Location

Bristol, Nottingham, Swansea - however we adopt a flexible hybrid approach to working, combining both home and office-based working. Working arrangements to be agreed by individuals and their managers to contribute towards positive work/life balance and wellbeing.

About the job Summary

We pride ourselves as being an employer of choice and welcome and encourage applications from everyone, such as ethnic minorities, women, disabled people and those who identify as LGBT+.

To find out more about how we champion diversity and inclusion in the workplace and making DVSA a great place to work visit our Careers website.

Are you an experienced IT security professional, highly skilled in absorbing information and translating this into a solution?

Do you have a background of managing teams, with the ability to motivate others to deliver challenging objectives?

If so, we would love you hear from you!

Job description

We have an exciting opportunity for a Cyber Security Manager to join our Cyber Security Team here at DVSA.

This role will focus on project activity and ensure compliance with information legislation and DVSA policy.

You will provide direction for Information Management and Security, whilst managing the ongoing assurance for DVSA’s information assets and products by liaising with Department for Transport Assurance Authority or equivalent.

The role can be based in Bristol, Nottingham or Swansea, however the Digital team is Nottingham based so regular travel to Nottingham will be required if not based there.
 

Responsibilities

Your activities may include:

• Creation and management of and reporting against a project assurance programme

• Ensuring the relevant funding is in place for, and lead in the sourcing of, any external expertise which is necessary for independent assurance of DVSA’s systems and policies or in support of periodic assurance of DVSA systems

• Scope the ITHCs to support SPD&T Strategy and value for money

• Support members of the team to work with project managers developing new systems and, where necessary, support members of the team to continuously assess the shortfall between both actual security measures in place and being effective and those established at a policy level thus highlighting deficiencies for remedial action

• Ensuring DVSA’s compliance with key principles and outcomes outlined in HMGs Security Policy Framework and NCSC 10 Steps to Cyber (and related governance models) and supporting the reporting of these to DfT and Cabinet Office

• Provide advice and act, where necessary, in response to Audit findings and recommendations and in respect of information security

• Responsibility for the reporting of any security incidents (including losses of equipment and/or data) to the appropriate authority in line with the Incident Management Policy; this may include reporting to SIRO/Director level within DVSA and/or DfT

Please see the Candidate Pack attached to this advert for more detailed information on the role and responsibilities.

About you

We are looking for an experienced security professional with a clear understanding of risk management, including the threat intelligence environment and how risk appetite influences advice you provide.

You will ideally hold a background in and broad understanding of Government Information Security principles and Industry standards and be able to apply this alongside the data protection law to advise DVSA in developing appropriate controls to support information/data management standards and processes.

You will be a proven and adaptable communicator and listener, highly skilled in the delivery and absorption of information, both verbally and in writing, with colleagues at all levels.

This role will require working with stakeholders at all levels, so the successful candidate will have a history of working collaboratively and inclusively with external organisations and other stakeholders, sharing information and knowledge to achieve common aims.

We welcome applications from candidates with academic or vocational certification in Information Security Management Principles and Lead Auditor Qualification, however if you do not hold any qualifications we will support you to gain these when in post.

We are committed to encouraging and enabling our staff to develop in and above their role and will support you in undertaking further development opportunities/qualifications.

About us

The Driver and Vehicle Standards Agency (DVSA) helps everyone stay safe on Britain's roads.



We do this by helping people through a lifetime of safe driving, helping them keep their vehicles safe to drive, and protecting them from unsafe drivers and vehicles.

Our work affects millions of people and thousands of businesses. Most importantly, our work saves lives.

We're an innovative organisation that values professional expertise. We invest in our people and champion inclusive and diverse teams. And we make sure colleagues have the skills to meet the needs of Britain’s road users.

If you would like to read more about the great opportunities and benefits of working at DVSA visit our Careers website.

Diversity: Our vision is to support and develop everyone who chooses to work for us. We care deeply about diversity and equality. And we create a positive culture that’s friendly, welcoming, respectful and full of opportunities for professional and personal development.

Behaviours

We'll assess you against these behaviours during the selection process:

• Making Effective Decisions
• Managing a Quality Service
• Seeing the Big Picture
• Leadership

Benefits

Being part of our brilliant Civil Service means you will have access to a wide range of fantastic benefits. We offer generous annual leave, attractive pension options, flexible working, inclusive working environments and much more to support a healthy work/life balance.

If you would like to read more about the great opportunities and benefits of working at DVSA visit our Careers website.

Things you need to know Security

Successful candidates must pass a disclosure and barring security check.

People working with government assets must complete basic personnel security standard checks.

Selection process details

This vacancy is using Success Profiles, and will assess your Behaviours and Experience.

We are closely monitoring the situation regarding the coronavirus, and will be following central Government advice as it is issued. There is therefore a risk that recruitment to this post may be subject to change at short notice. In addition, where appropriate, you may be invited to attend a video interview.

Please continue to follow the application process as normal and ensure that you check your emails regularly as all updates from us will be sent to you this way.

How to Apply

As part of the application process you will be asked to complete a CV and Personal statement (Statement of Suitability). Further details around what this will entail are listed on the application form.

When considering applying please look at how your experience relates to the role, and within your CV and Statement of Suitability please provide detailed evidence of your experience of the following:

• A background in and broad understanding of Government Information Security principles and Industry standards and be able to apply this alongside the data protection law to advise DVSA in developing appropriate controls to support information/data management standards and processes.

• A clear understanding of risk management, including the threat intelligence environment and how risk appetite influences advice you provide.

• A history of working collaboratively and inclusively with external organisations and other stakeholders, sharing information and knowledge to achieve common aims.

• A proven and adaptable communicator and listener, you will be highly skilled in the delivery and absorption of information, both verbally and in writing, with colleagues at all levels.

• A background in managing diverse teams of people, motivating them to deliver challenging and sometimes conflicting objectives.

• A proven history of managing third party supplier contracts.

• Experience of scoping, arranging and managing ITHCs, and reporting findings to the business to support effective remediation activities.

The sift is due to take place 1st December 2021.

Interviews/assessments are likely to be held the week commencing 13th December 2021.

This interview could be conducted via a video interview, details of which will be provided to you should you be selected for interview.

We’ll try to meet the dates we’ve set out in the advert. But there may be occasions when these dates will change. We’ll give you plenty of notice of any important dates.

We’ve designed the selection process specifically for this role. So your assessment could include:
• an interview
• an interview with one or more exercises

You’re encouraged to become familiar with the role profile, as you may be assessed against any of the criteria recorded within.

Please see attached candidate notes for further information about our recruitment process.

The Department for Transport recruits using Success Profiles. For each role, we consider what you need to demonstrate to be successful.

This gives us the best possible chance of finding the right person for the job, drives up performance and improves diversity and inclusivity.

You can read more about Success Profiles here visit our Careers website.

If you are experiencing accessibility problems with any attachments on this advert, please contact the email address in the 'Contact point for applicants' section

Further Information

To learn more about applying for a role within the Department for Transport, visit the Application Process page of our Careers website.

Before submitting your application, we encourage you to visit our Things You Need to Know page for further information about applying for a role within the Department for Transport and the Civil Service.

Throughout this job advert there are links to the DfT Careers website, which provides you further information to support your application. Should you be unable to access the information on our website, please email [email protected] for assistance.

Feedback will only be provided if you attend an interview or assessment.

Nationality requirements

This job is broadly open to the following groups:

• UK nationals
• nationals of Commonwealth countries who have the right to work in the UK
• nationals of the Republic of Ireland
• nationals from the EU, EEA or Switzerland with settled or pre-settled status or who apply for either status by the deadline of the European Union Settlement Scheme (EUSS)
• relevant EU, EEA, Swiss or Turkish nationals working in the Civil Service
• relevant EU, EEA, Swiss or Turkish nationals who have built up the right to work in the Civil Service
• certain family members of the relevant EU, EEA, Swiss or Turkish nationals

Further information on nationality requirements

Working for the Civil Service

The Civil Service Code sets out the standards of behaviour expected of civil servants.

We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles.

The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.

Apply and further information

Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.

Contact point for applicants Job contact : Name :   Terry Walker Email :   [email protected]   Recruitment team : Email :   [email protected] Further information

If you feel your application has not been treated in accordance with the Recruitment Principles and you wish to make a complaint, in the first instance, you should contact Government Recruitment Services via email: [email protected] If you are not satisfied with the response you receive from the Department, you can contact the Civil Service Commission: Click here (https://civilservicecommission.independent.gov.uk/) to visit Civil Service Commission