve. All individuals regardless of age, disability, gender reassignment, marriage and civil partnership, pregnancy and maternity, race, religion or belief, sex and sexual orientation are encouraged to apply for this post. As an inclusive employer, we are here to support you. If you have any special requirements to help you with your application, email our team at resourcing@mft.nhs.uk.We’re looking forward to hearing from you!Person specification

Qualifications

Education to a minimum of Masters Degree level or equivalent post graduate qualification or equivalent senior level experienceFormal certification (CISSP, CISM or CRISC) and/or formal training in information security standards and best practice (e.g.: ISO 27001/2, COBIT, Cyber Essentials)Advanced level of IT literacy with experience of using a range of IT applicationsSignificant evidence of continued professional developmentITIL QualificationCOBITKnowledge and Experience

Proven and significant leadership experience and/or formal management qualificationDemonstrated expertise in an IT Security environmentDirect experience of strategic and budgetary planning and financial management and controlsPreviously worked within the NHSA good practical knowledge of security technologies and wider business solutions including Firewalls, IDS/IPS, Identity and access management, SIEM, remote working and cloud technologiesProven experience of working at a senior level leading and delivering IT Security in a sensitive and complex environment which is undergoing significant changeExperience of delivering presentations to large groups of stakeholdersDemonstrable commitment to partnership working with a range of external organisationsExperience in engaging and influencing stakeholders from diverse backgroundsExperience of managing and prioritising a budget, as part of financial management of a departmentExperience in implementing / developing security policies and technical documentationExperienced in developing and managing best-of-breed enterprise IT security solutions and processesRobust understanding of audits and review processExperienced in Contingency and Disaster Recovery PlanningExpert knowledge of security standards, legislation and best practiceExperienced in leading, developing, performance managing and motivating a team of subject matter expertsExperience of staff management of teamsExperience providing IT focused Enterprise Architecture and strategyUnderstanding of the role of Data in all aspects of NHS operational activity and ‘business’ processesDemonstrated expertise in a Healthcare environmentSignificant management experience at senior level in the NHSEmployer certification / accreditation badges

Name Matthew Gardner Job title Deputy Chief Digital and Information Officer Email address ..... full job details .....