From day one within the Cyber Profession, you will take an active role in improving security and resilience within Ofgem and throughout the Downstream Gas and Electricity (DGE) sector. In addition to standard cyber security information technology principles, this is an exciting opportunity to actively participate in and learn about cyber security with an operational technology emphasis and be part of a growing and vibrant sector. We offer a wide range of flexible working opportunities, including flexible resourcing - rotating around the different teams within the Cyber Profession. There will be the opportunity to develop policy, risk, and regulatory orientated skills (such as engagement, cyber regulation, assurance, data protection, privacy and policy) and operational and technical cyber skills (such as security operations, cyber architecture, operational technology). You can be assured that the roles are stimulating and rewarding, and you will be involved in ground-breaking work. And it's important to us that we recruit from a wide range of backgrounds - bringing different perspectives and experiences to our work. Working in the internal Security, Privacy and Resilience (SPaR) team you will be involved in keeping Ofgem secure. This could include participating in incident response activities, researching cyber threat intelligence, developing security policies and procedures relating to data protection and management of information, and multiple assurance type activities such as risk assessments and impact assessments. Our Cyber Regulatory team interfaces with the DGE sector. You may work alongside Cyber Researchers to investigate the latest in cyber technology, support our Cyber Advisors by engaging with Operators of Essential services to ensure cyber resilience is achieved and maintained throughout the DGE sector, and assist our Inspectors with the NIS (Network and Information Systems regulation) inspection programme. There will be the potential for sites visits where you can see the operational technology (e.g substations) the sector is working to protect. You will receive training and support with regular feedback on your progress. Your training opportunities are comprehensive and flexible. You will have the opportunity to attend a wide variety of internal and external training courses, covering an array of soft skills, as well as more role-specific courses. Ofgem offers many diverse groups you can participate in such as the Women's Network, Young Professionals Network, LGBT Network, Culture Club, and many more. If you are a driven and ambitious individual looking to kickstart your career in cybersecurity and contribute to a diverse and inclusive organisation, we would love to hear from you. The candidate will have a chance to live Ofgem's values by participating in programmes of work to promote and build a diverse and inclusive workforce within the Cyber Profession and directorates within Ofgem. Your voice and ideas will be important here. Person specification Some of the responsibilities you have may include: Security, Privacy and Resilience Working with the Incident Response team in maintaining the data breach log and assessing incidents/breaches. Carry out open-source intelligence including collaborative working. Development of cyber incident playbooks, use cases, etc. Write, review, or contribute towards risks assessment in a digital service. Review and maintain Data Privacy Impact Assessments and other data protection collateral. Provide security risk advice, guidance, and support to the business. Assist with department security education and awareness. Cyber Regulatory Collaborating and working with Cyber Advisors on the NIS Directive, its application across the DGE sector and engaging with Operators of Essential Service (OES). Visiting OES operational sites (e.g., generation site) with the Engagement or Assurance teams. Assessing RIIO (RevenueIncentivesInnovationOutputs) submissions from a cyber perspective. Collaborating with Cyber Security Architects on DGE cyber architecture guidance. Researching cyber related technologies. Collaborating and working with the Assurance team on cyber related inspections. Contribute to the development of cyber security programme and project plans, management of workflows and maintaining a programme risk log. General Research and implement practises that promote a diverse workforce within Cyber. Essential Criteria Strong interest in security and/or cyber security. (LEAD) These opportunities would suit individuals who have previous experience within fields such as cyber security, or similar such as within an IT environment, the Civil Service or have completed or are completing further education or qualifications within a relevant field. (LEAD) Willing to be flexible, learn quickly, and deliver on a number of different projects. Good analytical and problem-solving skills. Able to communicate (in person, over video/phone, and written) effectively and build strong relationships within a team. Either holds, or has the ability to achieve, SC clearance. Desirable Criteria This opportunity would suit individuals who are currently studying or have achieved baseline professional certification such as ISC2 CC, BCS CISMP, CompTIA Security etc or completing further education Experience and / or interest in the Energy sector or other Critical National Infrastructure (CNI). Behaviours We'll assess you against these behaviours during the selection process: Communicating and Influencing Working Together Developing Self and Others Delivering at Pace Technical skills We'll assess you against these technical skills during the selection process: Please refer to the Candidate Pack attached for full details. Please refer to the Candidate Pack attached for full details. Benefits Alongside your salary of £25,854, OFGEM contributes £7,489 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides. Ofgem can offer you a comprehensive and competitive benefits package which includes; 30 days annual leave after 2 years; Excellent training and development opportunities; The opportunity to join the generous Civil Service pension which also includes a valuable range of benefits; Hybrid working, flexible working hours and family friendly policies. Plus lots of other benefits including clean and bright offices based centrally, engaged networks and teams and an opportunity to contribute to our ambitious and important targets of establishing a Net Zero energy system by 2050. This exciting blend of professional challenge and personal reward identifies career opportunities at Ofgem as something to get excited about. Things you need to know Selection process details This vacancy is using Success Profiles (opens in a new window), and will assess your Behaviours, Experience and Technical skills. When you press the 'Apply now' button, you will be asked to complete personal details (not seen by the sift panel), your career history and qualifications. You will then be asked to provide a 1250 word 'personal statement' evidencing how you meet the essential and desirable skills and capabilities listed in the role profile. Please ensure you demonstrate clearly, within your supporting statement, how you meet each of the essential and desirable skills and capabilities. The Civil Service values honesty and integrity and expect all candidates to abide by these principles. Ofgem take any incidences of cheating very seriously. Please ensure all examples provided are of your own experience. Any instances of plagiarism or other forms of cheating will be investigated and, if proven, the relevant applications will be withdrawn from the process. Feedback will only be provided if you attend an interview or assessment. Security Successful candidates must undergo a criminal record check. Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check (opens in a new window). See our vetting charter (opens in a new window). People working with government assets must complete baseline personnel security standard (opens in new window) checks. Nationality requirements This job is broadly open to the following groups: UK nationals nationals of the Republic of Ireland nationals of Commonwealth countries who have the right to work in the UK nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) (opens in a new window) nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS) individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020 Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service Further information on nationality requirements (opens in a new window) Working for the Civil Service The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants. We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window). The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria. The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy. Diversity and Inclusion The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see the Civil Service People Plan (opens in a new window) and the Civil Service Diversity and Inclusion Strategy (opens in a new window) .