Northwood HQ
Job Summary
UK Strategic Command is a 4* HQ and a Top Level Budget, tasked with developing and preparing an Integrated Joint Force for current and future operations. It has a unique structure, with a small Headquarters that works above, and with, a number of federated organisations including for example Permanent Joint Headquarters, Defence Intelligence and the Overseas Bases.
The successful applicant will lead on the analysis and accurate reporting on Strategic Commands strategic cyber resilience risk, and drive action across the Command to manage the risk. As part of the new UKStratCom HQ Cyber Risk Management team, the role holder will work closely with the Principal Security Advisors team and the CIO to ensure a co-ordinated approach to the management of cyber security within the Command.
This position is advertised at 37 hours per week.
Job Description
The role holders responsibilities will include:
1. Lead on analysis and accurate reporting on Strategic Commands strategic cyber resilience risk and drive action across the Command to manage the risk, including managing the roll out of an enterprise wide cyber risk management tool STREAM.
2. Working closely with HLB risk managers and cyber risk owners to better understand their risk areas and the funded mitigations being implemented to manage cyber risk exposure across the Command.
3. Analysing cyber risk assessments and mitigation plans to identify common themes, gaps and make recommendations for action.
4. Collating TLB quarterly risk returns to provide accurate reports to the Centre. Providing and contributing to risk reports and briefs on cyber risk activity and risk assessments to enable seniors decision making is risk informed.
5. Engaging with Defence Digital to ensure that Strategic Command is aligned with Defence and cross government policy and direction. Support Strategic Commands response to cyber incidents and rapidly emerging vulnerabilities.
6. Providing risk management advice and guidance to HLBs on cyber security and resilience risks.
7. Supporting the Cyber Risk Management Teams wider delivery outputs, including Secure by Design and Critical Systems Work.
8. Supporting the organisations response to cyber incidents and vulnerability management.
Person specification
Ideally, the successful candidate will have the following desirable attributes, knowledge and skills:
1. A good understanding of cyber risk and cyber security.
2. Formal/accredited Qualifications In Information Risk Management And/or Information Security.
3. Excellent relationship building and all around communication skills.
4. Previous experience in a Cyber security /risk management related role.
Behaviours
We'll assess you against these behaviours during the selection process:
1. Leadership
2. Delivering at Pace
3. Managing a Quality Service
4. Making Effective Decisions
Technical skills
We'll assess you against these technical skills during the selection process:
1. IISP Skills Framework: A1 - Governance. Level 3 (Apply) - Practitioner
2. IISP Skills Framework: B1 - Threat Intelligence, Assessment and Threat Modelling. Level 3 (Apply) - Practitioner
3. IISP Skills Framework: B3 - Information Risk Management. Level 4 (Apply) - Practitioner
Alongside your salary of £36,530, Ministry of Defence contributes £10,582 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides.
1. Learning and development tailored to your role
2. An environment with flexible working options
3. A culture encouraging inclusion and diversity
4. A Civil Service pension with an employer contribution of 28.97%
Where business needs allow, some roles may be suitable for a combination of office and home-based working. This is a non-contractual arrangement where all office-based employees will be expected to spend a minimum of 60% of their working time in office, subject to capacity and any required workplace adjustments. Requirements to attend other locations for official business, or work in another MOD office, will also count towards this level of attendance. Applicants can request further information regarding how this may work in their team from the Vacancy Holder (see advert for contact details). Defence Business Services cannot respond to any questions about working arrangements.
The post does not offer relocation expenses.
External recruits who join the MOD who are new to the Civil Service will be subject to a six-month probation period.
An opportunity to be considered for Reward and Recognition - £250-£5000 per year.
Please Note: Expenses incurred for travel to interviews will not be reimbursed.
Please be advised that the Department is conducting a review of all pay related allowances which could impact on those allowances that the post currently being advertised attracts.
Any move to MOD from another employer will mean you can no longer access childcare vouchers. This includes moves between government departments. You may however be eligible for other government schemes, including Tax-Free Childcare. Determine your eligibility at https://www.childcarechoices.gov.uk/.
The Ministry of Defence is committed to providing a safe and healthy working environment for its staff which includes educating them on the benefits of not smoking, protecting them from the harmful effects of second-hand smoke and supporting those who want to give up smoking. Under the Smoke-Free Working Environment policy, Smoking and the use of all tobacco products (including combustible and chewing tobacco products) will not be permitted anywhere in the Defence working environment however some exemptions are in place, please refer to local guidance. The policy is Whole Force and includes all Defence personnel, contractors, visitors and other non-MOD personnel. All applicants seeking, considering, or accepting employment with the Ministry of Defence should be aware of this policy and that it is already in place at a number of Defence Establishments.
MOD Recruitment Satisfaction Survey – We may contact you regarding your experience to help us improve our customer satisfaction. The survey is voluntary and anonymous. You may however be given the opportunity to provide additional information to help us improve our service which includes the collection of some personal data as defined by the United Kingdom General Data Protection Regulation (UK GDPR). The MOD Privacy Policy Notice sets out how we will use your personal data and your rights.
Selection process details
This vacancy is using Success Profiles (opens in a new window), and will assess your Behaviours and Technical skills.
Behaviour:
At sift, you will be assessed against the following:
1. Leadership
2. Making Effective Decisions
Behaviour:
At interview, you will be assessed against the following:
1. Leadership
2. Delivering at Pace
3. Managing a Quality Service
4. Making Effective Decisions
Technical:
1. IISP Skills Framework: A1 - Governance. Level 3 (Apply) - Practitioner
2. IISP Skills Framework: B1 - Threat Intelligence, Assessment and Threat Modelling. Level 3 (Apply) - Practitioner
3. IISP Skills Framework: B3 - Information Risk Management. Level 4 (Apply) - Practitioner
The Civil Service embraces diversity and promotes equality of opportunity. There is a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria. If you need to advise us that you need additional help or reasonable adjustments for the recruitment process, please contact: DBSCivPers-Resourcingteam3@mod.gov.uk.
As a result of the changes to the UK immigration rules which came in to effect on 1 January 2021, the Ministry of Defence will only offer sponsorship for a skilled worker visa under the points based system, where a role has been deemed to be business critical. This role does not meet that category and we will not sponsor a visa. It is therefore NOT open to applications from those who will require sponsorship under the points based system.
Should you apply for this role and be found to require sponsorship, your application will be rejected and any provisional offer of employment withdrawn.
Feedback will only be provided if you attend an interview or assessment.
Security
Successful candidates must undergo a criminal record check.
Successful candidates must meet the security requirements before they can be appointed. The level of security needed is developed vetting (opens in a new window).See our vetting charter (opens in a new window).
People working with government assets must complete baseline personnel security standard (opens in new window) checks.
Successful candidates must undergo a criminal record check.
Successful candidates must meet the security requirements before they can be appointed. The level of security needed is developed vetting (opens in a new window).See our vetting charter (opens in a new window).
People working with government assets must complete baseline personnel security standard (opens in new window) checks.
Nationality requirements
Open to UK nationals only.
Working for the Civil Service
The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants.
We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window).
The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.
The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.
Diversity and Inclusion
The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see the Civil Service People Plan (opens in a new window) and the Civil Service Diversity and Inclusion Strategy (opens in a new window).
This vacancy is part of the Great Place to Work for Veterans (opens in a new window) initiative.
Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.
Contact point for applicants
Job Contact :
* Name : Cyber Risk Management Team
* Email : ukstratcom-cyber-risk-team@mod.gov.uk
Recruitment team
* Email : DBSCivPers-Resourcingteam3@mod.gov.uk
Further information
Please ensure you read the attached candidate information document prior to completing your application. If you are dissatisfied with the service you have received from DBS, or believe that DBS has failed to follow the recruitment process in line with the Civil Service Commission principles of selection for appointment on merit on the basis of Fair and Open competition, you can raise a formal complaint by writing to DBS at the following address: Defence Business Services, Scanning Hub, Room 6124, Tomlinson House, Norcross Lane, Blackpool, FY5 3WP. If after raising your complaint with DBS you remain dissatisfied you can complain directly to the Civil Service Commission at the following address: Civil Service commission, Room G/8, 1 Horse Guards Road, London, SW1A 2HQ Or by email: info@csc.gov.uk. #J-18808-Ljbffr