DDaT – Head of Cyber Security

DI is a complex organisation providing assured products and analysis to customers within MOD and across government. We rely on a large and complex estate of customised and specialist systems to do this. The security and assurance of these is critical to delivering DI’s outputs.

This is a newly created post working closely with the new DI CIO to build and deliver an information and cyber security function across DI. The role will have a diverse scope, looking at both our current systems and how we secure new systems as we move to cloud and new enterprise platforms.

In Defence Intelligence (DI) our people solve problems, create understanding and give perspective to the diverse and complex Defence threats and challenges in a rapidly changing world. Together, our civilians and military personnel inform decision making in Defence, handle complex finance programmes and develop new technology.

In DI we believe your unique experiences, views and understanding of the world could provide a vital perspective and contribution to our work. We recognise that great minds do not think alike and are striving to increase our diversity representation at all levels. As an equal opportunities employer we hire, train and promote people based on merit and inspire to create an inclusive workplace free of discrimination. We also offer flexible working arrangements such as flexitime, job share and compressed hours.

Strategic Command is going through a significant transformation programme which aims to improve the way the Command conducts its business and delivers for Defence and the nation. As a consequence of this, all posts within Strategic Command Headquarters and in time the wider organisation, are/will be subject to review and potential changes as we continuously improve across the period of the transformation programme. These changes may be minor or could be more substantive and will generate new opportunities. Throughout, the Command’s transformation programme is committed to following the MOD’s framework on managing and supporting people through the change process and places an emphasis on early and open consultation and engagement with the Command’s personnel and Trade Unions.

All job adverts in DI are subject to fair and open competition.

This position is advertised at 37 hours per week.

The DI Head of Cyber Security is responsible for understanding and managing Cyber and Security risk across DI. Working across MOD and with Partners they will ensure that DI’s Cyber and Information Security Risk is well handled to maximise the data and information that can be shared in support of DI’s mission.

This will include developing a robust Governance, Risk and Compliance Framework for managing cyber risk, supporting the development of Secure by Design architectures, managing residual information security risk and risk on legacy systems, as well as working closely with Defence Digital to respond to cyber security incidents.

This is an exciting opportunity to shape and transform the way services are secured, developing the capability to protect data, demonstrating and sharing best practices within and outside the organisation.

The Defence Intelligence Head of Cyber Security is an exciting and challenging new post to manage cyber and information risk across one of MOD most complex, secure and diverse functions. We are looking for a candidate who:

• Has a strong understanding of cyber and information security.
• Understands the threat landscape for mission critical systems and the unique risks that they are exposed to.
• Has good technical knowledge of a variety of systems and technology to enable them to provide advice on Secure by Design architectures and to provide advice on balancing information risk and operational need.
• Can form strong partnerships across MOD and Partners to maintain confidence in DI’s cyber security posture and respond to changing requirements.

Will work closely with Defence Digital Cyber Defence to ensure the Defence cyber resilience strategy is embedded within DI.

Responsibilities

• Responsible for developing and maintaining a robust cyber security policy and direction across DI. Acting as a focal point for cyber audit and assurance activities across the HLB.
• Lead and undertake risk management activities across DI against the hardest or most novel scenarios, while applying the fundamental principles of cyber security risk management
• Act as the functional lead for Information and Cyber assurance and security advising senior leaders on information risk.
• Work with DI CIO, and senior leaders to define and maintain DI’s appetite for Cyber Risk. Ensure this is appropriately reflected in existing and planned capability.
• Lead the analysis and definition of cyber security risks through DI, in accordance with the DI and UK Strategic Command Security Risk Management (SRM) framework.
• Provide technical input and assurance to both new and legacy capabilities, ensuring that they meet the Department’s Secure by Design Standards.
• Actively participate in a community of cyber defence professionals across DI, Partners and Government to ensure our information is robust protected and risk is well managed as threats evolve.
• Maintain a thorough understanding of the evolving cyber threat picture, particularly as it pertains to DI. Ensure that the information risk picture is continually updated in response.

We’ll assess you against these behaviours during the selection process:

• Communicating and Influencing
• Leadership

We’ll assess you against these technical skills during the selection process:

• Information risk assessment and risk management
• Applied security capability
• Protective security
• Threat understanding

There are a wide variety of employee benefits for civil service staff in DI, including (this list is not exhaustive):

• Salary Payroll Giving
• Financial Education Resources
• Bicycle Purchase Advance & Cycle to Work Scheme
• Holiday, Season Ticket, Tenancy Deposit & Work Space Salary Advance Loans
• Free Parking (not available at Main Building)
• Generous Pension Scheme with employer contribution between 26.6% & 30.3%
• Death in Service Benefit
• Up to 30 days’ Annual Leave, and one Privilege Day
• Special Leave (including Study Leave and Volunteering Leave)
• Adoption, and Shared Parental Leave
• Childcare Vouchers
• On-Site Nursery & Childcare at some MOD sites
• Flexible Working Hours
• Discounted Healthcare Packages
• Eyesight Tests and Spectacles
• Free On-Site Gyms at many sites
• Employee Assistance Programme
• In-Year Reward and Thank You Schemes
• Talent Schemes
• Defence Discounts
• Microsoft & Vodafone Employee Discount Schemes
• Boundless and Civil Service Sports Council Memberships available
• On-site shops, restaurants & cafes at most sites

This post is eligible for a Digital Skills Allowance, therefore the maximum salary for this role has the potential of up to £94,490 per annum. Eligibility for this allowance will be assessed at interview against the 4 core technical skills only and reviewed annually in line with departmental policy.

Further details may be found at Civilian Discover My Benefits (mod.gov.uk)

Where business needs allow, some roles may be suitable for a combination of office and home-based working. This is a non-contractual arrangement where all office-based employees will be expected to spend a minimum of 60% of their working time in office, subject to capacity and any required workplace adjustments. Requirements to attend other locations for official business, or work in another MOD office, will also count towards this level of attendance. Applicants can request further information regarding how this may work in their team from the Vacancy Holder (see advert for contact details). Defence Business Services cannot respond to any questions about working arrangements.

The post does not offer relocation expenses.

External recruits who join the MOD who are new to the Civil Service will be subject to a six-month probation period.

Please Note: Expenses incurred for travel to interviews will not be reimbursed.

Please be advised that the Department is conducting a review of all pay related allowances which could impact on those allowances that the post currently being advertised attracts.

Any move to MOD from another employer will mean you can no longer access childcare vouchers. This includes moves between government departments. You may however be eligible for other government schemes, including Tax-Free Childcare. Determine your eligibility at https://www.childcarechoices.gov.uk/.

The Ministry of Defence is committed to providing a safe and healthy working environment for its staff which includes educating them on the benefits of not smoking, protecting them from the harmful effects of second-hand smoke and supporting those who want to give up smoking. Under the Smoke-Free Working Environment policy, Smoking and the use of all tobacco products (including combustible and chewing tobacco products) will not be permitted anywhere in the Defence working environment however some exemptions are in place, please refer to local guidance. The policy is Whole Force and includes all Defence personnel, contractors, visitors and other non-MOD personnel. All applicants seeking, considering, or accepting employment with the Ministry of Defence should be aware of this policy and that it is already in place at a number of Defence Establishments.

MOD Recruitment Satisfaction Survey – we may contact you regarding your experience to help us improve our customer satisfaction. The survey is voluntary and anonymous. You may however be given the opportunity to provide additional information to help us improve our service which includes the collection of some personal data as defined by the United Kingdom General Data Protection Regulation (UK GDPR). The MOD Privacy Notice sets out how we will use your personal data and your rights.

Job contact :

Recruitment team