Job summary
Defence Digital ensures our Armed Forces remain among the most technologically advanced in the world. We do this by putting innovative and effective technology into the hands of over 200,000 users, from the boardroom to the front line.
We lead on cutting-edge data science, automation, and cyber security at scale. Our mission goes beyond the battlefield by leading humanitarian efforts and driving digital innovation that impacts lives across the globe.
Defence Digital forms part of Strategic Command which manages the MOD�s joint capabilities for the Army, RAF, and Royal Navy.
� to find out more about what we do.
As a Civil Servant, you�ll also have access to our range of excellent benefits, including flexible working, discount schemes, generous leave allowance and a market-leading Civil Service pension.
Our commitment to your development is fundamental and you�ll be able to take advantage of fantastic learning and development opportunities, tailored to your role and beyond. Whilst in post, you�ll be able to gain industry recognised qualifications, through a range of professional courses and external training providers, and we�ll support you throughout the process.
A Recruitment and Retention Allowance (RRA) of up to �9k per annum may be payable with this post, paid in increments upon reaching the required level of competence.
Passionate about using your skills to make a critical difference? Your next career move could be here.
This position is advertised at 37 hours per week.
Job description
TheRisk Policy Associate role sits in the Cyber Defence and Risk � Governance, Risk and Compliance Policy team and you�ll be responsible for researching, writing and implementing STRAP risk policy across Defence.
STRAP is a regime that regulates access to sensitive intelligence material which requires more protective handling than is afforded by the standard arrangements for government assets.
Key Responsibilities:
1. Drive the improvement of STRAP standards and best practice across Defence, guiding and influencing project and policy decision making as appropriate and seeking novel resolutions to challenging security issues.
2. Assuring STRAP compliance across Defence by managing and monitoring practices, processes and people to ensure MOD adheres to Cabinet Office STRAP policy.
3. Project manage the delivery of the STRAP Improvement Plan.
4. Ensure the risk assessment process against approved frameworks (, NIST/JSP 892).
5. Review risk management evidence to confirm that risk assessments and risk treatment plans are consistent with business requirements and that residual security risks have been captured and accepted by the appropriate risk owner, in accordance with the risk owner�s delegated authority.
6. Recognise risk management and security decisions that have an implication beyond their level of responsibility, experience or delegated risk tolerance and escalate accordingly.
7. Liaise with appropriate stakeholders across Defence, other Government departments and security agencies.
8. Analyse risks to identify trends and wider problems across business areas.
9. There may be opportunities for line management of staff.
Strategic Command is going through a significant transformation programme which aims to improve the way the Command conducts its business and delivers for Defence and the nation. As a consequence of this, all posts within Strategic Command Headquarters and in time the wider organisation, are/will be subject to review and potential changes as we continuously improve across the period of the transformation programme. These changes may be minor or could be more substantive and will generate new opportunities. �Throughout, the Command�s transformation programme is committed to following the MOD�s framework on managing and supporting people through the change process and places an emphasis on early and open consultation and engagement with the Command�s personnel and Trade Unions.
Person specification
This position may be suitable for individuals with relevant skills and experience in information security governance and management, risk assessment and information risk management, technical security controls or with appropriate skills gained in an ICT assurance or compliance environment.
Ideally, you�ll also have the following:
10. Previous experience in a security or risk related role.
11. Able to build and maintain good working relationships with a wide range of personnel and act with integrity and discretion.
12. Able to quickly assess information and make credible recommendations at pace.
13. Security aware, with acute attention to detail.
14. Experience of using Office 365 applications.
15. Excellent verbal and written skills (including technical report writing, verbal briefings and presenting)
16. Motivated to learn and committed to your continuous development.
This job role may be suitable for hybrid working,where business needs allow and some roles may be suitable for a combination of office and home-based is a non-contractual arrangement where all employees will be expected to spend a minimum of 60% of their working time in office, subject to capacity. If you are successful, any opportunities for hybrid working will be discussed with you prior to you taking up your post.
This position can be based at either MOD Main Building, Whitehall, London SW1A 2HB, MOD Corsham, Westwells Road, Corsham, Wiltshire SN13 9NR or RAF Wyton, Huntingdon, PE28 2EA.
A Recruitment and Retention Allowance (RRA) of up to �9k per annum may be payable with this post, paid in increments upon reaching the required level of competence.
Dependent on the business need, there may be a requirement to travel to meetings within the UK (or potentially occasional overseas visits).
If not already held, successful candidates will be required to attain DV clearance. Due to the security requirements, this position is open to sole UK nationals only.
Behaviours
We'll assess you against these behaviours during the selection process:
17. Working Together
18. Seeing the Big Picture
19. Communicating and Influencing
20. Changing and Improving
Technical skills
We'll assess you against these technical skills during the selection process:
21. Information risk assessment and risk management
Benefits
Alongside your salary of �35,290, Ministry of Defence contributes �10,223 towards you being a member of the Civil Service Defined Benefit Pension scheme.
Our benefits include:
22. Learning and development tailored to your role with a dedicated minimum of 5 days per year
23. 25 days paid annual leave rising (by 1 day per year) to 30 days upon completion of five years� service
24. Ability to roll up to 10 days annual leave per year
25. In addition to eight public holidays per year, you will also receive leave for HM The King�s birthday
26. A�
27. Parental and Adoption Leave
28. Discounts on a range of services within and external to the civil service � Defence Discount Service, Civil Service societies for Sports and Leisure, Healthcare, Insurance, Motoring, Company discounts with Virgin, Vodafone, and Microsoft Office.
29. In year rewards and �thank you� schemes such as vouchers and gift cards
30. A culture encouraging inclusion and diversity
31. Find out more here -
Equality and Diversity
Our people are at the heart of everything we do at Defence Digital. It�s vital that our workforce reflects the diversity of both our audience and the wider society in the UK, so we�re proud to be an equal opportunities employer and we actively seek candidates from diverse backgrounds and communities. We also recognise the importance of a good work life balance, so we do everything we can to accommodate flexible working, including part-time and job shares for all our roles. Please just let us know in your application or at any stage throughout the process if this is something you want to explore.
Defence Digital operates an organisation model in which every individual belongs to a Government Profession. The successful applicant will be posted into one of the defined Government Professions on Standard Terms of Reference for the grade. Defence Digital reserves the right to move individuals between roles, within their allocated profession, to meet the needs of the business and in support of agile resourcing.
Where business needs allow, some roles may be suitable for a combination of office and home-based working.� This is a non-contractual arrangement where all office-based employees will be expected to spend a minimum of 60% of their working time in office, subject to capacity and any required workplace adjustments. Requirements to attend other locations for official business, or work in another MOD office, will also count towards this level of attendance. Applicants can request further information regarding how this may work in their team from the Vacancy Holder (see advert for contact details). Defence Business Services cannot respond to any questions about working arrangements.
The post does not offer relocation expenses.
External recruits who join the MOD who are new to the Civil Service will be subject to a six-month probation period.
Please Note: Expenses incurred for travel to interviews will not be reimbursed.
Please be advised that the Department is conducting a review of all pay related allowances which could impact on those allowances that the post currently being advertised attracts.
Any move to MOD from another employer will mean you can no longer access childcare vouchers. This includes moves between government departments. You may however be eligible for other government schemes, including Tax-Free Childcare. Determine your eligibility at .
The Ministry of Defence is committed to providing a safe and healthy working environment for its staff which includes educating them on the benefits of not smoking, protecting them from the harmful effects of second-hand smoke and supporting those who want to give up smoking. Under the Smoke-Free Working Environment policy, Smoking and the use of all tobacco products (including combustible and chewing tobacco products) will not be permitted anywhere in the Defence working environment however some exemptions are in place, please refer to local guidance. The policy is Whole Force and includes all Defence personnel, contractors, visitors and other non-MOD personnel. All applicants seeking, considering, or accepting employment with the Ministry of Defence should be aware of this policy and that it is already in place at a number of Defence Establishments.
MOD Recruitment Satisfaction Survey � we may contact you regarding your experience to help us improve our customer satisfaction. The survey is voluntary and anonymous. You may however be given the opportunity to provide additional information to help us improve our service which includes the collection of some personal data as defined by the United Kingdom General Data Protection Regulation (UK GDPR). The MOD Privacy Notice sets out how we will use your personal data and your rights.