Cyber and Information Security Lead - Newcastle upon Tyne, United Kingdom - Cabinet Office

Cabinet Office
Cabinet Office
Verified Company
Newcastle upon Tyne, United Kingdom

2 weeks ago

Tom O´Connor

Posted by:

Tom O´Connor

beBee Recruiter
Description

Details:


Reference number:


Salary:

- £53,400 - £60,990
  • A Civil Service Pension with an average employer contribution of 27%
    Job grade:
  • Grade 7
    Contract type:
  • Permanent
    Business area:
  • CO
  • Government People Group (GPG)
    Type of role:
  • Analytical
  • Architecture and Data
  • Digital
  • Governance
  • Information Technology
  • Risk Management
  • Security
  • Strategy
    Working pattern:
  • Flexible working, Fulltime, Job share, Parttime
    Number of jobs available:
  • 2Contents
Location

About the job


Benefits:

Things you need to know

Location

  • Bristol, Glasgow, Manchester, NewcastleuponTyne, YorkAbout the job

Job summary:

The Government People Group exists to work with departments, professions, and functions to build a modern, effective Civil Service.

We support the government workforce with the right skills and capability.

We are working with leaders to get the right people in the right jobs, with the right skills and continuous learning to excel in their roles.


We provide leadership, and in turn, create leaders with exceptional line management capability across departments, influencing partners in the wider public sector and beyond.

This involves getting our retention and reward strategy right, to nurture specific skills, and create pride and resilience in our workforce.

Our role is also to provide system leadership across central government in pulling together back office services.

Collectively, we help support the Cabinet Office's priority to drive efficiencies, and reforms that will make government work better, to ultimately provide a better service to the public.


GPG Platforms, Data and Interoperability (PD&I) Directorate is at the forefront of providing first-class platforms and services for over 400,000 civil servants, covering recruitment, data analysis, skills, and learning solutions.

As a crucial part of the team, you'll be reporting to the Head of Architecture Services, contributing to the development and innovation of shared service platforms within the government.


Job description:


Responsibilities will include:

Strategy:
Develop and maintain cyber and information security strategy, ensuring alignment with business objectives and industry best practices.


Security Controls:

Lead the implementation and management of cyber and information security controls across different areas, including programmes, projects, and live digital services.


Security Assessments:
Conduct regular security assessments and audits to identify vulnerabilities and recommend appropriate countermeasures


Governance:

Provide input to Governance Boards, manage challenging stakeholders, and lead on contract deliverables, acting as a point of escalation for issues.


Relationships:

Build and maintain strong relationships with customers, monitor client contracts' progress, and evaluate and address information assurance risks for customers.


Supplier Management:
Build, manage, and oversee third-party supplier management relationships.


Guidance:

Provide expert support and guidance to internal teams in addressing security issues while ensuring compliance with applicable security standards and regulations.


Other responsibilities include:


  • Lead the development and implementation of robust cybersecurity measures for ongoing and upcoming projects and live services.
  • Conduct cyber risk assessments and provide security guidance
  • Promote and implement securebydesign principles
  • Support GPG as part of GovAssure activities
  • Monitor and respond to security incidents
  • Manage relationships across government, suppliers, and vendors.

Person specification:

To be successful in this role, you should possess the following skills and qualities:


Essential Criteria:


Proven experience in a similar lead cyber and information security role covering data protection/information security, GDPR implementation, risk and issue management, governance processes, assurance, reporting, and stakeholder management.


  • Strong understanding of security principles, technologies, and methods.
  • Knowledge of ISO/NIST suite, project management, and change management.
  • Managing services through outsourced contracts
  • A selfstarter who works well independently with limited supervision.
  • Ability to manage high workloads and competing deadlines.
  • Excellent problemsolving, analytical, and communication skills.
  • Comfortable working with a high degree of ambiguity and changing priorities

Desirable Criteria:


  • Understanding of implementing security controls in enterprise solutions, developing shared services, and relevant security/data protection certifications.
  • Knowledge of cloud security best practices
  • Knowledge of HMG security policy and framework

Additional information:

A minimum 60% of your working time should be spent at your principal workplace. Although requirements to attend other locations for official business will also count towards th
More jobs from Cabinet Office
See all jobs of Cabinet Office