Security Development and Compliance Lead

Job summary

The Office for National Statistics (ONS) is the UK’s largest producer of official statistics, covering a range of key economic, social and demographic topics. These include measuring changes in the value of the UK economy, estimating the size, geographic distribution, and characteristics of the population, and providing indicators of price inflation, employment, earnings, crime, and migration.

The role is within the Security Development Compliance and Audit (SDCA) team which forms part of the Security and Information Management (SaIM) directorate. The SDCA team provides an advice service to stakeholders for the complete lifecycle, security and governance of sensitive information stored within data access environments. The SDCA team also acts as an interface between stakeholders to deliver data protection assurance, monitor compliance with security policies and principles as well as provide evidence to stakeholders in support of these functions.

The primary focus of the role will be leading the Security Development and Compliance team in the development and implementation of data protection assurance and audit capabilities, in line with clearly defined security strategy and data protection standards. This also includes advising internal users, stakeholders and Information Asset Owners on compliance and risk associated with use of data. The role includes line management responsibilities for Security Development and Compliance Policy Associates HEO & EO Level.

Job description

The Role

The role supports ONS core security capability, covering service management, assurance and incident response, and provides many opportunities for cross-skilling and development.

The focus, outcomes and responsibilities are primarily aligned to the Government Security Profession Cyber Security Monitoring Lead role, with elements from Corporate Enablers Security Adviser and Process Lead roles.

Responsibilities:

• Developing, owning and implementing effective security assurance processes and compliance documentation (e.g. DPIAs, SyOPs, etc.) to meet regulatory and legal requirements.
• Developing and implementing effective security capability for data systems and data use which incorporates advice from Security and industry best practice.
• Establishing detailed understanding of the nature, scope, context, purposes and risk of data processing by different business areas to provide comprehensive guidance and effective oversight of compliance.
• Developing and promoting effective training, engagement and awareness-raising activities to promote security best practice.
• Leading investigations into non-compliance incidents and breaches, directing mitigating actions and engaging on cross government risks through maintenance and use of secure communications.
• Supporting the shaping of the security monitoring strategy, ensuring requirements, policies and standards to govern all activities and outputs are met.
• Managing the monitoring, triaging, and investigation of security alerts from protective monitoring platforms to identify security incidents and reviewing analysis of security event data to manage security incident response, reporting, or escalation where appropriate.

Person specification

Essential Criteria:

• Detailed knowledge of data protection legislation and regulations, including understanding of their implementation in different contexts across Government.
• Ability to assess risk of diverse data use cases across multiple business areas advise on mitigations.
• Ability to understand and evaluate threat based on quantitative and qualitative data and recommend protective security measures.
• Ability to effectively manage a team of specialists based across different sites within a dynamic working environment.
• Understanding of UK Government Security Policy Framework and relevant Information Assurance Standards, e.g. ISO 27001, Data Protection Act.
• Ability to work as part of a team in a multi-discipline environment.
• HMG Vetting at Security Clearance (SC) level will be required prior to starting in role.

DesirableCriteria:

• Holding or willing to work towards professional development qualifications within specialist Security discipline g.ISO 27001 Security Auditor etc.

Behaviours

We'll assess you against these behaviours during the selection process:

• Communicating and Influencing
• Managing a Quality Service
• Leadership
• Working Together

Technical skills

We'll assess you against these technical skills during the selection process:

• Applied Security Capability - Practitioner
• Information Risk Assessment and Risk Management - Practitioner
• Protective Security - Working
• Threat Understanding - Working

Benefits

Alongside your salary of £44,050, Office for National Statistics contributes £12,761 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides (opens in a new window).

The Office for National Statistics is part of the Civil Service, and as such we share a number of key benefits with other departments, whilst also having our own unique offerings to support our 5400 valued colleagues across the business.

Whether you are hearing about us for the first time or already know a bit about our organisation, we hope that the benefits pack attached (bottom of page) will give you a great insight into the benefits and facilities available to our colleagues and our fantastic working culture.

This role is part of the cross-government Government Digital and Data (formerly DDaT) profession framework. As a role within Government Digital and Data (formerly DDaT) at the ONS, we also offer benefits such as:

• Protected Learning Time to spend on your personal development and side-projects.

• A supportive and active Community of Practice which you will be expected to contribute to, helping ensure you and your colleagues get the training, development and opportunities you need to progress your careers.

We are committed to supporting our people’s wellbeing by offering flexible ways of working that support a healthy work life balance. We are happy to explore opportunities with you about working flexibly in line with our hybrid working policies.

Inclusion & Accessibility

At ONS we are always looking to attract the very best people from the widest possible talent pool, and we are proud to be an inclusive, equal opportunities employer. As a Disability Confident Leader we’re committed to ensuring that all candidates are treated fairly throughout the recruitment process.

As part of our application process, you will be prompted to provide details of any reasonable adjustments to our recruitment process that you need. If you would like to discuss any reasonable adjustments before applying, please contact the recruitment team in the first instance.

If you would like an accessible version of any of the attachments or recruitment documents below or linked to in this advert, please contact the recruitment team who will be happy to assist.

Things you need to know

Artificial intelligence

Artificial intelligence can be a useful tool to support your application, however, all examples and statements provided must be truthful, factually accurate and taken directly from your own experience. Where plagiarism has been identified (presenting the ideas and experiences of others, or generated by artificial intelligence, as your own) applications may be withdrawn and internal candidates may be subject to disciplinary action. Please see our candidate guidance (opens in a new window) for more information on appropriate and inappropriate use.

Selection process details

This vacancy is using Success Profiles (opens in a new window), and will assess your Behaviours, Experience and Technical skills.

Security Clearance

For ONS the requirement for SC clearance is to have been present in the UK for 3 consecutive years immediately prior to applying and the department will consider eligibility by exception on a case-by-case basis. You will be asked to provide information regarding your UK residency during your application, and failure to provide this will result in your application being rejected.

If you are unsure that you meet the eligibility above, please read the information available on Gov.uk on this link, or contact the recruitment email on the advert before applying to discuss, as failure to meet the residency requirements will result in your security clearance application being rejected and any offer of employment being withdrawn.

At the point of SC application, you will need to provide or give access to the following evidence:

• Departmental or company records (personnel files, staff reports, sick leave reports and security records)
• UK criminal records covering both spent and unspent criminal records
• Your credit and financial history with a credit reference agency
• Security Services records

For full guidance in relation to the use of AI through the recruitment process, please read A candidate’s guide to artificial intelligence (AI) in recruitment

Please note that all campaigns may be subject to withdrawal at any stage if the internal resource position changes.

Application Process

Number of Stages: 2 stage process

Stage 1: Application

Stage 2: Interview

Stage 1 – Application

The assessment process at the application stage will be based on your work history, skills, experience, CV, and personal statement. It is important that your application is tailored to highlight the skills, knowledge, and experience relevant to the role.

A personal statement is required at application stage, the maximum wordcount allowed is 1250, which should not be exceeded. You should provide evidence for each essential skill criterion listed in the person specification. As these criteria are scored, it is advisable to give clear examples for each one, including the impact of your actions, ideally utilising the STAR technique (Situation, Task, Action, Result).

Please note that Success Profiles Behaviour examples are not required at this stage of the application process.

When a high volume of applications are received, the sift pass mark may be adjusted. Candidates will be invited to interview based on their merit order, with those achieving the highest scores being prioritised. Applicants who score below the adjusted pass mark but still pass will be placed on hold and may be invited to interview at a later date.

Stage 2 – Interview

If invited to interview, you will be assessed using techniques aligned with the Civil Service Success Profiles framework, covering all behaviours listed in the job advert and any required technical skills.

Interviews may be in person or via Microsoft Teams.

A reserve list may be held for a period up to 12 months from which further appointments may be made.

The Sift will be conducted from 16/07/2026

Interviews will be conducted from 27/07/2026

For the full terms and conditions of the post, please see attachment.

Near Misses

We often have similar roles available at different grades. If a candidate is suitable for a similar role or a lower grade than they have applied for, we may offer the candidate that role without the need to go through a further selection process providing the role has the same behaviours and essential skills.

GDD Pay

This role is eligible for the Government Digital and Data (GDD) Capability and Pay Framework. If you are successful at interview, your salary will be directly linked to your capability outcome, as determined by your performance in the Technical section of the interview.

• Capability Outcome: Assessed based on scores achieved during the technical interview.
• Salary Determination: Your starting salary will reflect the capability level assigned.
• Feedback: Full feedback on your capability outcome will be provided at the point of offer.

All successful candidates are required to undertake an annual capability assessment as part of their ongoing employment terms. The outcome of this assessment directly influences individual pay levels:

• Higher Capability Outcome: Results in an increase in pay.
• Lower Capability Outcome: Results in a decrease in pay.

Completion of the assessment is mandatory. Failure to complete the annual capability assessment will result in the individual being transitioned to ONS pay terms and conditions, with a corresponding adjustment to their pay.

If you're already in a GDD Group 1 role and receiving GDD pay, and you make a lateral move (i.e. same grade, different role):

• Initial Capability Assessment:
• Development Plan:
• Reassessment at 6 Months:

Starting salary for roles within the Government Digital and Data (GDD) Capability and Pay Framework is determined solely by the capability outcome achieved during the recruitment process.

Please note:

• Existing allowances (scarce skills) will not be taken into account when calculating starting salary.
• This policy applies to all candidates, including existing Civil Servants and ONS colleagues transitioning to the GDD Capability and Pay Framework.

Curious about Government Digital and Data? Dive into the Candidate Pack to learn more

Feedback will only be provided if you attend an interview or assessment.

Security

Successful candidates must undergo a criminal record check.Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check (opens in a new window).

See our vetting charter (opens in a new window).People working with government assets must complete baseline personnel security standard (opens in new window) checks.

Nationality requirements

This job is broadly open to the following groups:

• UK nationals
• nationals of the Republic of Ireland
• nationals of Commonwealth countries who have the right to work in the UK
• nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) (opens in a new window)
• nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS)
• individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020
• Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service

Further information on nationality requirements (opens in a new window)

Working for the Civil Service

The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants.

We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window).The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.

Diversity and Inclusion

The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see theCivil Service People Plan (opens in a new window) and the Civil Service Diversity and Inclusion Strategy (opens in a new window).

Apply and further information

This vacancy is part of the Great Place to Work for Veterans (opens in a new window) initiative.Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.

Contact point for applicants

Job contact :

• Name : Jonathan Booth
• Email : Government-Digital-and-Data-Recruitment@ons.gov.uk

Recruitment team

• Email : Government-Digital-and-Data-Recruitment@ons.gov.uk

Further information

If you feel your application has not been treated in accordance with the Recruitment Principles and you wish to make a complaint, in the first instance, you should contact recruitment.complaints@ons.gov.uk. If you are not satisfied with the response you receive from the Department, you can contact the Civil Service Commission

Attachments

2721 DDAT Advert 1B Permanent - ONS National v1-00 Opens in new window (pdf, 87kB)