Search
Header navigation
Penetration Team Manager

Penetration Team Manager

Cabinet Office
remoteOn-Site
ExpiresExpires: Expiring in less than 5 weeks
IT
Full time
£57,204 - £68,558 per year

Job summary

The Cabinet Office supports the Prime Minister and ensures the effective running of government. It is also the corporate headquarters for government, in partnership with HM Treasury, and takes the lead in certain critical policy areas.

We are the Cabinet Office’s cyber security team, and our mission is to secure the department against cyber threats. We protect our nationwide internal IT infrastructure, and high-profile citizen-facing digital services such as GOV.UK.

Security Vetting Requirements

This role requires SC (Security Check) which will be conducted by NSV (National Security vetting). You need to have been resident in the UK within the past five years in order to apply.

Here is a short video why this is required.

Job description

The Ethical Hacking team and our strategic delivery partner deliver penetration testing services to the Cabinet Office, and are responsible for testing the security of the department’s IT and digital services by simulating a range of threat actors using offensive tools and techniques. This enables the department to identify and drive cyber-security improvements.

As the Penetration Test Manager, you will be a pivotal figure in managing the team, the customer engagements, relationship building and planning/scoping for both the Ethical Hacking Team and our Strategic Delivery Partner which provides third-party penetration testing. You will collaborate with internal stakeholders to ensure meaningful penetration tests that discover risks and deliver maximum value.

As the Penetration Team Manager, you will:

  • coordinate delivery of penetration testing services across the Cabinet Office, including through the internal team and commercial partners
  • coordinate the triage and remediation of identified vulnerabilities, working closely with service teams and developers
  • work closely with other teams across Cyber Security and the wider Cabinet Office to proactively reduce cyber security vulnerabilities
  • produce regular reporting which delivers insights on penetration testing team activities and the impact on cyber security risk
  • own penetration testing team tooling, responsible for procurement, vendor management, configuration, and integration
  • support the wider Cyber Defence team in understanding, detecting and responding to security threats across the Cabinet Office
  • act as an escalation point for, and provide coaching and mentoring to, security analysts
  • be responsible for leadership and line management of security analysts

Cyber incidents can and do arise on a 24/7 basis. The team operates an out-of-hours on call rota, which you will be expected to join.

Person specification

It’s essential that you have:

  • Ability to scope and plan complex and technical projects and proactively adjust to shifting priorities
  • Passionate about improving customer journey experience.
  • Ability to use Google workspace or its equivalent
  • Understanding of a variety of project delivery methodologies and how to implement them
  • Exceptional customer facing communication skills
  • Can drive effective and efficient meetings
  • The ability to capture and execute on key action items
  • Good verbal and written communication skills
  • Analytical skills
  • Experience of working in an Agile environment as part of a multidisciplinary team

It is also desirable that you have:

  • Experience working in technical teams with environments undergoing frequent change
  • A basic understanding of cyber security principles
  • A basic knowledge of contract management
  • Experience in the management of penetration testing engagements and the scoping of penetration testing activity
  • Understands technical reports to ensure resolution of issues, create management information and help provide Cyber assurance.

Additional information:

Cabinet Office policy is that a minimum 60% of your working time should be spent at your principal workplace. For some roles, due to their nature and the business need, this may be up to 100%. Requirements to attend other locations for official business will also count towards this level of attendance.

Behaviours

We'll assess you against these behaviours during the selection process:

  • Managing a Quality Service
  • Leadership
  • Delivering at Pace
  • Communicating and Influencing

We only ask for evidence of these behaviours on your application form:

  • Managing a Quality Service
  • Leadership
  • Delivering at Pace

Technical skills

We'll assess you against these technical skills during the selection process:

  • Penetration Testing lifecycle
  • Knowledge of the Common Vulnerability Scoring System, and how it applies to penetration testing
  • Accurately scoping penetration testing engagements

Benefits

Alongside your salary of £57,204, Cabinet Office contributes £16,571 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides.
  • Learning and development tailored to your role.
  • An environment with flexible working options.
  • A culture encouraging inclusion and diversity.
  • A Civil Service Pension which provides an attractive pension, benefits for dependants and employer contributions of 28.97%.
  • A minimum of 25 days of paid annual leave, increasing by one day per year up to a maximum of 30.

Things you need to know

Artificial intelligence

Artificial intelligence can be a useful tool to support your application, however, all examples and statements provided must be truthful, factually accurate and taken directly from your own experience. Where plagiarism has been identified (presenting the ideas and experiences of others, or generated by artificial intelligence, as your own) applications may be withdrawn and internal candidates may be subject to disciplinary action. Please see our candidate guidance (opens in a new window) for more information on appropriate and inappropriate use.

Selection process details

This vacancy is using Success Profiles (opens in a new window), and will assess your Behaviours, Strengths, Experience and Technical skills.

Application process

Candidates will be asked to provide:

  • A CV
  • Personal statement (max: 500 words)
  • The Behaviours listed

Further details around what this will entail are listed on the application form.

Your personal statement should explain how your knowledge, skills and experience (using examples) meet the requirements for this role in line with the Success Profile element(s) being assessed (e.g. Behaviours, Experience etc). Using the job advert information, particularly the job description and person specification. Information is available on the application process (including what Civil Service Success Profiles is) and how to write your personal statement.

Civil Service Success Profile framework will be used to assess behaviours listed on this advertisement.

Should a large number of applications be received, an initial sift may be undertaken using the lead behaviour, Managing a Quality Service.

Selection process

During the selection process, candidates will be assessed on the following;

  • Civil Service Behaviour (available on this job advertisement)
  • Technical skills (on this job advertisement)
  • Strengths (will be used by hiring managers to gauge the candidate's suitability)

Civil Service Success Profile framework will be used to assess behaviours and technical skills listed on this advertisement.

Expected timeline

Expected sift date – w/c 28th May 2026

Expected interview date – w/c 8th June 2026

Your interview will either be conducted face to face or by video. You will be notified of the location if you are selected for interview.

Reasonable adjustments

If a person with disabilities is put at a substantial disadvantage compared to a non-disabled person, we have a duty to make reasonable changes to our processes.

If you need a change to be made so that you can make your application, you should:

Contact Government Recruitment Service via cabinetofficerecruitment.grs@cabinetoffice.gov.uk as soon as possible before the closing date to discuss your needs.

Complete the ‘Assistance required’ section in the ‘Additional requirements’ page of your application form to tell us what changes or help you might need further on in the recruitment process. For instance, you may need wheelchair access at interview, or if you’re deaf, a Language Service Professional.

Further information

If you are experiencing accessibility problems with any attachments on this advert, please contact the email address in the 'contact point for applicants' section.

Please note that this role requires SC clearance, which would normally need 5 years UK residency in the past 5 years. This is not an absolute requirement, but supplementary checks may be needed where individuals have not lived in the UK for that period. This may mean your security clearance (and therefore your appointment) will take longer or, in some cases, not be possible.

Please note terms and conditions are attached. Please take time to read the document to determine how these may affect you.

Any move to Cabinet Office from another employer will mean you can no longer access childcare vouchers. This includes moves between government departments. You may however be eligible for other government schemes, including Tax Free Childcare; for further information visit the Childcare Choices website.

A reserve list will be held for a period of 12 months, from which further appointments can be made.

If successful and transferring from another Government Department a criminal record check may be carried out.

In order to process applications without delay, we will be sending a Criminal Record Check to Disclosure and Barring Service/Disclosure Scotland on your behalf.

However, we recognise in exceptional circumstances some candidates will want to send their completed forms direct. If you will be doing this, please advise Government Recruitment Service of your intention by emailing Pre-EmploymentChecks.grs@cabinetoffice.gov.uk stating the job reference number in the subject heading.

For further information on the Disclosure Scotland confidential checking service telephone: the Disclosure Scotland Helpline on 0870 609 6006 and ask to speak to the operations manager in confidence, or email Info@disclosurescotland.co.uk

For further information on National Security Vetting please visit the Demystifying Vetting website.

New entrants are expected to join on the minimum of the pay band.

Applicants who are successful at interview will be, as part of pre-employment screening, subject to a check on the Internal Fraud Database (IFD). This check will provide information about employees who have been dismissed for fraud or dishonesty offences. This check also applies to employees who resign or otherwise leave before being dismissed for fraud or dishonesty had their employment continued. Any applicant’s details held on the IFD will be refused employment.

A candidate is not eligible to apply for a role within the Civil Service if the application is made within a 5-year period following a dismissal for carrying out internal fraud against government.

This role is full time only. Applicants who wish to work an alternative pattern are welcome to apply however your preferred working pattern may not be available and you should discuss this with the vacancy holder before applying.

Feedback



Feedback will only be provided if you attend an interview or assessment.

Security

Successful candidates must undergo a criminal record check.Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check (opens in a new window).

See our vetting charter (opens in a new window).People working with government assets must complete baseline personnel security standard (opens in new window) checks.

Nationality requirements

This job is broadly open to the following groups:

  • UK nationals
  • nationals of the Republic of Ireland
  • nationals of Commonwealth countries who have the right to work in the UK
  • nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) (opens in a new window)
  • nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS)
  • individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020
  • Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service
Further information on nationality requirements (opens in a new window)

Working for the Civil Service

The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants.

We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window).The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.

Diversity and Inclusion

The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see theCivil Service People Plan (opens in a new window) and the Civil Service Diversity and Inclusion Strategy (opens in a new window).

Apply and further information

This vacancy is part of the Great Place to Work for Veterans (opens in a new window) initiative.The Civil Service welcomes applications from people who have recently left prison or have an unspent conviction. Read more about prison leaver recruitment (opens in new window).Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.

Contact point for applicants

Job contact :

Recruitment team

Further information

Appointment to the Civil Service is governed by the Civil Service Commission’s Recruitment Principles. If you feel that your application has not been treated in accordance with the Recruitment Principles, and wish to make a complaint, then in the first instance you should contact Government Recruitment Service by email at : cabinetofficerecruitment.grs@cabinetoffice.gov.uk
If you are not satisfied with the response you receive, then you can contact the Civil Service Commission at info@csc.gov.uk. For further information on the Recruitment Principles and bringing a complaint to the Civil Service Commission, please visit their website at: https://civilservicecommission.independent.gov.uk/.

Attachments

Cabinet Office Employee Offer (1) Opens in new window (pdf, 302kB)Cabinet Office Terms and Conditions - External 2025-02-20 Opens in new window (docx, 83kB)

Salary range

  • £57,204 - £68,558 per year