New Healthcare Jobs Added Daily. Get alerts straight to your inbox →

Search
Header navigation

2,978 Health Jobs

Logo for job Consultant Intensive Care Medicine
Red Chair Medical Recruitment
locationCayman Islands
PublishedPublished: Published today
Quick Apply
Logo for job Clinical Lead
HC-One
locationMorriston, Swansea, UK
PublishedPublished: Published today
Logo for job Finance and Workforce Administrator
locationExeter, UK
PublishedPublished: Published today
salary£25,000 - £26,500 per year
Logo for job Bank Healthcare Assistant
locationLlantilio Pertholey, Abergavenny NP7 6PS, UK
PublishedPublished: Published today
salary£13.11 per hour
Logo for job Deputy General Manager (Clinical)
locationHeathside Ln, Stoke-on-Trent ST6 5QS, UK
PublishedPublished: Published today
Logo for job Information Security Compliance Lead
locationBorehamwood WD6 1JN, UK
PublishedPublished: Published today
Logo for job Senior Patient Access Officer
locationAlderley Rd, Wilmslow SK9 1NY, UK
remoteOnsite
PublishedPublished: Published today
salary£29,069 per year
Logo for job Obstetrics Sonographer
locationSt Helier, Jersey
PublishedPublished: Published today
salary£52 per hour
Quick Apply
Logo for job Band 6 Speech and Language Therapist - Children's Team
locationIlford, UK
PublishedPublished: Published today
salary£27 per hour
Quick Apply
Information Security Compliance Lead

Information Security Compliance Lead

locationBorehamwood WD6 1JN, UK
PublishedPublished: Published today
Compliance Officer
Full time
Healthcare | Compliance
|
Private Healthcare

Are you passionate about information security, governance and compliance? Do you thrive on providing assurance, driving continuous improvement and helping organisations meet the highest standards of cyber and information security? Join Elysium Healthcare as an Information Security Compliance Lead and play a critical role in protecting sensitive information, supporting regulatory compliance and strengthening our cybersecurity assurance framework.

In this influential role, you will lead key elements of the organisation’s information security compliance programme and support the maintenance and continual improvement of its compliance framework. You will help ensure continued alignment with the NHS Data Security and Protection Toolkit (DSPT), the NIST Cybersecurity Framework (CSF), Group policies and recognised industry standards. You will be responsible for coordinating and leading the annual NHS DSPT submission, ensuring evidence is gathered, assessed and submitted accurately and within required timescales.

You will play a key role in leading the compliance, assurance, evidence and audit-readiness activities required to support the organisation’s progress towards Cyber Essentials Plus and ISO 27001 certification. You will coordinate evidence collection, assess the effectiveness of relevant controls and governance processes, and report identified gaps for action by the appropriate system and control owners. Working closely with stakeholders across the business, you will maintain alignment with NIST CSF requirements, including supporting maturity assessments, gap analysis and compliance reporting.

As the lead responsible for maintaining the information security compliance and risk register, you will monitor compliance risks, identify areas for improvement and ensure findings, actions and accountable owners are appropriately documented, tracked and escalated through governance processes. You will coordinate internal and external audit findings, monitor remediation progress and provide assurance that actions are implemented and closed effectively by the relevant control owners.

A key aspect of the role will be preparing clear, insightful compliance, assurance and risk reports for Executive, Risk and Audit governance forums, enabling senior leaders to make informed decisions regarding information security risks and compliance obligations. You will work closely with the Head of Cyber Security, IT Risk and Compliance, escalating matters that require senior review or approval while helping to maintain a strong culture of compliance across the organisation.

Key Responsibilities:

  • Leading the annual NHS DSPT submission, including evidence collection and reporting.
  • Leading the organisation's progress towards ISO 27001 certification, including evidence gathering and audit coordination.
  • Leading evidence gathering for Cyber Essentials Plus certification.
  • Leading the organisation's alignment to the NIST Cybersecurity Framework, including ongoing maturity assessment and reporting.
  • Monitoring compliance with company metrics, policies, and standards.
  • Reviewing information security policies, standards, and procedures for currency and alignment with DSPT, Cyber Essentials Plus, ISO 27001, and NIST CSF, drafting updates for review and approval by the Head of Cyber Security, IT Risk and Compliance.
  • Arranging delivery of information security training, awareness, and communication.
  • Supporting information security risk management, including assessments and treatment plans.
  • Supporting information security incident management and reporting.
  • Supplier and project information security assurance.
  • Supporting sites and business units with their information security compliance activities.
  • Maintaining the compliance and risk register.
  • Participating in information security meetings and workshops.
  • Preparation of compliance, assurance, and risk reporting for Executive, Risk, and Audit governance forums.
  • Coordination of responses to internal and external audit findings, including tracking remediation actions through to closure.

To be successful in this role, you will need:

  • Strong knowledge of NHS DSPT, Cyber Essentials Plus, ISO 27001, and NIST CSF.
  • Previous experience in an information security compliance or assurance role within a large or regulated organisation.
  • Experience leading NHS DSPT submissions, including managing timelines and gathering evidence from stakeholders.
  • Experience leading ISO 27001 or Cyber Essentials Plus certification activity, including evidence gathering and coordination with auditors.
  • Experience leading NIST CSF maturity assessments, including evidence gathering and reporting.
  • Understanding of UK data protection obligations (Data Protection Act 2018, UK GDPR).
  • Ability to conduct compliance assessments, risk reviews, and supplier and project assurance.
  • Strong communication and influencing skills with both technical and non-technical stakeholders.
  • Ability to assess departments and system owners against framework requirements, reporting findings to enable the Head of Cyber Security, IT Risk and Compliance to hold them to account.
  • Ability to prepare audit ready evidence and support compliance reporting.
  • Ability to identify how compliance requirements should be embedded into projects and change programmes.
  • Ability to prepare and present compliance, assurance, and risk reporting for Executive, Risk, and Audit governance forums, and coordinate responses to audit findings through to resolution.

Desirable

  • Familiarity with additional regulatory frameworks or guidance beyond the organisation's core requirements (for example ICO guidance).
  • ISO 27001 Lead Auditor or Lead Implementer qualification.

This is a remote-based role, offering flexibility while ensuring close collaboration with colleagues across services. Occasional travel may be required to support project delivery, governance forums, or training.

What You’ll Get:

At Elysium Healthcare, we believe in taking care of the people who care for others, you’ll enjoy a comprehensive benefits package designed to support your wellbeing, growth, and future:

  • Annual salary of £55,000 depending on experience
  • The equivalent of 33 days annual leave (including bank holidays) – plus your birthday off and the option to buy additional annual leave, in our annual selection window.
  • Career development and training to help you achieve your professional goals
  • Access to our Rewards & Benefits platform Ely-Vate; Your one-stop destination for everyday savings, exclusive benefits, and wellbeing hub!
  • Wellbeing support and activities to help you maintain a healthy work-life balance
  • Access to Blue Light Card, which provides a range of exclusive offers and discounts
  • Life Assurance, for added peace of mind
  • Stream – instant access to earned wages when you need it, plus access to save, directly from your wages, alongside financial wellbeing support.
  • 24/7 GP service and second medical opinion, to ensure you are the best you can be
  • Enhanced Maternity Package, so you can truly enjoy this special time
  • Pension contribution, to help secure your future

About your next employer:

You will be working for an established, stable and agile company with over 8,000 employees and a unique approach to delivery of care. With a network of over 80 services across England and Wales covering Mental Health, Neurological, Learning Disabilities & Autism, Children & Education, there is opportunity for you to grow and move.

Elysium Healthcare is part of Ramsay Health Care with a global network that extends across 10 countries and employs over 86,000 people globally.

Elysium Healthcare follows safer recruitment of staff for all appointments and is a Disability Confident employer, committed to inclusive and accessible recruitment. It is a requirement that all staff understand it is each person’s individual responsibility to promote and safeguard the welfare of service users. All candidates will be subject to a DBS disclosure.



Image gallery

Video gallery

Consent to this service

Functional Cookies

Consent to this service

Functional Cookies

Consent to this service

Functional Cookies

Consent to this service

Functional Cookies

Consent to this service

Functional Cookies

Consent to this service

Functional Cookies

Consent to this service

Functional Cookies

Consent to this service

Functional Cookies

Consent to this service

Functional Cookies

Consent to this service

Functional Cookies