Cyber Risk Assurance Manager
About the job Summary
National Starting - £48,774 & London Starting - £54,105
Do you have experience in supplier risk assurance?
Are you able to build up Cyber Risk?
Would you enjoy the opportunity to take on a new role within an exciting, expanding team?
If so, we would love to hear from you!
The information & Security Assurance Team have an exciting new opportunity for a Cyber Risk Assurance to join their fast-paced team, which is fully imbedded into the Department for Transports Digital Service.
The team are responsible for assurance of services deployed in the Department for Transport, and those across the family. We also provide information security and cyber policy advice, including interfacing to Other Government Departments and the Cabinet Office for Security Audits.
This role will be crucial in helping protect the Department for Transport from cyber security threats. The role will be responsible for cyber risk within the department, ensuring the risks are effectively managed, understood and that risk management tools are used effectively to adapt to changing threat landscapes.
Include but are not limited to:
• Lead on mitigating supplier risk, advising procurement and the business on checks and standards to be applied to suppliers
• Ensuring that the impact of new threats on DFTs cyber risk is understood and mitigated
• Maintaining DFTs risk management, framework, governance processes and risk registers
• Leading the team responsible for risk assessment and assurance
• Accountable for improving the assurance model and ensuring it remains fit for purpose
• Improving the culture of cyber risk management throughout the department
• Leading on risk reporting to the CISO and SIRO
To thrive in this position, you will have in depth knowledge and experience of cyber risks and technical frameworks, such as NIST. You will need to have understanding in an organisations business drivers and approach to managing risk to support delivery of balanced, cost effective risk management decisions. You are an excellent communicator, with demonstrable experience conveying technical topics to non-technical stakeholders at all levels. You have experience of how assessed risks are addressed as part of an approach to risk treatment.
DfT: Digital Service
Find out more about what it's like working at DfT: Digital Service
We'll assess you against these behaviours during the selection process:
- Changing and Improving
- Delivering at Pace
- Making Effective Decisions
- Managing a Quality Service
We'll assess you against these technical skills during the selection process:
- Information risk assessment and risk management - Expert - Government Security Profession career framework -Right Click Here
Being part of our brilliant Civil Service means you will have access to a wide range of fantastic benefits. We offer generous annual leave, attractive pension options, flexible working, inclusive working environments and much more to support a healthy work/life balance.
Find out more about what it's like working at the Department for Transport
Things you need to know Security
People working with government assets must complete basic personnel security standard checks.
Selection process details
This vacancy is using Success Profiles, and will assess your Behaviours, Strengths, Experience and Technical skills.
We are closely monitoring the situation regarding the coronavirus, and will be following central Government advice as it is issued. There is therefore a risk that recruitment to this post may be subject to change at short notice. In addition, where appropriate, you may be invited to attend a video interview.
Please continue to follow the application process as normal and ensure that you check your emails regularly as all updates from us will be sent to you this way.
How to Apply
As part of the application process you will be asked to complete a CV and personal statement. Further details around what this will entail are listed on the application form.
When considering applying please look at how your experience relates to the role, and within your CV and Personal Statement please provide detailed evidence of your experience of the following:
• Experience of implementing cyber risk management framework
• Knowledge of cyber risk standards (for example NIST and ISO)
• Experience of leading a high performing team
• Ability to prioritise competing workloads
• Experience of cyber risk assessment
Sift & Interview Dates
The sift is due to take place w/c 18th October 2021.
Interviews are due to take place w/c 8th November 2021.
This interview could be conducted via a video interview, details of which will be provided to you should you be selected for interview.
We will try to meet the dates set out in the advert. There may be occasions when these dates will change. You will be provided with sufficient notice of the confirmed dates.
The selection process will be designed specifically for the role. As a result, your assessment could include:
• an interview
• an interview and a technical exercise (eg presentation, written, or coding exercise etc)
• a full day of activities including interactive, written and timed exercises
You’re encouraged to become familiar with the role profile, as you may be assessed against any of the criteria recorded within.
The Department for Transport alongside other Government Departments recruit using Success Profiles. This means for each role we consider what you will need to demonstrate in order to be successful. This gives us the best possible chance of finding the right person for the job, drives up performance and improves diversity and inclusivity.
For further information on Success Profiles visit our Careers website
If you are experiencing accessibility problems with any attachments on this advert, please contact the email address in the 'Contact point for applicants' section.
To learn more about applying for a role within the Department for Transport, visit the Application Process page of our Careers website.
Before submitting your application, we encourage you to visit our Things You Need to Know page for further information about applying for a role within the Department for Transport and the Civil Service.
Throughout this job advert there are links to the DfT Careers website, which provides you further information to support your application. Should you be unable to access the information on our website, please email DRGComms@dft.gov.uk for assistance.
We recognise the challenges that people with (multiple) protected characteristics may experience on the job market and in their career progression. We are fully committed to being an inclusive employer and ensuring equal opportunities. We are keen to make our workforce as diverse as possible, and we hope to attract applications from underrepresented groups, including Black, Asian and Minority Ethnic (BAME) people, people with a disability, and people with gender diverse identities.
Feedback will only be provided if you attend an interview or assessment.
This job is broadly open to the following groups:
- UK nationals
- nationals of Commonwealth countries who have the right to work in the UK
- nationals of the Republic of Ireland
- nationals from the EU, EEA or Switzerland with settled or pre-settled status or who apply for either status by the deadline of the European Union Settlement Scheme (EUSS)
- relevant EU, EEA, Swiss or Turkish nationals working in the Civil Service
- relevant EU, EEA, Swiss or Turkish nationals who have built up the right to work in the Civil Service
- certain family members of the relevant EU, EEA, Swiss or Turkish nationals
Working for the Civil Service
The Civil Service Code sets out the standards of behaviour expected of civil servants.
We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles.
The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.
Apply and further information
Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.
Contact point for applicants Job contact : Name : Digital Resourcing Team Email : email@example.com Recruitment team : Email : firstname.lastname@example.org Further information
If you feel your application has not been treated in accordance with the Recruitment Principles and you wish to make a complaint, in the first instance, you should contact Government Recruitment Services via email: email@example.com If you are not satisfied with the response you receive from the Department, you can contact the Civil Service Commission: Visit the Civil Service Commission website at https://civilservicecommission.independent.gov.uk