Job Summary
Are you an experienced Cyber Security specialist committed to protecting public services? This full-time, permanent role at Public Health Wales supports the delivery of our Digital and Data Strategy.
Interviews will be conducted virtually.
You must be willing to work from the Cardiff office when required, including on short notice.
A degree in IT or equivalent experience in cyber security is essential.
For further details, contact:
Dennis Jones, Principal Data Security Specialist – dennis.jones2@wales.nhs.uk
- Location: United Kingdom
- Salary: £39,263 to £47,280 per annum
- Closing Date: 25 August 2025
- Job Reference: 028-AC193-0825
- Working Pattern: Full-time
Main Duties of the Role
Operate with autonomy, implementing and maintaining security controls.
Protect Public Health Wales’ digital assets from cyber threats.
Support and lead cyber security protocols, risk assessments, and incident responses.
Develop, maintain, and support cyber security systems aligned with operational requirements.
Participate in early/late shifts and on-call rotas.
Stay current with emerging technologies and threats, conducting relevant research.
Lead assurance assessments to verify control effectiveness and regulatory compliance.
Perform continuous monitoring, threat detection, incident investigation, and vulnerability management.
Coordinate remediation and track security weaknesses across systems.
About the Organisation
Public Health Wales is the national public health agency for Wales. Our mission: “Working together for a healthier Wales.”
We focus on prevention, health protection, leadership, and providing trusted public health information. Our work is vital in addressing complex health challenges.
Our Values:
Working together
Trust and respect
Making a difference
We welcome diverse applicants and support flexible working, including part-time roles and job shares.
Learn more: https://phw.nhs.wales/careers
Application guidance: https://phw.nhs.wales/working-for-us/applicant-information-and-guidance
Welsh Language Skills
Welsh skills are desirable, but not essential.
Welsh and/or English speakers are equally welcome to apply.
Person Specification
Qualifications & Knowledge
Essential:
Degree-level qualification in IT or equivalent experience.
Ongoing professional development.
Understanding of cyber security standards and terminology.
Awareness of national/international frameworks (e.g., NIS Regulations, ISO 27001, NIST).
Desirable:
Cyber security certifications (e.g., CompTIA Security+, SSCP).
Informatics professional body registration.
NHS/healthcare cyber security experience.
Knowledge of network technologies and NHS information governance standards.
Experience
Essential:
Proven experience in cyber security roles.
Application and network security knowledge.
Experience with SIEM systems and vulnerability tools.
Development of training materials, including phishing simulations.
Experience providing technical/security support.
Desirable:
Cloud security experience (Azure, AWS, GCP).
Healthcare cyber security experience.
Policy/procedure documentation experience.
Leading development and implementation of network/security systems.
Skills & Attributes
Essential:
Strong communication skills for non-technical audiences.
Guidance and support to team members.
Constructive challenge to poor behaviour.
Team-oriented mindset.
Analytical and problem-solving capabilities.
Quick learner with minimal supervision.
Ability to balance security and business needs.
Experience engaging with suppliers for project assurance.
Independent working ability.
Desirable:
Welsh language skills.
Other Requirements
Essential:
Ability to travel between sites and work from base or off-site.
Willingness to work out of hours/weekends as required.
Participation in on-call rota.
Additional Information
Disclosure and Barring Service Check
This post falls under the Rehabilitation of Offenders Act (Exceptions Order) 1975. A DBS check will be required for any previous criminal convictions.
Certificate of Sponsorship (CoS)
Applications are welcome from Skilled Worker visa holders.
Visit the UK Visas and Immigration website for more details.
From 6 April 2017, applicants for UK entry clearance must provide criminal record certificates for countries they’ve lived in for 12+ months over the past 10 years. This includes adult dependants (over 18).
Further guidance: Criminal records checks for overseas applicants
How to Apply
Visit the official website for full details and application — Click here to apply now