UKHSA has an exciting opportunity for a Deputy Director of the Cyber Security Division. It is looking to build on its existing capability to provide a critical function in the protection of the UKHSAs digital assets, working closely with wider UKHSA security teams and stakeholders (Government Security Group, NCSC and CPNI) to build a resilient infrastructure, supporting the organisation in reaching its ambition to become a global leader for health security and becomes a critical component of our national security architecture. This is an exciting opportunity to become a central part of this build and support the development of the Cyber Security specialism, provide strategic direction whilst managing the challenges and drive continuous improvement. Main duties of the job Key responsibilities will include: • Drive Cyber Security within UKHSA, acting as the security champion for senior stakeholders, the Deputy SIRO, and the Board • Orchestrate the design, and maintenance of the UKHSA Cyber Security Strategy • Be the primary point of contact on Cyber Security issues with senior stakeholders and actively develop strong working relationships in relation to Cyber Security • Manage a skilled cross-functional team to deliver the agencys strategic Cyber Security objectives and BAU outcomes • Ensure that the Cyber Security policies and security controls remain appropriate and proportionate to the assessed risks, and are responsive and adaptable to the changing threat environment, business requirements and central government policies • Champion learning, development and accreditation, cultivate talent and foster an inclusive, diverse and motivated workforce • Work with the heads of specialisms to promote cross-government security mindedness • Promote the Government Cyber Security Profession and advise on Cyber Security risks • Work with industry, including security manufacturers and security consultants, to drive best practice • Drive professional development by working with the Government Security Function to set and drive continuous learning standard About us We pride ourselves as being an employer of choice, where Everyone Matters promoting equality of opportunity to actively encourage applications from everyone, including groups currently underrepresented in our workforce. UKHSA ethos is to be an inclusive organisation for all our staff and stakeholders. To create, nurture and sustain an inclusive culture, where differences drive innovative solutions to meet the needs of our workforce and wider communities. We do this through celebrating and protecting differences by removing barriers and promoting equity and equality of opportunity for all. Job responsibilities Essential Criteria You will be a proven cyber security professional, who is able tospeak with credibility to a technical audience. You will be cyber literate throughpractice butmay also hold cyber-related qualifications. You will have exceptional people leadership skills, and be able to inspire, motivate and engage your teams.You will demonstrate proven experience of building,leading,and developing a team of diversesecurity professionals, with a track record of developing team goals and careers internally. You will have exemplary influencing and stakeholder managementskills andbe able toinfluence at very senior levels to promote and embed an improved cyber security culture within the organisation.You will need to demonstrate an ability to communicate and influence (on paper and in person) both internal and external stakeholders, fostering close working relationships at a strategic and operational security level. You will be able to demonstrate leadership in shaping the organisations ability to respond to and remediate the range of cyber threats UKHSA and HMG continue to face, whilst staying current with and implementing cyber security best practice, advice, and guidance. You will be able to navigate complex challenges at pace in a rapidly changing environment, leveraging the expertiseof others to manage risk. You will have a strong understanding of the organisations legal and compliance requirements in a cyber security context, in particular adherence to GDPR and NIS Directive obligations. You will demonstrate the skills to balance threats and mitigations to make risk-based recommendations. You will have strong commercial and financial insight, with proven ability to seek out efficiency and value for money; DV Security clearance (or a willingness to obtain) Desirable Criteria An understanding or experience of programme management principles and ability to effectively drive delivery Knowledge and understanding of HM Government coupled with an ability to confidently navigate Whitehall and ALBs, capable of drawing upon and establishing networks Knowledge of the health and social care system and/or experience of managing personal data in a health context Person Specification Experience • Statement of Suitability • CV Behaviours and Experience • Seeing the Big Picture • Making Effective Decisions • Leading and Communicating • Delivering at Pace Technical • Presentation