Health Informatics Career Framework

save a copy to my computer

Role Title

Information Security Manager

There are 204 learning and development opportunities relevant to this HICF Level and Discipline View development opportunities linked to this HICF Level and Discipline

HICF Reference code

ICT-7.2

HICF Discipline

ICT Staff

HICF Level

7 - Advanced Practitioners

Role Description

An Information Security Manager provides information security expertise and ensures that all aspects of IT security policies and procedures are implemented and audited. This includes: working closely with other managers with related responsibilities such as information governance; providing advice on legislation related to IT security; promoting awareness of, and increasing compliance with, legislation, standards, codes of practice and compliance requirements; continuously reassessing the suitability of, recommending improvements and implementing and administering IT network security applications; managing, determining the requirement for and restricting access to confidential data; designing, implementing and enforcing IT security policies in line with organisational policies and strategies; ensuring the security of communication equipment and mobile handsets; managing software licences; and ensuring provision of relevant IT documents and procedures for use as evidence of compliance w

Indicative job titles

IT Security Manager
IMT Security Manager
Technical Security Manager

Attached job description

ICT7.2 Information Security ManagerJD.doc

Other attached files

no files attached

Indicative qualifications

Degree in a relevant subject or equivalent (or equivalent experience)
Masters degree in a relevant subject or equivalent (or equivalent experience)
Recognised qualification in data protection and/or information security (eg ISEB Certificate in Data Protection, ISEB Certificate in Information Security Management Principles)
Third party and vendor neutral qualifications related to security (eg Certified Information Systems Security Professional (CISSP), ISO 27001 Auditor)
PRINCE2 Practitioner (or equivalent project management methodology)
Qualification at QCF level 4 in management or equivalent (or equivalent experience)

Related National Occupational Standards (NOS)

Item Title	Standard
CFAMLB1 - Develop and implement operational plans for your area of responsibility	NOS
CFAMLB10 - Manage risk	NOS
CFAMLB6 - Provide leadership in your area of responsibility	NOS
CFAMLC5 - Plan change	NOS
CFAMLC6 - Implement change	NOS
CFAMLD2 - Develop productive working relationships with colleagues and stakeholders	NOS
CFAMLD6 - Allocate and monitor the progress and quality of work in your area of responsibility	NOS
CFAMLE4 - Promote the use of technology within your organisation	NOS
ESKITP5043 - Systems integration Level 3	NOS
ESKITP5053 - IT/Technology systems installation, implementation and handover Level 3	NOS
ESKITP7042 - IT application management / support Level 2	NOS
ESKITP7082 - Change and release management Level 2	NOS
SFHGEN29 - Promote an information culture	NOS

Other related professional standards

Item Title	Standard
Fellowship (FBCS)	BCS
Professional Member (MBCS)	BCS
Communication Level 4	KSF
Development and innovation Level 3	KSF
Equality and diversity Level 3	KSF
Health, safety and security Level 4	KSF
People management Level 2	KSF
Personal and people development Level 4	KSF
Quality Level 4	KSF
Service Improvement Level 4	KSF
Services and project management Level 4	KSF
Systems, vehicles and equipment Level 4	KSF
Full registration - level 3	UKCHIP