Technology and Cybersecurity Assurance and Risk Manager

Details
-----------

Reference number

464277

Salary

£54,582 \- £61,584
National £54,582 \- £61,584 \+ benefits.
A Civil Service Pension with an employer contribution of 28\.97%
GBP

Job grade

Grade 7### Contract type

Fixed term

Loan

Secondment### Length of employment

2 years### Business area

DCMS \- Digital, Data and Technology### Type of role

Architecture and Data

Digital

Information Technology### Working pattern

Flexible working, Full\-time, Job share, Part\-time### Number of jobs available

1
Contents
------------

• Location


• About the job


• Benefits


• Things you need to know


• Apply and further information

Location
------------

ManchesterAbout the job
-----------------

Job summary

Sitting within the departments Digital, Data and Technology (DDaT) directorate, the Technology and Cybersecurity Assurance and Risk Manager sits within the DDaTs Technology, Information and Cybersecurity Operations (TICO) division. This division is responsible for the identification, assessment, evaluation and management of risks related to cybersecurity, data protection and information management. This role, within the cybersecurity element of the division, plays a vital role in leading the delivery of the directorates cyber risk programme, ensuring risk management is central to all evidence\-based security decisions in DCMS.

This is an exciting time to be joining DDaT in DCMS, with the rollout of a new delivery model designed to enable the department's ability to support its sectors. As a cyber risk professional, you will have an unparalleled opportunity to apply your skills, shape the way in which DCMS manages its cybersecurity risks and gain significant exposure to senior decision\-makers. What’s more, your work will make a real difference in protecting both UK citizens and society as a whole, through the use of your skills to protect vital services.

Job description

In this role, you will lead across four key areas to manage the department’s cyber risk exposure:

• Operational Risk Assessment: Lead the analysis of business\-supporting security needs and undertake cyber risk assessments within established governance structures. You will provide advice to stakeholders on remedying risks by proportionately applying security capabilities and drawing on expert guidance.


• Enterprise Risk Management: Independently undertake risk management activities to reduce departmental exposure identified through cyber exercises, threat intelligence, and SME engagement, ensuring advice is consistent with professional standards and personal expertise.


• GovAssure Compliance: Lead the annual assessment of departmental compliance with the Cyber Assessment Framework (CAF), reporting on cyber maturity to senior leaders.


• Arms\-Length Body (ALB) Compliance: In response to the Government Cyber Action Plan (GCAP), monitor ALB compliance with mandated security requirements to enable the Accounting Officer to make informed, auditable, and risk\-based decisions.

You will manage contracts and maintain relationships with suppliers to ensure good service quality and effective risk management. You will have line management responsibilities for a small team.

Person specification

The ideal candidate would have the following key skills and experience:

Essential requirements:

Technical skills aligned to the cyber security governance \& risk management skills in the Government Security Profession

• Conducting assessments for enterprise systems and reporting on security characteristics to ensure all identified risks are effectively addressed through appropriate treatment.


• Deriving security requirements through threat analysis, interpreting organisational risk appetite to provide actionable recommendations.


• Developing and applying new concepts in protective security, involving corporate enablers and the UK security community.


• Proactively leveraging diverse intelligence sources to interpret the strategic threat environment and attack surface.


• Experience of communicating complex technical matters to non\-technical audiences and managing relationships with stakeholders across organisational boundaries.

Desirable skills:

• Previous experience evaluating cyber risk within government organisations or the private sector, and an existing professional network.


• Experience of successful leadership within a cyber security or intelligence environment in either the public or private sector.

Behaviours

We'll assess you against these behaviours during the selection process:

• Communicating and Influencing


• Delivering at Pace

Technical skills

We'll assess you against these technical skills during the selection process:

• Information risk assessment and risk management


• Risk understanding and mitigation

Benefits
------------

Alongside your salary of £54,582, Department for Culture, Media and Sport contributes £15,812 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides.
DCMS values its staff and offers a wide range of benefits to everyone who works here. We’re committed to developing talent, and supporting colleagues to have great careers in our department. To support with that, some of the benefits we offer include:

• Flexible working arrangements and hybrid working \- DCMS staff work on a flexible basis with time spent in offices, and time spent working from home


• 26\.5 days annual leave on entry, increasing to 31\.5 days after 5 years’ service


• A Civil Service pension with an employer contribution of 28\.97%


• Access to the Edenred employee benefits system which offers discounts to popular retailers and access to various useful resources such as financial and savings advice


• 3 days of paid volunteering leave


• Up to 9 months maternity leave on full pay \+ generous paternity and adoption leave


• Staff reward and recognition bonuses that operate throughout the year


• Occupational sick pay


• Access to the Employee Assistance Programme which offers staff 24/7 confidential support and resources such as counselling, debt guidance and management advice


• Active and engaged staff networks to join including the LGBT\+, Ethnic Diversity, Mental Health and Wellbeing and Gender Equality Networks


• Exceptional learning and development opportunities that you can explore alongside your day to day work


• Season ticket loan, cycle to work scheme and much more!

Terms and conditions at SCS grades will vary. Those applying for SCS roles should refer to the candidate information pack for more information on terms and conditions.

Things you need to know
---------------------------

Artificial intelligence

Artificial intelligence can be a useful tool to support your application, however, all examples and statements provided must be truthful, factually accurate and taken directly from your own experience. Where plagiarism has been identified (presenting the ideas and experiences of others, or generated by artificial intelligence, as your own) applications may be withdrawn and internal candidates may be subject to disciplinary action. Please see our candidate guidance for more information on appropriate and inappropriate use.### Selection process details

This vacancy is using Success Profiles , and will assess your Behaviours, Experience and Technical skills.
To apply for this vacancy, you will need to submit the following documents which will assessed against the experience success profile:

• A CV setting out your career history, with key responsibilities and achievements. Please ensure you provide employment history that relates to the essential and desirable criteria, and that any gaps in employment history within the last 2 years are explained. The CV should not exceed more than 2 x A4 pages and you should insert your CV into the "Job History" section on Civil Service Jobs on the Civil Service Jobs application form.


• A Statement of Suitability (max 750 words) explaining how you consider your personal skills, qualities and experience provide evidence of your suitability for the role in reference to the essential requirements highlighted. You may also choose to reference the desirable skills listed however these will not be considered in the assessment of your application except in circumstances where there are a high number and calibre of candidates.

For the shortlist, we will select applicants demonstrating the best fit for the role by considering the evidence provided in your application.

In the event of a large number of applicants, an initial sift will be conducted on the statement of suitability. Those who are successful in the initial sift will then be scored on all elements of the application.

For support in writing your application and interviewing, please refer to the ‘Application and Interview Guidance’ document attached to the job advert.

The interview process will assess behaviours, technical skills, and experience.

The behaviours to be tested at interview are:

• Communicating and influencing


• Delivery at pace

The Technical Skills to be be tested at interview are:

• Information risk assessment and risk management


• Risk understanding and mitigation

Experience

You will also be required to prepare a presentation to demonstrate your relevant experience. Full details of this, including the topic, length of time., and whether or not you will need to use visual aids, will be sent to you prior to your interview.

Your interview will take place remotely via GoogleMeets.

For indicative sift and interview dates please refer to the attached Candidate Information Pack.

Further Information

A reserve list may be held for a period of 12 months from which further appointments can be made.

Any move to Department for Culture, Media and Sport from another employer will mean you can

This listing is from indeed. View original listing ↗