Salary and Location
Salary: £36,530
Location: Norcross, Blackpool
Job description
DBS DIT provides digital capability supporting corporate services across the Ministry of Defence, including Finance, Commercial, Payroll, and Human Resources for Military Personnel, Civilian Personnel, and Veterans. The Response team manages response procedures and investigations of security events or incidents, containing and remediating incidents, identifying process improvements, and maintaining organisational readiness through exercises and red team activities. Response also advises product and service owners on mitigation strategies.
DBS WARP includes the Cyber Information Security Operations Centre (CyISOC), integrating People, Processes, and Technology to conduct proactive and reactive cyber operations as part of the Defence Digital Cyber Security Operations Centre (CSOC) federation.
Information Assurance Manager Responsibilities
* Oversee the Warning Advisory & Reporting Point (WARP), covering all DBS Business Teams.
* Ensure prompt reporting and investigation of all security incidents and breaches within DBS.
* Support DBS Cyber Response and Information Governance Lead in sensitive investigations.
* Report non-compliance and security breaches to the Cyber Security Operations Capability (CSOC).
* Support Defence Computer Network Defence (CND) capabilities.
* Maintain relationships with Defence WARPs, CyISOC, JSyCC, and MODCERT.
Additional Responsibilities
* Line management of the DBS Security Incident Management Officer, including performance management and training.
* Ensure confidentiality, integrity, and availability (CIA) of information through procedural and technical controls.
* Define and enforce Information Assurance policies for DBS staff and contractors.
* Monitor IA training needs and develop targeted training campaigns.
* Provide expert advice on information assurance matters.
* Ensure compliance with legislation, standards, and MoD policies, including JSP440 and NIST frameworks.
* Participate in governance boards and meetings, covering for the Cyber Response Lead when necessary.
* Conduct assurance activities to meet data protection obligations.
* Maintain records and statistics for trend analysis.
* Collaborate with DBS Secretariat and Customer Services on FOI requests and complaints.
* Provide management information (MI) via dashboards on incident trends.
* Maintain the DBS Critical Information Asset and Data Flow Control Registers.
Person Specification
A BCS Certificate in Information Security Management Principles (CISMP) is desirable; if not held, it should be attained within 12 months.
Skills Required
* Incident Management, Investigation, and Response
* Information Risk Assessment and Management
* Threat Intelligence and Assessment
* Applied Security Capabilities
* Protective Security
* Threat Understanding
#J-18808-Ljbffr