National AI Awards 2025Discover AI's trailblazers! Join us to celebrate innovation and nominate industry leaders.

Nominate & Attend

Information Security Specialist

Counter Fraud Authority
London
2 weeks ago
Applications closed

Related Jobs

View all jobs

Information Security Specialist

Information Security Specialist

Information Security Specialist

Information Security Specialist

Information Security Specialist - Risk & Compliance

Information Security Specialist | London, UK

Join to apply for theInformation Security Specialistrole atNHS Counter Fraud Authority.

The NHS Counter Fraud Authority is the national body responsible for all matters relating to the prevention, detection and investigation of economic crime across the NHS. Further information about our work and annual plan for delivering this is available on our website.

Our team is embarking on a piece of work to monitor data to identify and respond to patterns indicative of potential fraud. This will support our current work that reduces the likelihood of fraud occurring. We will bring in data science capabilities to be deployed in counter fraud activity and work closely with partners across health and government to further maximize the preventative impact of proactive counter fraud analysis. We will combine this with our range of counter fraud and domain expertise to maximize our impact using your knowledge, experience, and passion for your chosen field.

We are excited to offer an opportunity for an enthusiastic, skilled, experienced Information Security Specialist to join our team. In this pivotal role, you will collaborate with existing security specialists to provide an assured and compliant secure technology environment. The role requires that the post holder be eligible for or already hold UK National Security vetting to SC level. Fixed Term contract until 31st March 2026.

Potential applicants can contact Simon Clark for an informal chat if you have any questions regarding the role. Interviews will be held w/c 24.3.25.

Responsibilities

  • Manage, maintain and improve Information Security governance, risk and compliance within the NHSCFA.
  • Manage the NHSCFA ISO27001 programme, maintaining continuous certification to the Standard.
  • Manage the NHS DSPT compliance programme.
  • Contribute to accreditation to UK Government Public Services Network (PSN) requirements.
  • Maintain constant awareness of changes in compliance requirements including updates to ISO standards, PSN and the NHS DSPT.
  • Manage Information Security audit programs for ISO27001 and other compliance regimes including remediation of audit findings.
  • Manage the NHSCFA Cyber Risk Management process, producing comprehensive Risk Documentation in accordance with the National Cyber Security Centre best practice.
  • Assess the effectiveness of Security Controls by conducting reviews, internal audits and spot-checks of ICT Security Infrastructure elements including, but not limited to: firewall, IDS/IPS, anti-malware, web and email filtering, MDM, SIEM, patch and vulnerability management.
  • Support the ICT Security Incident Management Process, reviewing security incidents, weaknesses and malfunctions relating to the NHSCFA's systems, taking appropriate remedial action.
  • Produce reports for Information security risk and compliance including KPIs and standards where applicable.

Seniority Level

Mid-Senior level

Employment Type

Contract

Job Function

Information Technology

Industries

Computer and Network Security

The NHSCFA values and respects the diversity of its employees and aims to recruit a workforce which reflects our diverse communities. We welcome applications irrespective of people's age, disability, gender, race or ethnicity, religion or belief, sexual orientation, or other personal circumstances. We have policies and procedures in place to ensure that all applicants are treated fairly and consistently at every stage of the recruitment process, including an invitation to the first stage of the selection process and consideration of reasonable adjustments for people who have a disability.

If you are applying to undertake this role on a secondment basis, you should have agreement to being released from your current role in principle, prior to submitting an application form. When you apply for this role, you will be redirected to our recruitment system TRAC. The NHSCFA does not hold a sponsor licence in respect of skilled worker visas and so is unable to employ candidates requiring sponsorship.

We reserve the right to close this vacancy before the advertised closing date should we receive a significant number of applications.


#J-18808-Ljbffr

National AI Awards 2025

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs Careers

Cyber Security Jobs Skills Radar 2026: Emerging Frameworks, Tools & Certifications to Learn Now

Cyber threats are evolving—and so must the people defending against them. As ransomware, AI-enhanced phishing, and supply chain attacks grow more advanced, UK employers are urgently hiring cyber security professionals with the right mix of strategic and hands-on skills. Welcome to the Cyber Security Jobs Skills Radar 2026, your go-to guide for the most in-demand tools, frameworks, certifications, and technologies shaping the UK's cyber workforce. Whether you're a SOC analyst, penetration tester, or cloud security architect, this annual radar is designed to help you stay ahead of the market.

Jobs

How to Find Hidden Cyber Security Jobs in the UK Using Professional Bodies like BCS, CIISec & More

The demand for skilled cyber security professionals in the UK has never been higher. With threats increasing in sophistication and frequency, organisations are urgently hiring ethical hackers, threat analysts, GRC specialists, and security architects. But many of the most valuable roles—particularly in government, defence, and critical infrastructure—are never publicly advertised. Instead, these jobs are shared behind the scenes through trusted networks, private communities, and professional bodies. In this article, we explore how to uncover hidden cyber security jobs in the UK using organisations like the BCS (The Chartered Institute for IT), CIISec (The Chartered Institute of Information Security), ISACA, and ISC² UK Chapter. We’ll show you how to use membership directories, special interest groups, CPD events and informal networks to gain early access to roles most people never see.

Jobs

How to Get a Better Cyber Security Job After a Lay-Off or Redundancy

Redundancy is never easy—especially in a fast-moving field like cyber security, where your skills and experience are constantly evolving. But if you’ve recently been made redundant from a cyber security role, know this: the UK cyber workforce remains in high demand, and your expertise is more valuable than ever. Whether you’re a SOC analyst, penetration tester, incident responder, security architect or GRC specialist, there are still thousands of opportunities across sectors including finance, defence, government, retail, and critical infrastructure. This guide will help you turn redundancy into a career relaunch, with a clear action plan tailored to the UK cyber security job market.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.