You will play a leading role in supporting the Information and Assurance Manager in delivering the operational objectives of the security team. You will act as the first line of support for security-related queries and incidents, maintaining joint ownership of the Corporate Security Team mailboxes, managing workloads, and responding to requests.
You will support the team in effectively managing and maintaining the security risk register, working with security business partners to ensure compliance with the risk framework. Additionally, you will support the security audit schedule (e.g., DSHC, CAF), assisting in the completion of all activities by relevant stakeholders.
You will enable a positive, engaging, and inclusive security culture through supporting security education and awareness programs, building a network of security partners across government and the broader security industry to share best practices, adopt common approaches, and foster joint working on areas of mutual interest.
You will support the development of continuous improvement of policies, processes, and standards, and promote cybersecurity standards and best practices across the GPA. You will guide and influence project and policy decision-making, seeking innovative solutions to challenging security issues.
Working closely with the business, you will provide trusted advice and support across all aspects of security—including data, information, assurance, cyber, and third-party suppliers—safeguarding the Department’s assets in terms of confidentiality, integrity, and availability of information, helping ensure legal responsibilities are met.
Key responsibilities include:
1. Reviewing cybersecurity risk assessment processes against policy and approved frameworks (e.g., NIST), shaping the Security by Design (SbD) approach through lessons learned, and embedding this into business and project plans.
2. Supporting and developing regular reports on security metrics, incidents, and compliance status for governance forums and government authorities.
3. Supporting all audit activities (e.g., DSHC, CAF) and updating audit schedules as required.
4. Updating incident management logs, arranging lessons learned, and updating processes or policies accordingly.
5. Supporting supply chain security assurance activities, providing advice and guidance as needed.
6. Supporting the management and maintenance of the security risk register collaboratively with security business partners.
7. Delivering security awareness programs to educate staff and promote a security-first culture throughout the organization.
The role also emphasizes the Department’s commitment to Disability Confident employment practices, ensuring fair treatment and opportunities for applicants with disabilities.
The Government Property Agency is a major property holder in government, managing assets worth over £2.1 billion and leading key transformational programs. We value innovation, progress, and a culture of lifelong learning, guided by core values of excellence, respect, integrity, and collaboration. We are dedicated to diversity, equity, and inclusion, encouraging applications from diverse candidates, including those with disabilities, from minority groups, and the LGBTQ+ community.
#J-18808-Ljbffr