Maintain, further develop and assist in implementation of Information Security Management Systems in use within the ICS in line with the requirements of Data Security and Protection Toolkit, National Guidelines and Security Best practice Support the development of good practice and workable security operating procedures in relation to cyber security across the system and provide specialist knowledge and analyse to improve the safety and stability of systems.Propose changes and improvements to IT security policies and procedures, implementing changes under the direction of Cyber Security Lead Provide proactive monitoring, review, analysis and interpretation of security incidents and alerts using security technologies such as Sophos Central management console, Microsoft Defender for Endpoint and other security platforms, to ensure that alerts are resolved quickly by the appropriate team Act as a senior member of the team responsible for the monitoring, detection and response to cyber security events, ensuring the appropriate technical response and timely remediation of threat alerts Act as an escalation and co-ordination point for cyber related incidents. investigate suspected and actual breaches of IT security and undertake reporting/remedial action as required Be part of an on call rota to cover security related events outside of working hours alongside the wider CITS 24\7 service. Maintain detailed logs of any security events, incidents and remedial recommendations and actions taken Perform ongoing IT Security risk assessments and audits to ensure that IT Systems are adequately protected Coordinate work with the wider IT operational and project teams, information asset owners and system managers to ensure all solutions utilise IT Security best practices Work with vendors, outside consultants and other 3rd parties to improve IT security within the organisation Help facilitate regular penetration testing exercises of the Trusts perimeter network, to gather intelligence from these exercises and use these to generate lessons learned and drive Continuous Improvement Collaborate with cyber security team colleagues to prepare operational security reports and KPIs, including security event and security incident alerts from network, infrastructure, end point, database, application and data security controls. Responsible for ensuring that at all times, the highest standards of customer service are delivered. Provide advice and act, where necessary, in response to Audit findings and recommendations in respect of information security Review and advise on IT Security patches, software updates and vulnerabilities according to best practices Identify threats to the confidentiality, integrity, availability, accountability and relevant compliance for information systems and provide authoritative advice and guidance on the application and operation of all types of security controls. Work closely with organisation information governance teams to maintain legislative and regulatory requirements in regards to data protection and records management Maintain currency with security and security enhancing technologies and brief colleagues as needed to enable measures, to be implemented where and when necessary or desirable Ensure that access control, disaster recovery, business continuity, incident response and risk management needs are appropriately addressed Review cyber security threat notifications received from the NHS Digital Carecert service, using detailed log information, a variety of software utilities and software management tools to identify potential threats and eliminate false positives Demonstrate a detailed knowledge and experience of the installation, configuration and maintenance of PCs and mobile devices and an understanding of network protocols, including TCP/IP, and their use in relation to network operating systems and perimeter security Apply a comprehensive knowledge of best practice in relation to cyber-security, malware prevention and critical security updates and a knowledge of Microsoft Windows server technologies and Active Directory infrastructure and be able to communicate requirements to a wide variety of users Ensure personal prioritisation and management of allocated tasks and workload