Chief Information Security Officer - Core Services

Job summary

The MOD's digital teams ensure we remain among the most technologically advanced Armed Forces in the world. We develop and lead in cutting-edge data science, automation, and cybersecurity solutions to protect the UK and its interests, at home and abroad. Our mission also goes beyond the battlefield by leading humanitarian efforts and driving innovation that impacts lives across the globe.

From the 1st April 2026 Defence Digital has changed its name to National Armaments – Digital & Data.

Watch our video to see what we do!

This position is advertised at 37 hours per week.

Job description

This high impact role is accountable for strengthening the Cyber Risk position of digital capabilities delivered by the Core Services team within National Armaments Digital & Data.

You’ll work closely with senior leaders, driving innovation, ensuring risks are suitably mitigated and embedding secure-by-design principles into everything we do. Your expertise will make a real difference, helping to safeguard national security and ensuring our digital future is resilient, secure and ready for tomorrow’s challenges.

Ensuring robust governance, risk management and compliance frameworks are in place, you’ll champion a positive security culture across the organisation, improving cyber security and information security awareness, knowledge and skills.

Responsibilities

• Act as the primary point of contact for Cyber and Information Security, ensuring strong governance and clear accountability across the organisation and supply chain.
• Deliver and maintain the Cyber and Information Risk Management Framework, identifying, assessing and mitigating risks effectively.
• Drive secure-by-design principles and digital resilience into all programmes and services from the outset.
• Oversee audits, incident management and adherence to Defence standards and regulations.
• Champion awareness and training, so everyone understands their role in maintaining security.
• Ensure Data Protection Advisors and Information Asset (DPIA) Owners manage personal data responsibly, with DPIAs in place for systems and services.
• Ensure all cyber and information security incidents, breaches and near misses are appropriately managed, reported and investigated appropriately, to ensure that risk is mitigated and lessons identified, recorded and learnt.
• Line management of a small team and matrix management within a larger organisation.

Person specification

We would expect to see experience in Cyber and Information Security leadership and demonstrable ability to develop and maintain governance and risk management frameworks.

You’ll have a thorough understanding of secure-by-design principles, digital resilience and compliance requirements, with experience of managing security incidents, audits and remediation activities.

This position may be suitable for individuals with relevant skills and experience in information security governance & management, risk assessment & information risk management, technical security architecture or with appropriate skills gained in an ICT assurance or compliance environment.

When submitting your CV, please highlight your career history, qualifications and experience that align with the essential criteria.

You’ll need to meet the following Essential Criteria:

• Excellent stakeholder engagement and influencing skills at senior levels.
• Strong analytical and problem-solving abilities with a risk-based approach.
• Ability to lead cultural change and promote security awareness across diverse teams.
• Experience in Cyber and Information Security leadership, and demonstrable ability to develop and maintain governance and risk management frameworks.

Additionally, refer to the "Things You Need to Know" section of the advert and provide a statement of suitability (max. 1250 words) answering these questions:

1. Describe your experience of managing cyber security governance, risk and compliance aspects within an organisation.
2. Provide an example of when you have managed a Cyber Security incident, the approach used and the outcome.
3. Describe your experience of leading, managing and developing a team and of resources not owned by the organisation.

Regular travel will be required to other MOD locations in the UK.

If not already held, successful candidates will be required to undergo DV clearance.

Please note this position is open to sole UK Nationals only.

Behaviours

We'll assess you against these behaviours during the selection process:

• Leadership
• Communicating and Influencing

Technical skills

We'll assess you against these technical skills during the selection process:

• Information risk assessment and risk management
• Applied security capability
• Protective security
• Threat understanding

Benefits

Alongside your salary of £72,840, Ministry of Defence contributes £21,101 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides.

This post is eligible for a Digital Skills Allowance of up to £18,000 per annum. Eligibility for this allowance will be assessed at interview against 4 core technical skills only and reviewed annually in line with MOD policy.

• Flexible working options- we understand the importance of adapting work to your life.
• Inclusion and diversity- our culture celebrates uniqueness and encourages collaboration of diverse thought.
• Generous annual leave- starting with 25 days and growing to 30 after just 5 years.
• Pension contribution: 28.97%
• Minimum of 15 Days Special Leave in a rolling 12-month period to volunteer for military or emergency service reserve commitments.
• Special Paid Leave for volunteering up to 6 days a year.
• Enhanced maternity, paternity and adoption leave.
• Most sites have good travel links with free car parking; many also have other facilities such as a Sports & Social Club and Gyms
• You can read more here- Civil Service Employee Benefits , Civil Service Careers (civil-service-careers.gov.uk)

Professional Framework Statement

NA-D&D operates an organisation model in which every individual belongs to a Government Profession. The successful applicant will be posted into one of the defined Government Professions on Standard Terms of Reference for the grade. NA-D&D reserves the right to move individuals between roles, within their allocated profession, to meet the needs of the business and in support of agile resourcing. Within NA D&D each profession is led by a Professional Head of Community who will lead professional development and support the Continuous Professional Development path for their group.

Learning & Development

We have a strong learning and development ethos, supporting you to fulfil your potential by providing:

• Learning and development tailored to your role
• Professional skills development
• Access to thousands of training courses through Civil Service Learning
• Ability to obtain industry recognised qualifications supported by MOD

Hybrid Working

Where business needs allow, some roles may be suitable for a combination of office and home-based working. This is a non-contractual arrangement where all office-based employees will be expected to spend a minimum of 60% of their working time in office, subject to capacity and any required workplace adjustments. Requirements to attend other locations for official business, or work in another MOD office, will also count towards this level of attendance. Applicants can request further information regarding how this may work in their team from the Vacancy Holder (see advert for contact details). Defence Business Services cannot respond to any questions about working arrangements.

Some roles will involve regular travel within the UK to various Defence and partner sites. In addition, certain positions will require office attendance at least 3 days per week. Please note that travel across all listed sites and other Defence and partner locations within the UK will be a regular requirement. There may also be occasional opportunities or requirements for overseas travel.

Defence is going through a significant transformation programme which aims to improve the way the Command conducts its business and delivers for Defence and the nation. As a consequence of this, all posts within Defence Headquarters and in time the wider organisation, are/will be subject to review and potential changes as we continuously improve across the period of the transformation programme. These changes may be minor or could be more substantive and will generate new opportunities. Throughout, the transformation programme is committed to following the MOD’s framework on managing and supporting people through the change process and places an emphasis on early and open consultation and engagement with personnel and Trade Unions.

Further information:

The post does not offer relocation expenses.

External recruits who join the MOD who are new to the Civil Service will be subject to a six-month probation period.

Expenses incurred for travel to interviews will not be reimbursed.

Please be advised that the Department is conducting a review of all pay related allowances which could impact on those allowances that the post currently being advertised attracts.

Any move to MOD from another employer will mean you can no longer access childcare vouchers. This includes moves between government departments. You may however be eligible for other government schemes, including Tax-Free Childcare. Determine your eligibility at https://www.childcarechoices.gov.uk/.

The Ministry of Defence is committed to providing a safe and healthy working environment for its staff which includes educating them on the benefits of not smoking, protecting them from the harmful effects of second-hand smoke and supporting those who want to give up smoking. Under the Smoke-Free Working Environment policy, Smoking and the use of all tobacco products (including combustible and chewing tobacco products) will not be permitted anywhere in the Defence working environment however some exemptions are in place, please refer to local guidance. The policy is Whole Force and includes all Defence personnel, contractors, visitors and other non-MOD personnel. All applicants seeking, considering, or accepting employment with the Ministry of Defence should be aware of this policy and that it is already in place at a number of Defence Establishments.

MOD Recruitment Satisfaction Survey – We may contact you regarding your experience to help us improve our customer satisfaction. The survey is voluntary and anonymous. You may however be given the opportunity to provide additional information to help us improve our service which includes the collection of some personal data as defined by the United Kingdom General Data Protection Regulation (UK GDPR). The MOD Privacy Policy Notice sets out how we will use your personal data and your rights.

Things you need to know

Artificial intelligence

Artificial intelligence can be a useful tool to support your application, however, all examples and statements provided must be truthful, factually accurate and taken directly from your own experience. Where plagiarism has been identified (presenting the ideas and experiences of others, or generated by artificial intelligence, as your own) applications may be withdrawn and internal candidates may be subject to disciplinary action. Please see our candidate guidance (opens in a new window) for more information on appropriate and inappropriate use.

Selection process details

This vacancy is using Success Profiles (opens in a new window), and will assess your Behaviours, Experience and Technical skills.

At sift, you will be assessed against your CV and statement of suitability (1250 words)

Please upload your CV in the relevant section on the Civil Service Jobs dashboard, ensuring it includes job history, qualification details and clearly demonstrates how you meet the essential criteria outlined in the person specification. You must also submit a statement of suitability (maximum 1250 words) answering the 3 questions listed in the person specification.

Here is a link to a video offering helpful tips and guidance on the Civil Service Jobs application process: Watch: How to apply on CS Jobs: Guide and Tips

At interview, you will be assessed against your experience and the following:

Behaviours:

• Leadership
• Communicating and Influencing

Technical Skills:

• Information risk assessment and risk management
• Applied security capability
• Protective security
• Threat understanding

Presentation:

You will be asked to prepare and deliver a 5 minute (max) presentation on a role-related subject.

You will be contacted with further details prior to interview.

The Government Security Profession Career Framework and the Cyber Security - Head of Cyber Security role used in this vacancy can be found at: Government Security Profession career framework.

The Civil Service embraces diversity and promotes equality of opportunity. There is a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria. If you need to advise us that you need additional help or reasonable adjustments for the recruitment process, please contact: DBSCivPers-Resourcingteam3@mod.gov.uk .

As a result of the changes to the UK immigration rules which came in to effect on 1 January 2021, the Ministry of Defence will only offer sponsorship for a skilled worker visa under the points based system, where a role has been deemed to be business critical. This role does not meet that category and we will not sponsor a visa. It is therefore NOT open to applications from those who will require sponsorship under the points based system.

Should you apply for this role and be found to require sponsorship, your application will be rejected and any provisional offer of employment withdrawn.

The Ministry of Defence requires all candidates who are successful at interview to declare any outside interests. These declarations will be discussed with successful candidates following the interview process and before a formal offer of employment is made, as some outside interests may not be compatible with MOD civilian roles. This will not, in the majority of cases, prevent employment in MOD, but it is a measure that must be taken to ensure that appropriate mitigations can be put in place to manage any potential, perceived or actual conflicts of interest from the first day of employment.

The Ministry of Defence adopts a zero-tolerance approach to unacceptable behaviours, which includes bullying, harassment, sexual harassment, discrimination, and victimisation. You will not be eligible and will not be considered for this post if you have been dismissed from a role for such unacceptable behaviours within the last five years. This will also apply if you resign or otherwise leave a role but, because of an adverse decision, would have been dismissed for gross misconduct had you continued in that employment. Pre-employment checks will be carried out.

Feedback will only be provided if you attend an interview or assessment.

Security

Successful candidates must undergo a criminal record check.Successful candidates must meet the security requirements before they can be appointed. The level of security needed is developed vetting (opens in a new window).

See our vetting charter (opens in a new window).People working with government assets must complete baseline personnel security standard (opens in new window) checks.

Nationality requirements

Open to UK nationals only.

Working for the Civil Service

The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants.

We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window).The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.

Diversity and Inclusion

The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see theCivil Service People Plan (opens in a new window) and the Civil Service Diversity and Inclusion Strategy (opens in a new window).

Apply and further information

This vacancy is part of the Great Place to Work for Veterans (opens in a new window) initiative.Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.

Contact point for applicants

Job contact :

• Name : NA D&D Talent Acquisition Team
• Email : ukstratcomdd-hr-talentacqdel@mod.gov.uk

Recruitment team

• Email : DBSCivPers-Resourcingteam3@mod.gov.uk

Further information

Please ensure you read the attached candidate information document prior to completing your application. If you are dissatisfied with the service you have received from DBS, or believe that DBS has failed to follow the recruitment process in line with the Civil Service Commission principles of selection for appointment on merit on the basis of Fair and Open competition, you can raise a formal complaint by writing to DBS at the following address: Defence Business Services, Scanning Hub, Room 6124, Tomlinson House, Norcross Lane, Blackpool, FY5 3WP. If after raising your complaint with DBS you remain dissatisfied you can complain directly to the Civil Service Commission at the following address: Civil Service commission, Room G/8, 1 Horse Guards Road, London, SW1A 2HQ Or by email: info@csc.gov.uk.

Attachments

DD_Campaign Pack_New 2025 Opens in new window (pdf, 1889kB)Candidate Information Opens in new window (docx, 31kB)Defence Civil Servant Offer Opens in new window (pdf, 1562kB)Defence Internal Brief notice Opens in new window (docx, 43kB)