Technology and Cybersecurity Assurance and Risk Manager

Job summary

Sitting within the departments Digital, Data and Technology (DDaT) directorate, the Technology and Cybersecurity Assurance and Risk Manager sits within the DDaTs Technology, Information and Cybersecurity Operations (TICO) division. This division is responsible for the identification, assessment, evaluation and management of risks related to cybersecurity, data protection and information management. This role, within the cybersecurity element of the division, plays a vital role in leading the delivery of the directorates cyber risk programme, ensuring risk management is central to all evidence-based security decisions in DCMS.

This is an exciting time to be joining DDaT in DCMS, with the rollout of a new delivery model designed to enable the department's ability to support its sectors. As a cyber risk professional, you will have an unparalleled opportunity to apply your skills, shape the way in which DCMS manages its cybersecurity risks and gain significant exposure to senior decision-makers. What’s more, your work will make a real difference in protecting both UK citizens and society as a whole, through the use of your skills to protect vital services.

Job description

In this role, you will lead across four key areas to manage the department’s cyber risk exposure:

• Operational Risk Assessment: Lead the analysis of business-supporting security needs and undertake cyber risk assessments within established governance structures. You will provide advice to stakeholders on remedying risks by proportionately applying security capabilities and drawing on expert guidance.
• Enterprise Risk Management: Independently undertake risk management activities to reduce departmental exposure identified through cyber exercises, threat intelligence, and SME engagement, ensuring advice is consistent with professional standards and personal expertise.
• GovAssure Compliance: Lead the annual assessment of departmental compliance with the Cyber Assessment Framework (CAF), reporting on cyber maturity to senior leaders.
• Arms-Length Body (ALB) Compliance: In response to the Government Cyber Action Plan (GCAP), monitor ALB compliance with mandated security requirements to enable the Accounting Officer to make informed, auditable, and risk-based decisions.

You will manage contracts and maintain relationships with suppliers to ensure good service quality and effective risk management. You will have line management responsibilities for a small team.

Person specification

The ideal candidate would have the following key skills and experience:

Essential requirements:

Technical skills aligned to the cyber security governance & risk management skills in the Government Security Profession

• Conducting assessments for enterprise systems and reporting on security characteristics to ensure all identified risks are effectively addressed through appropriate treatment.
• Deriving security requirements through threat analysis, interpreting organisational risk appetite to provide actionable recommendations.
• Developing and applying new concepts in protective security, involving corporate enablers and the UK security community.
• Proactively leveraging diverse intelligence sources to interpret the strategic threat environment and attack surface.
• Experience of communicating complex technical matters to non-technical audiences and managing relationships with stakeholders across organisational boundaries.

Desirable skills:

• Previous experience evaluating cyber risk within government organisations or the private sector, and an existing professional network.
• Experience of successful leadership within a cyber security or intelligence environment in either the public or private sector.

Behaviours

We'll assess you against these behaviours during the selection process:

• Communicating and Influencing
• Delivering at Pace

Technical skills

We'll assess you against these technical skills during the selection process:

• Information risk assessment and risk management
• Risk understanding and mitigation

Benefits

Alongside your salary of £54,582, Department for Culture, Media and Sport contributes £15,812 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides.

DCMS values its staff and offers a wide range of benefits to everyone who works here. We’re committed to developing talent, and supporting colleagues to have great careers in our department. To support with that, some of the benefits we offer include:

• Flexible working arrangements and hybrid working - DCMS staff work on a flexible basis with time spent in offices, and time spent working from home

• 26.5 days annual leave on entry, increasing to 31.5 days after 5 years’ service

• A Civil Service pension with an employer contribution of 28.97%

• Access to the Edenred employee benefits system which offers discounts to popular retailers and access to various useful resources such as financial and savings advice

• 3 days of paid volunteering leave

• Up to 9 months maternity leave on full pay + generous paternity and adoption leave

• Staff reward and recognition bonuses that operate throughout the year

• Occupational sick pay

• Access to the Employee Assistance Programme which offers staff 24/7 confidential support and resources such as counselling, debt guidance and management advice

• Active and engaged staff networks to join including the LGBT+, Ethnic Diversity, Mental Health and Wellbeing and Gender Equality Networks

• Exceptional learning and development opportunities that you can explore alongside your day to day work

• Season ticket loan, cycle to work scheme and much more!

Terms and conditions at SCS grades will vary. Those applying for SCS roles should refer to the candidate information pack for more information on terms and conditions.

Things you need to know

Artificial intelligence

Artificial intelligence can be a useful tool to support your application, however, all examples and statements provided must be truthful, factually accurate and taken directly from your own experience. Where plagiarism has been identified (presenting the ideas and experiences of others, or generated by artificial intelligence, as your own) applications may be withdrawn and internal candidates may be subject to disciplinary action. Please see our candidate guidance (opens in a new window) for more information on appropriate and inappropriate use.

Selection process details

This vacancy is using Success Profiles (opens in a new window), and will assess your Behaviours, Experience and Technical skills.

To apply for this vacancy, you will need to submit the following documents which will assessed against the experience success profile:

• A CV setting out your career history, with key responsibilities and achievements. Please ensure you provide employment history that relates to the essential and desirable criteria, and that any gaps in employment history within the last 2 years are explained. The CV should not exceed more than 2 x A4 pages and you should insert your CV into the "Job History" section on Civil Service Jobs on the Civil Service Jobs application form.
• A Statement of Suitability (max 750 words) explaining how you consider your personal skills, qualities and experience provide evidence of your suitability for the role in reference to the essential requirements highlighted. You may also choose to reference the desirable skills listed however these will not be considered in the assessment of your application except in circumstances where there are a high number and calibre of candidates.

For the shortlist, we will select applicants demonstrating the best fit for the role by considering the evidence provided in your application.

In the event of a large number of applicants, an initial sift will be conducted on the statement of suitability. Those who are successful in the initial sift will then be scored on all elements of the application.

For support in writing your application and interviewing, please refer to the ‘Application and Interview Guidance’ document attached to the job advert.

The interview process will assess behaviours, technical skills, and experience.

The behaviours to be tested at interview are:

• Communicating and influencing
• Delivery at pace

The Technical Skills to be be tested at interview are:

• Information risk assessment and risk management
• Risk understanding and mitigation

Experience

You will also be required to prepare a presentation to demonstrate your relevant experience. Full details of this, including the topic, length of time., and whether or not you will need to use visual aids, will be sent to you prior to your interview.

Your interview will take place remotely via GoogleMeets.

For indicative sift and interview dates please refer to the attached Candidate Information Pack.

Further Information

A reserve list may be held for a period of 12 months from which further appointments can be made.

Any move to Department for Culture, Media and Sport from another employer will mean you can no longer access childcare vouchers. This includes moves between government departments. You may however be eligible for other government schemes, including Tax Free Childcare. Determine your eligibility at https://www.childcarechoices.gov.uk

New entrants are expected to join on the minimum of the pay band.

DCMS has a London and a National pay scale. For more information on this, including the circumstances in which each pay scale will apply, please see the ‘Candidate Information Pack’ attached.

If successful and transferring from another Government Department a criminal record check may be carried out.

In order to process applications without delay, we will be sending a Criminal Record Check to Disclosure and Barring Service on your behalf. However, we recognise in exceptional circumstances some candidates will want to send their completed forms direct. If you will be doing this, please advise Government Recruitment Service of your intention by emailing Pre-EmploymentChecks.grs@cabinetoffice.gov.uk stating the job reference number in the subject heading.

Applicants who are successful at interview will be, as part of pre-employment screening, subject to a check on the Internal Fraud Database (IFD). This check will provide information about employees who have been dismissed for fraud or dishonesty offences. This check also applies to employees who resign or otherwise leave before being dismissed for fraud or dishonesty had their employment continued. Any applicant’s details held on the IFD will be refused employment.

A candidate is not eligible to apply for a role within the Civil Service if the application is made within a 5-year period following a dismissal for carrying out internal fraud against government.

Reasonable Adjustment

We are committed to supporting candidates so they can perform at their best throughout the recruitment process. This includes making reasonable adjustments to our process.

In order to request an adjustment, please:

Complete the ‘Assistance required’ section on the ‘Additional requirements’ page of your application form to tell us what changes or help you might need further on in the recruitment process. For instance, you may need wheelchair access at interview, or a verbal test rather than a written one.

Alternatively, contact the Government Recruitment Service via dcmsrecruitment.grs@cabinetoffice.gov.uk as soon as possible before the closing date to discuss your needs.

Accessibility

If you are experiencing accessibility difficulties with any of the attachments, please contact us. Contact details can be found in the 'contact point for applicants' section of the job advert.

If the vacancy is offered as FTA/Loan, existing Civil Servants must join on a Loan basis only. Prior agreement to be released on loan must be obtained before commencing the application process. In the case of Civil Servants, the terms of the loan will be agreed between the home and host department and the Civil Servant. This includes grade on return.

For further information on National Security Vetting please visit the following page https://www.gov.uk/government/publications/demystifying-vetting

Feedback

Feedback will only be provided if you attend an interview or assessment.

Security

Successful candidates must undergo a criminal record check.Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check (opens in a new window).

See our vetting charter (opens in a new window).People working with government assets must complete baseline personnel security standard (opens in new window) checks.

Nationality requirements

This job is broadly open to the following groups:

• UK nationals
• nationals of the Republic of Ireland
• nationals of Commonwealth countries who have the right to work in the UK
• nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) (opens in a new window)
• nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS)
• individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020
• Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service

Further information on nationality requirements (opens in a new window)

Working for the Civil Service

The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants.

We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window).The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.

Diversity and Inclusion

The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see theCivil Service People Plan (opens in a new window) and the Civil Service Diversity and Inclusion Strategy (opens in a new window).

Apply and further information

This vacancy is part of the Great Place to Work for Veterans (opens in a new window) initiative.The Civil Service welcomes applications from people who have recently left prison or have an unspent conviction. Read more about prison leaver recruitment (opens in new window).Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.

Contact point for applicants

Job contact :

• Name : David Booth
• Email : david.booth@dcms.gov.uk

Recruitment team

• Email : dcmsrecruitment.grs@cabinetoffice.gov.uk

Further information

The law requires that selection for appointment to the Civil Service is on merit on the basis of fair and open competition as outlined in the Civil Service Commission's Recruitment Principles.
If you feel your application has not been treated in accordance with the Recruitment Principles, and you wish to make a complaint, you should contact recruitment.team@dcms.gov.uk in the first instance. If you are not satisfied with the response you receive from the Department, you can contact the Civil Service Commission at: https://civilservicecommission.independent.gov.uk/contact/

Attachments

Candidate Information Pack - 464277 Opens in new window (pdf, 6479kB)DCMS Application & Interview Guidance for Candidates Aug 23 (1) Opens in new window (pdf, 180kB)