Northwood Job Summary The UKStratCom Cyber Risk Management Assistant Head is responsible for initiating and managing work pertaining to UKStratCom’s cyber security and resilience risk posture, and to propose and manage mitigations and strategy against the evolving cyber threat. The postholder will ensure UKStratCom conducts cyber risk assessments and risk management in accordance with Defence standards and in compliance with applicable regulations, legislation and policy. The Cyber Risk Management Assistant Head will appraise and report to the UKStratCom Deputy Head of Cyber Security to ensure Cyber Security Risk is addressed in conjunction with wider security functions covered within the CIO remit. This position is advertised at 37 hours per week. Job Description You’ll lead a growing team, developing the core skills and expertise so that they can develop and maintain a wider understanding of cyber security and capabilities across complex and challenging environments. You will be line managing the UKStratCom HQ Cyber Risk Management team – 1RO for SEO, and 2RO for 2x HEO posts. Responsibilities Include: Planning strategy and work strands to understand and mitigate UKStratCom’s cyber security and resilience risk Provide advice and guidance to UKStratCom senior management and TLB stakeholders on cyber security related risks Ensuring UKStratCom conducts effective cyber risk assessments and risk management in accordance with Defence standards and policy. Reporting on UKStratCom’s cyber security and resilience risk Lead the implementation of the Cyber Compliance Framework and the Cyber Risk Management Framework across Strategic Command Working closely with TLB Security Team to reduce seams between physical, personal, technical and cyber security. Overseeing the analysis of mitigation plans for UKStratCom cyber risks, building knowledge of common themes and identifying gaps Building a UKStratCom cyber risk management community of interest and using it to promote cyber risk knowledge sharing. You’ll lead a growing team, developing the core skills and expertise so that they can develop and maintain a wider understanding of cyber security and capabilities across complex and challenging environments. You will be line managing the UKStratCom HQ Cyber Risk Management team – 1RO for SEO, and 2RO for 2x HEO posts. Responsibilities Include: Planning strategy and work strands to understand and mitigate UKStratCom’s cyber security and resilience risk Provide advice and guidance to UKStratCom senior management and TLB stakeholders on cyber security related risks Ensuring UKStratCom conducts effective cyber risk assessments and risk management in accordance with Defence standards and policy. Reporting on UKStratCom’s cyber security and resilience risk Lead the implementation of the Cyber Compliance Framework and the Cyber Risk Management Framework across Strategic Command Working closely with TLB Security Team to reduce seams between physical, personal, technical and cyber security. Overseeing the analysis of mitigation plans for UKStratCom cyber risks, building knowledge of common themes and identifying gaps Building a UKStratCom cyber risk management community of interest and using it to promote cyber risk knowledge sharing. Person specification We are committed to encouraging and enabling our staff to develop in and above their role and we will support you in undertaking further learning and development opportunities, within your designated field and beyond. Wherever possible, we will provide upskill learning options and further training to support your continuous professional development. Desirable Qualifications, Accreditation, Memberships Or Skills: Certificate in Information Security Management Principles (CISMP) Certified Information Security Systems Professional (CISSP) Certified Cyber Professional (CCP) Membership of CIISP, CIISec, BCS or recognised equivalent Ideally, You’ll Also Have The Following: The ability to build long term relationships with key internal and external stakeholders. Highly effective networking and the ability to advise and influence people. Experience of leading and managing a team. Ability to communicate effectively to a variety of audiences, synthesising information to portray key messages and facilitate effective decision making. This post is eligible for a Digital Skills Allowance of up to £15,300 per annum. Eligibility for this allowance will be assessed at interview against 4 core technical skills only and reviewed annually in line with MOD policy. Behaviours We'll assess you against these behaviours during the selection process: Communicating and Influencing Leadership Making Effective Decisions Seeing the Big Picture We only ask for evidence of these behaviours on your application form: Communicating and Influencing Leadership Technical skills We'll assess you against these technical skills during the selection process: Threat Understanding Protective Security Applied Security Capability Information Risk Assessment and risk Management Alongside your salary of £59,690, Ministry of Defence contributes £17,292 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides. Learning and development tailored to your role An environment with flexible working options A culture encouraging inclusion and diversity A Civil Service pension with an employer contribution of 28.97% Where business needs allow, some roles may be suitable for a combination of office and home-based working. This is a non-contractual arrangement where all office-based employees will be expected to spend a minimum of 60% of their working time in office, subject to capacity and any required workplace adjustments. Requirements to attend other locations for official business, or work in another MOD office, will also count towards this level of attendance. Applicants can request further information regarding how this may work in their team from the Vacancy Holder (see advert for contact details). Defence Business Services cannot respond to any questions about working arrangements. The post does not offer relocation expenses. External recruits who join the MOD who are new to the Civil Service will be subject to a six-month probation period. Please Note: Expenses incurred for travel to interviews will not be reimbursed. Please be advised that the Department is conducting a review of all pay related allowances which could impact on those allowances that the post currently being advertised attracts. Any move to MOD from another employer will mean you can no longer access childcare vouchers. This includes moves between government departments. You may however be eligible for other government schemes, including Tax-Free Childcare. Determine your eligibility at https://www.childcarechoices.gov.uk/. The Ministry of Defence is committed to providing a safe and healthy working environment for its staff which includes educating them on the benefits of not smoking, protecting them from the harmful effects of second-hand smoke and supporting those who want to give up smoking. Under the Smoke-Free Working Environment policy, Smoking and the use of all tobacco products (including combustible and chewing tobacco products) will not be permitted anywhere in the Defence working environment however some exemptions are in place, please refer to local guidance. The policy is Whole Force and includes all Defence personnel, contractors, visitors and other non-MOD personnel. All applicants seeking, considering, or accepting employment with the Ministry of Defence should be aware of this policy and that it is already in place at a number of Defence Establishments. MOD Recruitment Satisfaction Survey – We may contact you regarding your experience to help us improve our customer satisfaction. The survey is voluntary and anonymous. You may however be given the opportunity to provide additional information to help us improve our service which includes the collection of some personal data as defined by the United Kingdom General Data Protection Regulation (UK GDPR). The MOD Privacy Policy Notice sets out how we will use your personal data and your rights. Selection process details This vacancy is using Success Profiles (opens in a new window), and will assess your Behaviours, Experience and Technical skills. Candidates will be required to provide CV details to include job history; qualification details and previous skills and experience. Candidates will be required to provide a Personal Statement (500 words max). At sift, you will be assessed against your CV, Personal Statement and the following: Leadership Communicating and Influencing In the event of a high number of applicants, the initial sift will be conducted on CV and Personal statement only. Behaviours: During the interview process, you will be assessed on: Leadership Communicating and Influencing Seeing the Big Picture Making Effective Decisions Technical skills using the Government Security Profession skills for Cyber Security Risk Managers: Threat Understanding Protective Security Applied Security Capability Information Risk Assessment and risk Management Government Security Profession career framework Artificial Intelligence can be a useful tool to support your application, however, all examples and statements provided must be truthful, factually accurate and taken directly from your own experience. Where plagiarism has been identified (presenting the ideas and experiences of others, or generated by artificial intelligence, as your own) applications may be withdrawn and internal candidates may be subject to disciplinary action. Please see our candidate guidance for more information on appropriate and inappropriate use. The Civil Service embraces diversity and promotes equality of opportunity. There is a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria. If you need to advise us that you need additional help or reasonable adjustments for the recruitment process, please contact: DBSCivPers-Resourcingteam3@mod.gov.uk. As a result of the changes to the UK immigration rules which came in to effect on 1 January 2021, the Ministry of Defence will only offer sponsorship for a skilled worker visa under the points based system, where a role has been deemed to be business critical. This role does not meet that category and we will not sponsor a visa. It is therefore NOT open to applications from those who will require sponsorship under the points based system. Should you apply for this role and be found to require sponsorship, your application will be rejected and any provisional offer of employment withdrawn. The Ministry of Defence requires all candidates who are successful at interview to declare any outside interests. These declarations will be discussed with successful candidates following the interview process and before a formal offer of employment is made, as some outside interests may not be compatible with MOD civilian roles. This will not, in the majority of cases, prevent employment in MOD, but it is a measure that must be taken to ensure that appropriate mitigations can be put in place to manage any potential, perceived or actual conflicts of interest from the first day of employment. The Ministry of Defence adopts a zero-tolerance approach to unacceptable behaviours, which includes bullying, harassment, sexual harassment, discrimination, and victimisation. You will not be eligible and will not be considered for this post if you have been dismissed from a role for such unacceptable behaviours within the last five years. This will also apply if you resign or otherwise leave a role but, because of an adverse decision, would have been dismissed for gross misconduct had you continued in that employment. Pre-employment checks will be carried out. Strategic Command is going through a significant transformation programme which aims to improve the way the Command conducts its business and delivers for Defence and the nation. As a consequence of this, all posts within Strategic Command Headquarters and in time the wider organisation, are/will be subject to review and potential changes as we continuously improve across the period of the transformation programme. These changes may be minor or could be more substantive and will generate new opportunities. Throughout, the Command’s transformation programme is committed to following the MOD’s framework on managing and supporting people through the change process and places an emphasis on early and open consultation and engagement with the Command’s personnel and Trade Unions. Feedback will only be provided if you attend an interview or assessment. This vacancy is using Success Profiles (opens in a new window), and will assess your Behaviours, Experience and Technical skills. Security Successful candidates must undergo a criminal record check. Successful candidates must meet the security requirements before they can be appointed. The level of security needed is developed vetting (opens in a new window).See our vetting charter (opens in a new window). People working with government assets must complete baseline personnel security standard (opens in new window) checks. Successful candidates must undergo a criminal record check. Successful candidates must meet the security requirements before they can be appointed. The level of security needed is developed vetting (opens in a new window).See our vetting charter (opens in a new window). People working with government assets must complete baseline personnel security standard (opens in new window) checks. Nationality requirements Open to UK nationals only. Working for the Civil Service The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants. We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window). The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria. The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy. The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants. We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window). The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria. The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy. Diversity and Inclusion The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see the Civil Service People Plan (opens in a new window) and the Civil Service Diversity and Inclusion Strategy (opens in a new window). This vacancy is part of the Great Place to Work for Veterans (opens in a new window) initiative. Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records. Contact point for applicants Job Contact : Name : UKSC Cyber Risk Management Team Email : ukstratcom-cyber-risk-team@mod.gov.uk Recruitment team Email : DBSCivPers-Resourcingteam3@mod.gov.uk Further information Please ensure you read the attached candidate information document prior to completing your application. If you are dissatisfied with the service you have received from DBS, or believe that DBS has failed to follow the recruitment process in line with the Civil Service Commission principles of selection for appointment on merit on the basis of Fair and Open competition, you can raise a formal complaint by writing to DBS at the following address: Defence Business Services, Scanning Hub, Room 6124, Tomlinson House, Norcross Lane, Blackpool, FY5 3WP. If after raising your complaint with DBS you remain dissatisfied you can complain directly to the Civil Service Commission at the following address: Civil Service commission, Room G/8, 1 Horse Guards Road, London, SW1A 2HQ Or by email: info@csc.gov.uk.