Contents Location About the job Benefits Things you need to know Apply and further information Location Durham, North East England, DH1 1SL : Lytham St Anne's, North West England, FY8 4TS : Glasgow, Scotland, G2 8JX : City of Westminster, London (region), SW1P 3BT About the job Job summary NS&I has an excellent opportunity for a Cyber Security Managers to join our team to support the Senior Cyber Security Manager and Head of Cyber Security in providing assurance that our service providers are operating effective cyber security control environments. You will be successful in forging and sustaining trust-based relationships with Senior Management across NS&I and service providers/B2B clients to help build a security focused culture between NS&I and providers and B2B customers. You will hold certificates in either Certified Information Security Manager (CISM) or Certified Information Systems Practitioner (CISSP). Job description Please see attached role profile for details on the key responsibilities of the role Person specification Essential Experience Extensive experience of overseeing the performance of service providers and holding them to account for the delivery of critical cyber security services through governance forums. Demonstrable success in delivering written and oral presentations on cyber security and management risk to senior internal and external stakeholders. Substantial experience of assuring evidence against the National Institute of Standards and Technology (NIST) Cyber Security Framework (CSF) and ISO27001. Proven experience of conducting cyber security risk assessments, developing cyber security risk mitigation plans linked to business objectives, and presenting to a senior management audience. Experience in developing cyber security performance metrics linked to business objectives to inform senior management of the performance of the cyber security control environment. Significant experience in responding to or managing security incidents/breaches, overseeing patching/vulnerabilities or hardening systems including detection, response, recovery, and post-incident analysis. Extensive experience of implementing security solutions surrounding cloud transformation, data management, data storage. Strong analytical skills, including the ability to review, challenge and utilise complex technical information to provide advice and guidance to senior management. Further details are included in the role profile. Qualifications Certified Information Security Manager (CISM) or Certified Information Systems Practitioner (CISSP) Behaviours We'll assess you against these behaviours during the selection process: Changing and Improving Communicating and Influencing Managing a Quality Service Delivering at Pace Benefits Alongside your salary of £50,000, National Savings and Investments contributes £14,485 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides. NS&I is one of the largest savings organisations in the UK with more than 24 million customers and over £218 billion invested. We are both a government department and an Executive Agency of the Chancellor of the Exchequer. Our origins can be traced back more than 150 years to 1861. A small company with a big reach, we offer a range of benefits including flexible working, great opportunities for development and a generous pension scheme. We care for colleagues, respect one another, invest in our people and manage talent effectively. Some benefits of working at NS&I include: Learning and development tailored to your role An environment with flexible hybrid working options 9 day fortnight scheme A culture encouraging inclusion and diversity A Civil Service pension with an average employer contribution of 97% Generous annual leave starting at 25 days, increasing to 30 days Performance related variable pay bonus Enhanced maternity, paternity, adoption and shared parental leave Things you need to know Selection process details This vacancy is using Success Profiles (opens in a new window), and will assess your Behaviours and Experience. To apply, please click the link on this advert and follow the steps to complete the application form. In your application you will be asked to provide the following. An outline of your career history and qualifications with your key responsibilities and achievements. A 750 personal statement on these key areas from the person specifications. Extensive experience of overseeing the performance of service providers and holding them to account for the delivery of critical cyber security services through governance forums. Substantial experience of assuring evidence against the National Institute of Standards and Technology (NIST) Cyber Security Framework (CSF) and ISO27001. Proven experience of conducting cyber security risk assessments, developing cyber security risk mitigation plans linked to business objectives, and presenting to a senior management audience. Experience in developing cyber security performance metrics linked to business objectives to inform senior management of the performance of the cyber security control environment. If shortlisted, you will be invited to attend a 1 hour panel interview via video call. As part of this interview you will be asked to make a 10 minute presentation aimed at demonstrating your knowledge of security risks. Further details will be provided in the interview invite. The interview questions will focus on the selected behaviours and your experience and understanding of security technologies Interviews will take place on in the week commencing the 17th February 2025. Note we are unable to accept CVs This role is subject to Security Check, Baseline Personnel Security Standard and financial credit checks. Reserve List A reserve list may be held for a period of 12 months from which further appointments can be made. Working for NS&I NS&I is currently working in a hybrid way with colleagues expected to work in the office for 40% of their working month and this will be increasing to 60% of their working month in the summer of 2024. If you are applying to work in London, the role is currently based in Sanctuary Buildings, Great Smith Street, SW1P 3BT and in summer 2024 it is anticipated that NS&I will be moving out of Sanctuary Buildings and into another office within central London. Any move to NS&I from another employer will mean you can no longer access childcare vouchers. This includes moves between government departments. You may however be eligible for other government schemes, including Tax-Free Childcare. Determine your eligibility at https://www.childcarechoices.gov.uk/. If you are applying for a role at the same NS&I band as you are currently and the advertised salary of the role is higher, if you are successful, any salary increase will be at the discretion of NS&I and will be reviewed as part of the next annual pay review, in accordance with the NS&I employee handbook. This role will require some travel to other sites, please be aware if you travel to a second location on average 4 days a month, you may be liable for P11D taxation. If you have any queries concerning this please contact the NS&I HR Team. Further information Please visit our website http://nsandi-corporate.com/about-nsi for further details about NS&I. Feedback will only be provided if you attend an interview or assessment. Security Successful candidates must undergo a criminal record check. Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check (opens in a new window). See our vetting charter (opens in a new window). People working with government assets must complete baseline personnel security standard (opens in new window) checks. Nationality requirements This job is broadly open to the following groups: UK nationals nationals of the Republic of Ireland nationals of Commonwealth countries who have the right to work in the UK nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) (opens in a new window) nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS) individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020 Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service Further information on nationality requirements (opens in a new window) Working for the Civil Service The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants. We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window). The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria. The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy. Diversity and Inclusion The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see the Civil Service People Plan (opens in a new window) and the Civil Service Diversity and Inclusion Strategy (opens in a new window). Apply and further information This vacancy is part of the Great Place to Work for Veterans (opens in a new window) initiative. The Civil Service welcomes applications from people who have recently left prison or have an unspent conviction. Read more about prison leaver recruitment (opens in new window). Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records. Contact point for applicants Job contact : Name : HR Team Email : jobsnsandi.com Recruitment team Email : jobsnsandi.com Further information The law requires for selection for appointment to the Civil Service is on merit on the basis for fair and open competition as outlined in the Civil Service recruitment principles. If you feel your application has not been treated in accordance with the recruitment principles and you wish to make a complaint, you should contact jobsnsandi.com in the first instance. If you are not satisfied with the response you receive, you can contact the Civil Service Commission infocsc.gov.uk. Attachments Cyber Security Manager - Role Profile (2) Opens in new window (pdf, 216kB) Benefits Leaflet - V2 updated 22-11-23 Opens in new window (pdf, 424kB) Pension candidate-pack V1 Opens in new window (pdf, 166kB) Share this page Print Email Facebook Twitter LinkedIn GMail