To apply direct for this role please visit Civil Service Jobs and quote ref no. The ComSec (Communication Security) Team provide services to HMRC in respect of secure communications and provides management, assurance and accountability for Rosa, Crypto and STRAP services. The ComSec Team will additionally provide: Support Training Guidance To ensure that HMRC is compliant with IS4, Rosa Acceptable Use Policy and Behaviours, and the STRAP security requirements. You will work with national, strategic and local Estates representatives; key business stakeholders both nationally and locally to ensure that HMRC have adequate local governance over the daily use of Secure Enclaves housing secure networks and associated material, maintaining our security standards. HMRC continue to build new regional facilities where Rosa and STRAP networks will be housed. Experience of the design and build of these facilities is required. Duties will include: Management of one or more HO level staff. Leading, as subject matter expert, on several areas of security activity including security incidents. Facilitating access to all HMRC sensitive locations. Providing advice and guidance to HMRC on specific security issues as they arise. Networking with key external stakeholders ; HMRC Security teams, and other experts within the wider security community to maintain an accurate overview of business change and ensuring that Cabinet Office and relevant Authorities security polic ies are applied appropriately. You will be required to undertake a range of duties to support and cover other ComSec team leaders when required. Support the landing of Security standards and protocols. Job description Rosa : The Post will hold one of the mandatory senior Rosa roles and be responsib ility for the provision of advice, guidance on security governance and assurance matters for Rosa within HMRC. Working with both internal and external stakeholders, they will build and maintain effective relationships. They will work closely with the Rosa Service Organisation Senior Security Officer representing HMRC. We are looking for an influential team player who will take an active role in making change happen, in extending the teams influence and building further on the teams existing strengths. STRAP: STRAP is a regime that regulates access to sensitive intelligence material which requires more protective handling that is afforded by the standard arrangements for government assets. The role will include, but not be limited to : Maintain the security and integrity of all STRAP enclaves and material; Providing advice and guidance on STRAP matters; Providing updates and management information to Senior Stakeholders; Management and assurance of STRAP information, systems and documentation in accordance with national regulations. Crypto: The role of Crypto Sub-Account Holder for HMRC. Their role will entail: Provision of learning and support to departmental crypto holders and users End users must abide by IS4 standards Carry out investigations and take appropriate action Be responsible for reporting cryptographic incidents, losses, etc. and supporting any follow-up investigations via HMRCs Crypto Custodian. Person specification This post requires a minimum security level of Security Check (SC) Security Clearance. The successful candidate will need Developed Vetting (DV) or willingness to apply. This post requires [British nationality (some dual nations may be ineligible)]/[British, Australian, Canadian, New Zealand or United States nationality (some dual nationals may be ineligible)] and Developed Vetting (DV) clearance. As the post holder will have access to very sensitive information, there are limitations on travelling to a small number of countries and we will undertake additional security checks as part of the recruitment process. Applications from candidates with close connections to certain countries may take considerably longer to process, or in some cases result in a withdrawal of an offer of employment. Further details will be provided at the conditional offer stage. Essential Criteria Stakeholder management skills A background in security. An understanding of risk management practices. Desirable Criteria A recognised security qualification OR Member of the Security Institute A recognised Management of Risk qualification (any level)