Search
Header navigation
Principal Cyber Security Lead

Principal Cyber Security Lead

Competition & Markets Authority
locationGreater London, UK
remoteHybrid
ExpiresExpires: Expiring in less than 3 weeks
IT
Flexible
£76,400 - £82,450 per year

Job summary

This is a particularly exciting moment to become part of the Competition and Markets Authority (CMA). As the principal body responsible for competition and consumer protection in the United Kingdom, the CMA is charged with ensuring that markets operate efficiently and fairly for consumers. The organisation plays a crucial role in tackling significant challenges currently facing the UK, such as enhancing productivity, driving economic growth, strengthening economic resilience, reducing cost of living pressures, and addressing the influence of major digital corporations. Additionally, the CMA is at the forefront of navigating the unprecedented opportunities and risks presented by emerging technologies, including Artificial Intelligence.

In response to these evolving challenges, the CMA has formed the Executive Directorate for Data, Technology, and Insight (DTI). This directorate brings together expertise and activities across several critical domains of increasing importance. Among these are data science, data engineering, artificial intelligence, behavioural science, technology insight, and digital forensics. The directorate also encompasses the development and management of technology systems, architecture, digital products, and tools, thereby consolidating the CMA’s capability to respond effectively to the demands of the digital age.

Job description

The Principal Cyber Security Lead is a vital member of the Cloud and Infrastructure team, dedicated to safeguarding data, systems, and services.

The role centres on becoming the technical cyber security lead within CMA, taking the technical lead for the entire defensive stack and the opportunity to remediate, improve, and enhance CMAs cyber. By performing these functions, the Principal Cyber Security Lead supports the CMA’s ongoing commitment to secure and robust digital operations.

Key responsibilities will include;

  • Providing technical expertise and leading on security controls
  • Security solution administration and enhancement
  • Incident response
  • Security Operations Centre (SOC) engagement
  • Vulnerability reporting
  • Continuous improvement and governance
  • Identity and access management
  • Compliance and framework alignment

Person specification

It is essential that you can provide evidence and examples for each of the following selection criteria in your application. For tips on how to make the most your application, please have a look at our guidance document.

Essential:

  • Demonstrated experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management. (Lead Criteria)
  • Hands on experience securing Microsoft Azure and Amazon Web Services cloud environments. (Lead Criteria)
  • Technical experience working and securing Microsoft Client and Server technologies such as Windows 11, Windows Server and SQL Server.
  • Knowledge of security operations, digital threat monitoring, and common frameworks for cyber incident response.
  • Experience in taking ownership for analysing and interpreting security events/logs and performing digital forensics tasks end-to-end from alert to remediation.
  • Strong analytical, communication, and problem-solving skills, including the ability to produce clear technical and non-technical reports.

Desirable:

  • Understanding of network protocols, firewalls, intrusion detection/prevention, anti-malware, and incident response methodologies.
  • Recognised cyber security certifications (e.g., CompTIA Security+, CEH, GIAC, CISSP).
  • Experience with Darktrace
  • Experience with Ubuntu (or Linux)

Qualifications

Bachelor’s degree in Cybersecurity or Computer Science

Behaviours

We'll assess you against these behaviours during the selection process:

  • Delivering at Pace
  • Communicating and Influencing
  • Managing a Quality Service
  • Changing and Improving
  • Making Effective Decisions

Technical skills

We'll assess you against these technical skills during the selection process:

  • Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools.
  • Securing Microsoft Azure and Amazon Web Services cloud environments.
  • Securing Microsoft Client and Server technologies such as Windows 11, Windows Server and SQL Server.
  • You will be assessed against the Digital, Data and Technology profession capability framework at Lead Security Architect level. - https://ddat-capability-framework.service.gov.uk/role/security-architec…

Benefits

Alongside your salary of £76,400, Competition & Markets Authority contributes £22,133 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides.

You’ll also get:

  • 25 days leave (increasing to 30 days over five years), plus 8 public holidays and an additional day off for the King’s birthday. In addition, you’ll be able to access a wide range of other types of leave as and when you need it, including generous maternity, paternity, shared parental leave and adoption options, as well as paid special leave for volunteering
  • Season ticket loans, cycle to work scheme, flu vaccinations and eye tests
  • Access to the Civil Service Sports & Leisure, giving discounted gym membership, high street discounts, free access to UK wide attractions and a free Tastecard
  • A range of wellbeing benefits, including an employee assistance programme, flexible working options and family friendly policies, regular networking events and professional learning opportunities at work

You can read more about our benefits in our candidate pack.

Our Values

We are Ambitious and Evidence-based, and always strive for Excellence.​ We treat everyone with Respect and are Collaborative and Inclusive.​

Everything we do is underpinned by the Civil Service values: Honesty, Integrity, Impartiality and Objectivity.

You can read more about life at the CMA in our candidate pack

Things you need to know

Artificial intelligence

Artificial intelligence can be a useful tool to support your application, however, all examples and statements provided must be truthful, factually accurate and taken directly from your own experience. Where plagiarism has been identified (presenting the ideas and experiences of others, or generated by artificial intelligence, as your own) applications may be withdrawn and internal candidates may be subject to disciplinary action. Please see our candidate guidance (opens in a new window) for more information on appropriate and inappropriate use.

Selection process details

This vacancy is using Success Profiles (opens in a new window), and will assess your Behaviours, Experience and Technical skills.

Application and sift stage

  • As part of the application process, you will be asked to complete a CV, personal statement, and an online application form. Further details about application requirements are listed on the application form.
  • The selection process is noted below and will comprise of the sift (CV & application review) and interviews.
  • Please note that it is essential that your personal statement is aligned to provide evidence that you have the knowledge and experience for each of the essential criteria (as included on the role profile attached and listed above under 'Person Specification') in your application. Your personal statement should be no more than 1250 words. You will first be sifted on the first two criteria points (Lead Criteria). If your application progresses to a full sift, all elements of the essential criteria listed under Person Specification will then be considered.
  • We may raise the score required at sift stage to progress to interview if we receive a high number of applications and take through the highest performing candidates to the interview stage.

Interview stage

  • At the CMA we apply a blended interview technique, allowing us to find out more about you and we use the Success Profiles framework assessing the Behaviours and experience (essential criteria) listed in the advert and attached role profile.
  • During the interview(s) you will be asked questions based on the Technical skills, Behaviours and experience outlined in the role profile.
  • A reserve list may be held for up to 12 months from which further appointments may be made for the same or similar roles.

There will be two interview stages. The first interview will be a 30 minute Technical interview in which you will be asked questions aligned to the required technical skills.

Candidates that are successful at the first interview will be invited to a second 45-60 minute interview in which you will be asked Technical, Behaviour and Experience questions.

Timeline (the dates outlined below are indicative and may be subject to change)

  • The advert closing date is 23:55pm on 8th June 2026. We are not able to accept late applications.
  • The sift is scheduled to take place 9th - 12th June 2026
  • Interviews will be held from the week commencing 22nd June 2026

Reasonable adjustments

Our recruitment process is fully inclusive and we can make adjustments to provide you with the opportunity and support to bring your best self to the recruitment process. This could include having an interview buddy, extra time at interviews/assessments, or receiving interview questions in advance. We will be happy to discuss any person-centred adjustments you’d like us to make to the process and you can contact us by emailing our dedicated mailbox at adjustments@cma.gov.uk



Feedback will only be provided if you attend an interview or assessment.

Security

Successful candidates must undergo a criminal record check.Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check (opens in a new window).

See our vetting charter (opens in a new window).People working with government assets must complete baseline personnel security standard (opens in new window) checks.

Nationality requirements

This job is broadly open to the following groups:

  • UK nationals
  • nationals of the Republic of Ireland
  • nationals of Commonwealth countries who have the right to work in the UK
  • nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) (opens in a new window)
  • nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS)
  • individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020
  • Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service
Further information on nationality requirements (opens in a new window)

Working for the Civil Service

The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants.

We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window).The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.

Diversity and Inclusion

The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see theCivil Service People Plan (opens in a new window) and the Civil Service Diversity and Inclusion Strategy (opens in a new window).

Apply and further information

This vacancy is part of the Great Place to Work for Veterans (opens in a new window) initiative.Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.

Contact point for applicants

Job contact :

Recruitment team

Further information

If your application has not been treated in accordance with the Recruitment Principles and you wish to make a complaint, you should contact Recruitment@cma.gov.uk in the first instance. If you are not satisfied with the response you receive you can contact the Civil Service Commission http://civilservicecommission.independent.gov.uk.

Attachments

Role Profile - Principal Cyber Security Lead Opens in new window (pdf, 243kB)

Salary range

  • £76,400 - £82,450 per year