Cyber Regulation Inspector
About the job Summary
We recognise the challenges that people with (multiple) protected characteristics may experience on the job market and in their career progression. We are fully committed to being an inclusive employer and ensuring equal opportunities. We are keen to make our workforce as diverse as possible, and we hope to attract applications from underrepresented groups, including Black, Asian and Minority Ethnic (BAME) people, people with a disability, and people with gender diverse identities.
Are you interested in working in cyber regulation?
Can you work with a wide range of diverse stakeholders to understand their security requirements?
If so, we'd love to hear from you!
Transport Security, Resilience and Response (TSRR) leads on national security matters, ranging from counter terrorism and cyber security to planning for and responding to natural hazards or civil contingencies. We deliver expertise to support security and resilience policy teams whilst also providing the department's 24/7 response for all security or civil contingency incidents. The team works with security and intelligence partners from across government to mitigate risk to the UK’s transport sector.
We’re looking for someone with a background in cyber security to join the team. This is a fantastic opportunity to become a core member of our Cyber Regulation Team and work on a relatively new area which includes the Network and Information Systems (NIS) Directive 2018, to deliver our cyber regulation and audit compliance programme to drive up cyber standards across the transport sector.
You will deliver the department’s cyber regulation function by coordinating across a group of transport operators and assessing levels of cyber security and using your knowledge to draw on best practice in cyber. You will establish close working relations with the transport operators and policy leads in the DfT Cyber Team as well as our policy leads. You’ll also develop collaborative relationships with other cyber regulation teams in other Government Departments to share best practice, understand how and where to drive up standards of cyber security.
The role will also involve developing and implementing our cyber regulation inspections programme, you’ll be at the heart of delivering an ongoing cyber compliance framework, providing our stakeholders with high quality assurance and regulation services in an interesting and evolving cyber landscape.
Some travel will be required for the role, taking into account any COVID restrictions in place at the time.
Transport Security, Resilience and Response invests significantly in training and developing staff to prepare them not just for an interesting and challenging job, but also for a rewarding career in national security. Our expectation is that our staff will remain in post for at least two years.
You’ll be working on an area of new cyber regulation to help DfT manage cyber security risk and develop our approach to cyber regulation and cyber compliance. You will be part of a team responsible for understanding how transport operators are meeting cyber security requirements as outlined by the Network and Information Systems Regulations (NIS) 2018, working confidently with external and internal stakeholders including senior leaders, to shape and develop the DfT’s approach to cyber regulation.
You’ll be able to use your own expertise and knowledge of cyber to draw out key themes and analysis and be able to present this technical information to a non-technical audience.
You’ll develop a detailed understanding of the NIS Regulations 2018, cyber inspections and the associated responsibilities held by a Competent Authority to deliver an effective cyber regulatory enforcement capability. You will also grow your knowledge of the transport sector, of cyber security both policy and technical, to support our DfT objective of providing a safe and resilient transport network.
As a Cyber Regulation Inspector duties include but aren’t limited to:
• Understanding how transport operators are meeting the cyber security requirements as set out in the Network and Information Systems (NIS) Directive 2018
• Reviewing information within Cyber Assessment Frameworks and cyber improvement plans in line cyber best practice as set by the National Cyber Security Centre (NCSC).
• Developing and maintaining collaborative working relationships with colleagues in the Cyber team, compliance, and inspection teams across DfT and its agencies as well as with fellow regulators
• Contributing to and support delivery of the team’s Cyber Security Regulation and Compliance Programme
• Working to an inspection programme to oversee cyber regulation across our transport operators to ensure the Department meets its legal obligations under the NIS Regulations
• Developing and updating cyber security policies, standards, and guidance consistent with DfT’s role as a cyber regulator
• Developing and maintaining an up-to-date awareness of technical cyber capabilities, the cyber threat picture and transport specific cyber security issues and mitigations
• Providing high quality written and verbal advice and briefing to Ministers, senior decision makers and policy colleagues across DfT and with transport operators on cyber security compliance.
This role may attract a RRA allowance of up to £5,000. This may be payable depending on candidate qualifications, skills and experience. This allowance will be non-pensionable and may be reviewed in any contractual agreements.
This position is based in London, due to the need for the post holder to regularly access secure information in person in GMH and their responsibilities as a senior leader in response to a cyber security incident. TSRR strong supports flexible working and we would accommodate some remote working (including during Covid-19 travel restrictions) but the successful candidate would ultimately need to work in GMH at a minimum several days a week.
Please note, the successful candidate would need to be willing to undergo DV clearance immediately once appointed in the role if they do not hold it already.
We'll assess you against these behaviours during the selection process:
- Delivering at Pace
- Seeing the Big Picture
- Making Effective Decisions
- Communicating and Influencing
- Managing a Quality Service
Being part of our brilliant Civil Service means you will have access to a wide range of fantastic benefits. We offer generous annual leave, attractive pension options, flexible working, inclusive working environments and much more to support a healthy work/life balance.
Find out more about what it's like working at the Department for Transport.
Things you need to know Security
People working with government assets must complete basic personnel security standard checks.
Selection process details
This vacancy is using Success Profiles, and will assess your Behaviours and Experience.
We are closely monitoring the situation regarding the coronavirus, and will be following central Government advice as it is issued. There is therefore a risk that recruitment to this post may be subject to change at short notice. In addition, where appropriate, you may be invited to attend a video interview.
Please continue to follow the application process as normal and ensure that you check your emails regularly as all updates from us will be sent to you this way.
As part of the application process you will be asked to complete a CV and personal statement. Further details around what this will entail are listed on the application form.
For your CV and Personal Statement, please use the 750-word count to outline your experience of the following:
• Your experience of working in a cyber, audit or risk management role and a broad knowledge of cyber security controls
• Your experience of working in a fast-paced environment to successful deliver a piece of work or a programme to challenging timescales
• Your experience of engaging and building productive working relationships with a range of internal and external stakeholders
The sift is due to take place 10th December 2021.
Interviews/assessments are likely to be held the week commencing 20th December 2021.
This interview could be conducted via a video interview, details of which will be provided to you should you be selected for interview.
We will try to meet the dates set out in the advert. There may be occasions when these dates will change. You will be provided with sufficient notice of the confirmed dates.
The selection process will be designed specifically for the role. As a result, your assessment will include:
• an interview
You’re encouraged to become familiar with the role profile, as you may be assessed against any of the criteria recorded within.
The Department for Transport alongside other Government Departments recruit using Success Profiles. This means for each role we consider what you will need to demonstrate in order to be successful. This gives us the best possible chance of finding the right person for the job, drives up performance and improves diversity and inclusivity.
For further information on Success Profiles visit our Careers website.
If you are experiencing accessibility problems with any attachments on this advert, please contact the email address in the 'Contact point for applicants' section
To learn more about applying for a role within the Department for Transport, visit the Application Process page of our Careers website.
Before submitting your application, we encourage you to visit our Things You Need to Know page for further information about applying for a role within the Department for Transport and the Civil Service.
Throughout this job advert there are links to the DfT Careers website, which provides you further information to support your application. Should you be unable to access the information on our website, please email DRGComms@dft.gov.uk for assistance.
Feedback will only be provided if you attend an interview or assessment.
Open to UK nationals only.
Working for the Civil Service
The Civil Service Code sets out the standards of behaviour expected of civil servants.
We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles.
The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.
Apply and further information
Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.
Contact point for applicants Job contact : Name : Rachel Sowerby Email : email@example.com Recruitment team : Email : firstname.lastname@example.org Further information
If you feel your application has not been treated in accordance with the Recruitment Principles and you wish to make a complaint, in the first instance, you should contact Government Recruitment Services via email: email@example.com If you are not satisfied with the response you receive from the Department, you can contact the Civil Service Commission: Visit the Civil Service Commission website at https://civilservicecommission.independent.gov.uk