Job Description - Cyber Security Advisory Lead (047416)
Organisation
Customers, Communication and Technology
Job
CSIRT
Position Type: Full Time
Location: North Greenwich, London – 50% office attendance model
Salary: £68,000 - £72,000 plus Fantastic Benefits like Final Salary Pension Scheme, and Free Tube & Bus Travel
UK Sponsorship Available, although candidates are responsible for their own fees
Job Purpose:
You will influence the lives of millions. At TfL, we operate one of the busiest metro systems in the world, with 5 million people using the underground daily. Join us, and you will be amongst the leading engineers, architects and consultants responsible for ensuring the continued operation of TfL, from our London Underground covering 272 stations to our red bus fleet of 9300 vehicles.
TfL’s cyber security professionals play a critical and ever-increasing role in protecting these services and the online systems that make it all work - safeguarding our customers as they travel across the London's transport network and helping to realise the Government’s ambition to make the UK the safest place in the world to be online and do business. TfL remains a key part of the Capital’s success.
Our Cyber Security Advisors are a team of internal consultants who provide specialist support to the business; influencing organisational strategy, architectural designs and risk management to protect TfL assets and reduce the likelihood/impact of a cyber security incident. We are looking for a Team Lead to lead and line manage a team of Advisors, responsible for collaborating with stakeholders, providing cyber security guidance and helping the organisation to align with policies, standards and good practice. The ability to build relationships and manage stakeholders with conflicting priorities is essential in this role. We’re looking for a great leader, communicator and pragmatist.
Core Responsibilities:
1. Day-to-day management of a team of Cyber Security Advisors.
2. Build and maintain strong relationships between the cyber security team and key internal and external stakeholders.
3. Provide risk owners with appropriate cyber security advice, enabling them to make informed decisions and mitigate cyber security risk at TfL.
4. Support risk owners in the identification and implementation of cyber security controls, in line with organisational standards and best practices.
5. Undertake the continuous improvement of cyber security processes and procedures.
6. Support professional development of your team.
7. Prepare and present reports on the current status of cyber security assurance, deliverables, risks and KPIs/KRIs.
8. Quality assure the work delivered by members of the Cyber Security Advisory Team, providing guidance and feedback, as needed.
9. Manage the delivery of a portfolio of cyber security projects, services and activities across a number of business areas.
10. Chair, facilitate and contribute to technology and cyber security governance groups.
Required Knowledge, Skills and Experience:
1. Proven leader with experience in prioritisation and resource management in a high demand environment.
2. Passionate about continuous improvement and driving departmental/organisational change.
3. Proactive problem solver, with a talent for innovation and critical thinking.
4. Results orientated with a strong background in alignment of team goals and objectives to strategic direction and demonstration of delivery through reporting/KPIs.
5. Favours a collaborative approach and builds strong relationships with internal and external stakeholders.
6. Excellent written and verbal communication – Comfortable tailoring information/reporting to the audience and engaging with senior stakeholders.
7. Ability to build capability - developing, coaching and mentoring team members.
8. Experience in the application of information security principles, tools and techniques.
9. Working knowledge of network and cloud security requirements and controls.
10. Delivered complex cyber security improvement initiatives involving enterprise-level technologies.
11. Confident to review and advise on technology design documentation at a high level.
12. Knowledge of information security, data privacy and risk management concepts, frameworks and best practices, such as ISO27001, IEC62443, NIST Cyber Security Framework, CIS Critical Security Controls, General Data Protection Regulation (GDPR) and Payment Card Industry Data Security Standard (PCI DSS).
Desirable Qualifications:
Degree level education or equivalent experience, ideally in science, engineering, technology, computing, cyber security or a related field. Qualifications and certifications from information security bodies such as: GIAC, ISC2, ISACA, ISA, CompTIA.
Security Clearance:
This role requires a minimum of BPSS and CTC security clearance, however the required level of clearance may change. Should an offer of employment be made, continued employment is subject to you obtaining the required level of clearance and maintaining this throughout your employment.
Closing Date: Sunday 5th January 2023 at 23.59
Excellent Benefits include:
* Final salary pension scheme
* Free travel for you on the TfL network
* Reimbursement of 75% of the cost of a standard class Ticket for National Rail travel from home or 75% reimbursement on a 28-day flexi ticket
* 30 days annual leave plus public and bank holidays
* TfL is committed to work-life balance, operating a hybrid working approach where business and role requirements allow
* Private healthcare discounted scheme (optional)
* Tax-efficient cycle-to-work programme
* Retail, health, leisure and travel offers
* Discounted Eurostar travel
Additional Information:
Please apply supplying your CV preferably in “.docx” format. This document should be A4, in Arial 12 font, and a maximum of 2 pages per document.
If you are shortlisted you may be invited to take part in a Video interview. We endeavour to give candidates as much notice as possible however some interviews/ assessments will be organised at short notice and will require a degree of flexibility. We reserve the right to close the application window early if we receive a high volume of suitable applications.
We are committed to equality, diversity and inclusion. We want to represent the city we serve, which will help us become a more innovative and efficient organisation. Our goal is to make our recruitment as inclusive as possible. We are a disability confident employer who guarantee an interview to any disabled candidate who meets all of the essential criteria. We also use anonymising software that removes identifying information from CVs and cover letters to make the process fair.
Many of our staff work flexibly in many different ways. Please talk to us at interview about the flexibility you need. We'll see what we can do.
We understand a confidence gap can get in the way of meeting spectacular candidates. So please don’t hesitate to apply if you think you have what it takes even if you feel you don’t meet all the criteria. We’d love to hear from you.
#J-18808-Ljbffr