Archives: Jobs

This is a fantastic opportunity to join HMRC’s Insider Threat Taskforce (ITTF) driving continuous improvement and changing the culture of Personnel Security (PerSec) across the Department. By designing and using new and innovative products allows us to drive continuous improvements and reduce the risk of ‘insiders’ exploiting their legitimate access to HMRC’s assets for unauthorised purposes.

This role will offer a unique view of the whole Department and how it operates internally, as well as the role it plays in supporting wider Government objectives and our economic health. It will stretch and develop your strategic knowledge and skills, making you consider how HMRC fits into the wider cross-government and societal landscape and how our actions align to and impact the rest of Whitehall and Government.

You will report directly to ITTF Senior Personnel Security Advisor and will support the aims and objectives of ITTF by driving forward best practice to align HMRC with established standards as well as working with process owners across the department to identify PerSec risks and seek new and innovative improvements to address those risks.

To be successful in this role you will have:

Experience of organising workshops with senior stakeholders and managing their expectations

Experience of managing relationships with a large group of stakeholders often at senior levels with different needs and expectations

Ability to identify and translate high level security requirements into realistic action plans

Knowledge / experience of risk management (ideally security risk management)

The definition of ‘insider’ is those who exploit their legitimate access to HMRC’s assets for unauthorised purposes.

We are looking for someone with knowledge and experience of reducing the threat of insider risks in a personnel security environment, to deliver PerSec risk mitigations across HMRC.

You will have a proven track record of delivering a reduction to the Insider Threat in a personnel security role

You will also be identifying and translating high level security requirements into realistic plans of activity to reduce Insider Risk

Successful applicant must already hold or will have to undergo National Security Vetting to obtain Security Check (SC) level.

Desirable criteria, knowledge and skills:

Experience in and knowledge of PerSec within a government security setting

Previous experience of working in a project environment would be an advantage or other relevant and practical experience demonstrated through the application form

We’ll assess you against these behaviours during the selection process:

• Changing and Improving
• Making Effective Decisions
• Communicating and Influencing

Access to learning and development tailored to your role.

A working environment that supports a range of flexible working options. Employees at all grades up to and including G6 will have access to a Flexible Working Hours Approach

A working culture which encourages inclusion and diversity.

A Civil Service pension.

25 days annual leave which will increase by one day for each year’s qualifying service up to a maximum of 30 days

Team members that are moving offices as a result of the Locations Programme will be entitled to a Moves Adjustment Payment for three years where they incur additional costs. This is calculated based on the difference between the costs of travelling to and from the new and old office, over a weekly period. You will get more detail on this as part of targeted locations move communications.

Are you passionate about Digital, Data, Information and Innovation?

Would you like the unique opportunity to be part of major Digital Transformation Programme?

Are you looking for an employer who is passionate about your career who will support your career path, providing training and opportunities to progress? Who takes diversity and inclusion seriously?

Here at the Defence Medical Service, there is a unique opportunity to join the newly established Chief Digital Information Office. The DMS CDIO function is currently recruiting for a number of positions in all aspects of Digital Transformation ranging from Service Delivery through to Information Security and Data Exploitation. This is an opportunity to be at the start of an exciting journey, to develop and deliver transformation with likeminded professionals who are committed to succeed, to make a difference and who want to ensure that our entitled personal receive the best possible health care using the best possible digital and information solutions.

Assistant Head Cyber Security will be the SME for Cyber and Security across the Defence Medical Services.

Following the Government Security Profession Career Framework, the role will be responsible for building and maintaining a positive Cyber Security culture at all levels in the DMS engaging with the Chief Digital Information Officer and Senior Responsible Owners (SROs), to ensure teams, contributors and stakeholders adopt a positive cyber security posture. This role works closely with the AH Information and Knowledge Manager to ensure the Confidentiality, Integrity, Availability and Non-repudiation of all DMS information assets is maintained through a positive compliance culture.

Responsibilities will include:

• Developing and maintaining professional career pathways for the Cyber Security Function within DMS.
• Maintaining CDIO Operating Model through contributions at CDIO Senior Management Team (SMT) meetings and implementing activities.
• Working with Defence Digital and Contractors, ensure the DMS IT system and Application Architecture is documented, and security profiles are understood.
• Supporting the development and maintenance of Information Security policy and guidance for the DMS.
• Point of contact on Cyber Issues and incidents
• Implementing Cyber Security Policies and maintaining the Cyber Control Framework
• Manage Cyber Security Risks
• Champion Cyber learning and Professional Development

Candidates will be required to have the following essential skills and experience:

• Experience of Security Accreditation processes
• Experience of developing strong partnerships, working flexibly and collaboratively across teams and with senior stakeholders to meet delivery challenges.
• Awareness of Data Protection policy and practical application in an information security environment

We’ll assess you against these behaviours during the selection process:

• Leadership
• Communicating and Influencing
• Making Effective Decisions

We’ll assess you against these technical skills during the selection process:

• Skills Framework for an Information Age (SFIA) Information Security (SCTY) Level 5 – https://sfia-online.org/en/legacy-sfia/sfia-7/skills/information-security
• Skills Framework for an Information Age (SFIA) Security Administration (SCAD) Level 5 – https://sfia-online.org/en/legacy-sfia/sfia-7/skills/security-administration

• Alternative working practices such as hybrid working between home and office
• Learning and development tailored to your role
• A culture encouraging inclusion and diversity
• Free parking
• Hairdresser
• Barber
• Tailoress
• On site shops
• Canteen
• Access to gym
• A Civil Service Pension

Our main Defra DDTS hubs are in York, Warrington, Newcastle, Reading and Bristol, however the successful candidate may be contractually based at any Defra office.

Defra operate a blended working policy subject to business need. There is flexibility to split working week, spending minimum of 40-60% in the workplace, unless exceptional circumstances apply and/or you are an existing contractual home worker.

Please be aware that space within the London office is restricted and it may not be possible to be based in this location.

The successful candidate will be expected to travel frequently to the office in Reading.

Digital, Data and Technology Services (DDTS) is the trusted team for digital across the entire Defra Group.

We have around 1,200 colleagues across DDTS and our ambition is to make it easier and faster than ever for people to interact with Defra. To achieve this, we are continuously designing, building and supporting innovative user-centered digital technology.

If you are ready to drive innovation and push boundaries, we want to hear from you. Join us and together we will create a great place for living, and a green and healthy future for all.

Subscribe to our Defra Digital Blog for all the latest news.

Why not check out our LinkedIn channel to find out more about the people who work here.

For further information on DDTS and the benefits of working here, see the candidate information pack attached at the bottom of the advert.

Defra’s Security Operations Centre (SOC) is recruiting for a Security Operations Centre Analyst as we continue to transform our technology and build our capability.

The SOC team is based in Reading and regular travel will be required to the office in Reading. The post holders will be required to cover a shift pattern during the day.

The Defra Security Operations Centre team welcomes applicants with experience of working in a Security Operations Centre as well as applicants from other technological backgrounds or graduates in a relevant subject who may wish to move into this field of work, it should be noted that they must demonstrate transferable technical skills and a keen interest in cyber security to be considered for the role.

As part of an overall security improvement plan, Defra is transforming its IT security processes and approach in line with our new multi-supplier IT operating model. The Security Operations Centre Analyst will work within Defra’s Security Operations Centre and will be part of a team responsible for the day to day handling of alerts in our Security Information and Event Management (SIEM) tool, incidents assigned to the Security Operations Centre and investigating indicators of compromise provided by Threat Intelligence.

Responsibilities

• Responsible for detection, identification and triage of security incidents using the provided security tooling and IT Service Management (ITSM) tool.
• Expand, tune, and enhance rulesets for our SIEM (Security Information and Event Management) tool to identify security incidents and reduce false positives.
• Support the Senior SOC Analyst with Major Incidents and assist the wider SOC team in recovering from security breaches, participating in bridge calls and investigations of security incidents and lessons learned as appropriate.
• Respond to Information Security related queries from stakeholders e.g. wider Security Team or suppliers.
• Work with our cyber partners to better understand our estate and how to apply current threat intelligence to make it technologically relevant to our estate.
• Using current tooling run threat hunting queries regularly and investigate results. Work with other members of the SOC to improve our threat hunting capability and investigate IOCs (Indicators of Compromise) provided by Threat Intelligence or our cyber partners, including the National Cyber Security Centre (NCSC).
• Communicate and engage with a wide range of stakeholders, telling the story of our work and the service we provide to the business to improve the cyber security posture of the organisation.

Skills and Experience

• A natural interest in cyber security, data science, and coding with a knowledge that has been developed formally or through vocational work and your own enthusiasm for the topic.
• Experience of working in an IT technical environment or having studied a STEM subject at A-Level or equivalent experience and commitment to work towards qualifications.
• Being a good communicator who has the capability to explain complex technical information to senior management and other non-technical staff using language that is plainly understood.
• Being a self-starter who is keen to learn about new and emerging technologies and cyber threats and how those threats may apply to a public sector organisation.

Birmingham, Cardiff, Croydon, Edinburgh, Exeter, Ipswich, Leeds, Manchester, Newcastle, Nottingham and Stratford.

At the Insolvency Service, we believe our principal role is to deliver economic confidence; we do this by supporting those in financial distress, tackling financial wrongdoing and maximising returns to creditors.

We provide the frameworks that deal with insolvency and the financial misconduct that sometimes accompanies or leads to it. Our aim is a corporate and personal insolvency regime which is regarded as fair and that gives businesses and investors confidence to take the commercial risks necessary to support economic growth.

Do you want to make a difference and be part of a team working with colleagues and customers to achieve positive outcomes?

Read our Candidate Pack attached at the bottom of this advert to find out more about the role and the application process.

About Digital Technology Services

Digital Technology Services provide best in class digital technology services across our IT landscape. We do this by working together with our partners, customers, our people and the wider community. We are focused on improving the quality of delivery across our services and providing effective support for our applications and systems. We put our customers at the heart of what we do, helping to identify and deliver the best services for their needs.

We provide key services including:

• Business Relationship & Engagement Portfolio
• Service Architecture
• Application Services & Service Governance
• Cyber Security and Information Governance
• Technology Delivery

Our Cyber Security and Information Governance Team provide a dedicated security service for our digital and technology function.

The Cyber Security and Information Governance Team ensure that the Insolvency Service is able to fully support DTS colleagues, the delivery model, and provide security advice and support across the agency.

Responsibilities

The successful candidate can expect to be involved in the following:

• Supporting the Head of Cyber Security by overseeing the security landscape and obligations for the Agency, advise the SIRO on risks and mitigating actions.
• Collaborating with Business Relationship Management to inform, educate and advise business stakeholders.
• Acting as an escalation point for participants within SIAM Ecosystem.
• Participating in Business Change and SIAM Ecosystem forums as appropriate to ensure that proposals, projects and changes follow and are directed in compliance with the agreed Strategic Roadmap. Assure adherence to principles, standards, policies and contractual obligations during the development and delivery of approved change activity.
• Responsible for the secure operation and continuous improvement of the service, ensuring processes are owned and maturing.
• Helping to develop, review and assure Business Cases to obtain and support investment. Collaborating with Service Governance and Service Innovation, evaluate proposals against the Strategic and current Service Portfolios to ensure proposals do not invalidate security controls and principles by continuing to follow the agreed security standards.
• Managing dependencies of varying complexity.
• Helping to remove blockers and manage risks, budgets and people.
• Balancing objectives and resources as priorities change.
• Effectively managing and communicating between complex stakeholder groups.
• Ensuring the necessary business processes are followed and participate in the governance of the service.
• Supporting the Head of Cyber Security as required and other tasks commensurate with the post.

• Significant experience of running security architecture and information assurance for a complex IT programme involving dependency management and multi-supplier delivery.
• Extensive experience of working in a multi-supplier environment, both designing aspects of solutions and assuring the work of others to ensure coherent designs that support an end to end service.
• Experience of building capability for a specialist in-house security function and managing the commercial need to buy expertise, niche services etc. from the market.
• Good understanding of the security implications of delivering to cloud environments and an understanding of the associated economics.
• Proven ability to prepare and obtain approval for business cases for enterprise level investment in security.
• Experience of designing logical and physical components of technology security architecture that enable efficient business operations.
• Excellent communication skills with the ability to convey complex security concepts to senior leaders and stakeholders.
• Good consulting and relationship management skills proven effective with stakeholders at technical and executive levels.
• Experience of risk management and mitigation strategies.

We’ll assess you against these behaviours during the selection process:

• Seeing the Big Picture
• Making Effective Decisions
• Communicating and Influencing
• Working Together

• Full time new entrants to the Civil Service and those Civil Servants on modernised terms and conditions will be entitled to 25 days leave increasing on a sliding scale to 30 days after 5 years’ service.
• In addition to this you are entitled to 8 public/bank holidays plus an additional day for the King’s Birthday.
• Competitive maternity, paternity and parental leave.
• We also recognise the importance of a good work-life balance and offer flexible working and a family friendly approach to work.
• Staff have access to an employee assistance programme, Workplace Wellness, for confidential, independent support and advice during difficult times in either their professional or personal life.

London based for first three years and thereafter location will vary depending on role and career path (overseas opportunities available).

We’re MI6, also known as the SIS. Our mission is to protect the security and economic wellbeing of the UK from overseas threats such as regional instability, terrorism and cyber attacks. Working across the globe and in close partnership with MI5 and GCHQ, we help the Government to counter these threats through the provision of secret intelligence. A role in SIS will see you providing vital support to this work, within a supportive and encouraging environment that puts the emphasis on teamwork.

The Role

As an Intelligence Officer (IO), you’ll be central to our mission. Our IOs gather secret intelligence to protect the UK and its interests overseas, prioritising matters of national security, economic wellbeing and the disruption of serious crime. It’s a fascinating and diverse role where you’ll use everyday skills, including communication, influencing and empathy, to tackle extraordinary challenges. It’s genuinely interesting and rewarding work.

IOs work across four main areas:

1. Operational Managers, who are responsible for planning operations, while identifying and managing risks
2. Targeters, who are tasked with turning information, such as data into operations alongside our partner agencies
3. Reporting Officers, who link us with Whitehall and our customers and are responsible for validating and testing the intelligence as well as briefing ministers
4. Case Officers, these are the people who build and manage relationships with agents – the people who pass us the intelligence we need

This is critical work that keeps the UK safe. You might meet a contact for a chat in a café, or you might gather intelligence online at our offices.  In fact, your work will look much like any other office role – and like any other job, you’ll usually be contactable, if your family and friends need you.

Click here to find out more about what it’s like to work as an IO by listening to some employee profiles.

You’ll begin your career by completing the three-year Intelligence Officer Training Pathway, where you’ll learn the language and methodology of intelligence and how to apply this to SIS’s Mission of protecting the UK.

The Intelligence Officer Training Pathway

This is made up of the following elements:

• 8 weeks initial classroom-based training
• You’ll be allocated a role within one of the four business areas (see above), where you’ll complete on the job learning for 18 months
• You’ll have continuous access to a mentor and you’ll benefit from a continued and robust support structure
• As you become more experienced, you’ll be given a portfolio of work to own and manage (with support)
• You’ll then complete additional training at a higher level, before moving into another placement for the remainder of the Pathway
• Once you graduate, you ‘ll be able to apply for roles in whichever area best suits your skills and interests. You may choose to specialise in one particular area, you might get the opportunity to learn a language for a role, or you might want to apply for an overseas posting. Either way, you’ll have developed the skills and experience you need to start your career as an IO.

For the remainder of your career as an IO you’ll be expected to move into a different role approximately every three years, so it’s important that you demonstrate aptitude and interest in at least two of the four areas during the recruitment process (however if you specialise in a particularly niche area, there may be an opportunity to stay within this area of work for longer than three years).

You’ll need a minimum of a 2:2 degree or higher, and if you’re an undergraduate, you’ll be expecting your final degree result within 12 months of your application date, Unfortunately, we cannot accept an application earlier than that.

As well as demonstrating a strong motivation for joining the organisation and doing the IO role, you’ll also be able to demonstrate the following key competencies:

• Problem solving and judgement – a keen problem-solver, you’ll be comfortable in your decision making but also able to bring in the expertise of others when you’re unsure.
• Personal organisation and proactivity – a good organiser, you’ll be able to multi-task, prioritising work and able to create and develop plans. With an objective approach, you’ll review progress and risks, to ensure plans use resources efficiently.
• Clear communicator and influencer – you’ll present information to others concisely and tailored to your audience. And you’ll use your communication and people skills to build strong arguments so you can confidently and credibly bring others round to your point of view.
• Able to work with others – with empathy and an ability to take account of other’s objectives, you’ll build positive relationships with people with a range of different experiences and backgrounds.
• Able to work with a broad range of customers – to understand requirements, build strong relationships and keep them informed of progress.
• Open to change – a keen learner, you’ll continually look for opportunities to develop your skills, share your learnings and embrace change.

This position is based at HM Prison Woodhill, MK4 4DA

Please refer to Job Description

We encourage applications from people from all backgrounds and aim to have a workforce that represents the wider society that we serve. We pride ourselves on being an employer of choice. We champion diversity, inclusion and wellbeing and aim to create a workplace where everyone feels valued and a sense of belonging. To find out more about how we do this visit: https://www.gov.uk/government/organisations/ministry-of-justice/about/equality-and-diversity.

Overview of the job    

This is an administrative job in an establishment.

Summary    

The job holder will provide administrative support to the Security and Intelligence Department maintaining administration systems within specified timescales for the establishment.

This is a non-operational job with no line management responsibilities.

Responsibilities, Activities and Duties    

The job holder will be required to carry out the following responsibilities, activities and duties:

•    Collate, process and allocate intelligence- associated documentation including Security Information Report (SIRs) for investigation
•    Sending mobile phones, SIM cards and hardware discs (along with related documentation) to National Dogs Tactical Support Group (NDTSG), logging the information extracted beforehand
•    Assist the Intelligence Analyst by extracting and matching Security files with SIRs
•    Carry out back-ups for the Security Intelligence System, download data for the SIRs register to the National Intelligence Unit and perform data back-ups for the National Prisoner Information Number (PIN) Phone System
•    Collate and distribute monthly targets for searching and mandatory drug tests to all residential units
•    Undertake Violent Sex Offender Register (VISOR) administration
•    Co-ordinate translation of security related communications
•    Process on-line address searches, national police checks, data access requests and  direct surveillance applications
•    Complete proforma to inform prisoner of withheld correspondence
•    Authorise visitor entry to the establishment and inform the gate staff in liaison with relevant line manager
•    Submit requisitions for stores as necessary for the security area and staff
•    Complete escort paperwork, including route forms, Prisoner Escort Records (PERs) and  escape packs regarding security issues for court attendance
•    Acts as the vetting contact point, meeting people to check identification and verify identity documents (provided as originals), liaising with Shared Service Centre to apply for security clearance
•    Undertake Mandatory Drug Testing administration
•    Log key register/key tallies/car park passes/car registrations
•    Log security files( in and out)  and assess risk content
•    Log all security – related information including development nominals, stoppages of contact, Incident Reporting System (IRS) Input
•    Disseminate reports to relevant stakeholders
•    Monitor all mail, on both ad-hoc and intelligence- led basis
•    Monitor and log  issue of identification (ID) cards, including lost ID cards
•    Monitor and log security clearance for prisoners working in workshops

Undertake other administrative tasks including:

•    Organise, produce and maintain accurate records for area of work
•    Act as contact point for all communications to the team. Prioritise and distribute communications to the appropriate person or relevant department in establishment
•    Complete monitoring returns for area of work
•    Input requisitions on to the finance database and process requisitions for defined area of work
•    Co-ordinate any awareness sessions for area of work
•    Prepare paperwork for checking by manager, conducting initial checks as required
•    Correspond with relevant stakeholders and agencies to ensure that they are aware of information so that information is adequately shared
•    Maintain and check establishment databases, manual filing systems and logs of information, responding within agreed timescales and producing reports as required
•    Collate information relating to relevant Service Delivery Indicators (SDI’s)
•    Act as secretary to meetings as required including organising agenda, taking and, distributing minutes and action points

The duties/responsibilities listed above describe the post as it is at present and is not intended to be exhaustive. The job holder is expected to accept reasonable alterations and additional tasks of a similar level that may be necessary. Significant adjustments may require re-examination under the Job Evaluation Scheme and shall be discussed in the first instance with the job holder.

An ability to fulfil all spoken aspects of the role with confidence through the medium of English or (where specified in Wales) Welsh.

Please refer to Job Description

We’ll assess you against these behaviours during the selection process:

• Changing and Improving
• Communicating and Influencing
• Working Together
• Managing a Quality Service
• Delivering at Pace

Marham, East of England, PE33 9NP

An exciting opportunity to join a team of security specialists as its lead at RAF Marham within the F35 team. The post requires DV clearance. The role involves being an integral part of the Special Access Programme (SAP) Security Team delivering Security administration and management ensuring that the highest level of security is delivered to protect the F-35 air system. The role offers opportunity for advancement within this highly specialist area of security, a growing area of expertise within Defence and this post is an exciting opportunity to be at the very forefront of this area.

This position is advertised at 37 hours per week.

•    Possess a personnel clearance at least equal to the highest level of classified information for which they require access.
•    Possess access to all SAPs assigned to the facility(s) for which he/she is responsible.
•    Assist the UK Country Security Manager in meeting their duties and responsibilities. The GSSO shall assume UKSM signatory authority during any long-term absence of the UKSM.
•    Provide facility security administration and management.

•    Ensure personnel processed for access to a SAP meet the prerequisite personnel clearance and/or investigative requirements.
•    Ensure adherence to the provisions of all SAP policies.
•    Oversee an information management system for each SAP used to facilitate the control of requisite information within each SAP.
•    Conduct an annual accountable classified material inventory.
•    Ensure Information Systems are configured in accordance with the  Joint SAP Implementation Guide.
•    Prepare and update comprehensive SOPs to implement the security policies and requirements unique to the facility(s). 
•    Establish reproduction and destruction capability of SAP information.
•    Ensure the conduct of program indoctrination and annual refresher briefings and debriefings of personnel.
•    Establish and oversee specialised procedures for the transmission of SAP material to and from program elements.
•    When required, ensure contractual specific SAP security requirements such as TEMPEST and Operations Security (OPSEC) are accomplished.

The successful candidate must be able to achieve DV Clearance.

Highly Desirable:
•    Previous senior security manager experience.
•    Previous experience operating in a high security environment.   
•    IT: Windows 10; Excel; Oracle; Microsoft Office; Power Point.

We’ll assess you against these behaviours during the selection process:

• Leadership
• Developing Self and Others
• Delivering at Pace
• Seeing the Big Picture
• Managing a Quality Service
• Working Together

Telford, West Midlands (England), TF3 4NT

At HMRC we are committed to creating a great place to work for all our colleagues; an inclusive and respectful environment that reflects the diversity of the society we serve. 

We want to maximise the potential of everyone who chooses to work for us and we offer a range of flexible working patterns and support to make a fulfilling career at HMRC accessible to you.

Diverse perspectives and experiences are critical to our success and we welcome applications from all people from all backgrounds with the experience and skills needed to perform this role.

See what it’s like to work at HMRC: find out more about us or ask our colleagues a question. Questions relating to an individual application must be emailed as detailed later in this advert.

If you’re looking to challenge yourself and develop, you are looking in the right place.

We are the UK’s tax, payments and customs authority. We collect taxes and duties from 45 million individuals and 5.2 million businesses, support trade and growth through customs and pay tax credits to 4.6 million household and Child Benefit to 7.5 million families. We have a complex IT estate with a big digital strategy that sees us already handle 1.15 billion transactions a year – 70% of all government transactions.

You will have read and heard in the news how getting Cyber Security wrong has the potential to destroy the reputations of organisations. So with such an important role for government and making great progress with online digital services we take Cyber Security seriously.

We invest in our people and you’ll work along aside committed people who want to be the best at what they do. You will have access to some of the latest technologies and platforms and be given the space and support to help drive innovation.

The area you will work in is the Incident Management Team, an exciting and fast paced team responsible for monitoring and responding to threats. You will lead a small specialised team providing support and guidance on technical issues and have experience of keeping a cool head under pressure.

You will need to have a passion for detail, be curious and investigative in your approach and want to gain an understanding of our IT systems, networks and processes.

HR management of five staff.

We would like to hear from applicants with an interest in developing the following cyber security operations skills:

• Triaging and investigating security alerts from multiple systems
• Responding to incidents and following through until remediation
• Developing alerts and use cases against very large data sets over some of the latest technology
• Malware analysis and techniques

We would especially welcome applicants with experience of working in these fields.

Essential Criteria 

• Experience of using a variety of analytical tools to identify security compromises within large amounts of complex data
• Experience of analysing large datasets to find unusual system and user behaviours
• Knowledge of multiple technical environments, including but not limited to, cloud, networking, operating systems, databases
• Exposure to the cyber security, including knowledge and experience of the breadth of threat actors and depth of threat vectors available
• Proven expertise using digital forensic and malware analysis tools, whether that be commercial products or open source
• A understanding of the structures underpinning corporate IT systems and how these structures can be compromised and exploited
• Proven understanding of security monitoring, intrusion detection, prevention and control systems including firewalls, anti-virus, web proxies.

Desirable Criteria

These will help set you apart:

• Evidence of interest and passion for the subject of Cyber Security
• Evidence of managing a multi-discipline technical team
• Evidence of being adaptable, creative and with the capability to learn quickly
• Evidence of problem solving and effective decision making to resolve potential threats

Desirable Qualifications:

Cyber Security Degree

We’ll assess you against these behaviours during the selection process:

• Making Effective Decisions
• Changing and Improving

We’ll assess you against these technical skills during the selection process:

• Cyber Security Analysis

Home Office Intelligence brings together a number of existing teams involved in the collection and analysis of border and immigration related intelligence. It delivers Intelligence Collection, Development, Analysis, Targeting (Data Analytics) and Watchlisting capabilities within the Home Office and to its partners across Government and Law Enforcement. Learn more on the HO Intelligence careers page.

We are recruiting HEO Intelligence Officers to the following units in Immigration Intelligence:

Receipt, Evaluation and Development (RED): 
The Receipt, Evaluation and Development (RED) command are responsible for the handling of all incoming information for Immigration Intelligence. This includes making an initial assessment within a ministerial target and using intelligence skills and knowledge to determine the most appropriate use of the information, either within the Home Office or beyond. The effectiveness of this response is crucial to ensuring public information is put to best use and contributes to achieving public confidence in the work of Immigration Enforcement. The team work closely with intelligence colleagues across immigration intelligence to ensure information is quickly and correctly identified for further development.

Casework Intelligence (CWI):
The core function of Casework Intelligence is the development of intelligence to identify and disrupt organised crime groups in the UK and overseas. Casework Intelligence’s transformation goes hand in hand with UK Visas & Immigrations (UKVI) plans to reduce its footprint overseas and increase its function in the UK. Casework Intelligence provides intelligence support to UKVI; identifying and mitigating fraud and developing intelligence-led disruptions of organised immigration crime (OIC) groups targeting the casework system. The team works closely with HO International Operations counterparts overseas; sharing intelligence where possible to facilitate upstream disruption and Crime Development Teams (CDTs) where the organisers of abuse are UK based.

Crime Development Team (CDT): 
The Crime Development Team (CDT) is responsible for the development of proactive intelligence involving serious and Organised Immigration Crime (OIC) in line with national priorities. We work closely with operational partners including IE’s Criminal and Financial Investigations teams, NCA and Police Forces including the Regional Organised Crime Unit’s. We also work with internal Immigration Enforcement [IE] Intelligence teams and international partners via our Immigration Enforcement International network. Our aim is to develop intelligence packages on organised immigration crime to enable partners to dismantle organised criminal networks and to strengthen immigration policy.

Key responsibilities will include (but aren’t limited to): 

• Leading a team of Intelligence Officers, guiding, supporting and advising on the day-to-day activity of the team.

• Managing and improving overall team performance, ensuring the team operates within legislative guidelines and meets Service Level Agreements for the recording and development of intelligence.

• Working in collaboration with partners (internal and external) maintaining existing partnerships as well as identifying and forging new collaborative opportunities and promoting the work of intelligence.

• Working in conjunction with other Intelligence Managers in the unit and beyond to deliver key objectives.

• Managing the day-to-day personnel issues relating to the management of the unit including HR issues.

• Supporting and developing self and the team to ensure continuous professional development.

• Having Intelligence Professionalisation Programme (IPP) accreditation already in place; but if not then candidates are expected to work towards achieving IPP accreditation within a reasonable timescale.

RED
•    Ensuring that 100% of allegations received within the unit are assessed within 24 hours and processed within 30 days of receipt. Cases are assessed using the Intelligence Handling Model and current local, regional and national priorities. 
•    Handling and recording all enquiries/intelligence in accordance with DPA (Data Protection Act 2018); HRA (Human Rights Act 1998); CPIA (Criminal Procedure and Investigations Act 1996); RIPA (Regulations of Investigatory Powers Act 2000); NIM (National Intelligence Model); and SIP (Single Intelligence Platform) regulations
•    Promoting use of the Single Intelligence Platform ensuring an incremental approach to adding intelligence to the system takes place. 
•    To support the G7 and SEO by contributing to the RED command continuous improvement work to ensure the public allegations strategy is implemented.
•    Handling all queries appropriately, providing statistical information and responding to MP enquiries.

CWI
•    Leading the team to deliver quality intelligence packages that support the prevention of abuse of the casework system, while providing internal and external partners the ability to pursue those Organised Crime Groups profiting from the abuse
•    Managing key relationships, both internal and external, to support the delivery of Home Office Intelligence objectives
•    Engaging with transformation projects to improve capability for Home Office Intelligence, driving improvements to current data analytics capabilities and seeking new opportunities to manage data differently
•    Maintaining awareness of new and emerging trends and patterns of abuse, allocating resources to investigate the highest priority risks and reporting to the Senior Intelligence Manager as appropriate

CDT
•    Leading the team to deliver high quality Intelligence packages for operational partners both internal and external.
•    Regularly reviewing all intelligence cases to ensure that they are being developed to agreed timescales and meet current priorities  
•    Providing updates to Senior Intelligence Managers and briefing other colleagues and partners as appropriate;
•    Attending management meetings regularly to discuss work, prioritises and hand offs between teams.
•    Utilising HO systems to provide management information and capture updates and reviews. 
•    Supporting intelligence managers with thematic and/or capability lead areas.

Responsibilities

An individual who can demonstrate resilience and flexibility in their approach to working in a fast-paced environment. They will have the ability to work remotely and without supervision; be self-motivated; able to deliver and achieve against high priority objectives; revising remits and objectives when required and at ease when navigating through uncertainty. A team leader, who can guide their teams through change adapting to changing priorities, make well balanced decisions and maintain the welfare of staff.

Essential Criteria

Successful candidates must have:
•    Experience of working in law enforcement, investigation, or intelligence environment
•    A sound understanding of intelligence processes and systems
•    Ability to think, challenge assumptions, demonstrate creativity, and being open to change
•    Proven ability to manage and develop capability in others and lead and develop diverse teams
•    Strong analytical skills and sound judgement to evaluate complex information and develop effective response tactics
•    Strong organisational and IT skills, and the aptitude to establish and maintain effective working relationships with internal and external partners 
•    Excellent written, oral communication, and interpersonal skills, and effectively deliver presentations to internal and external partners

Desirable Criteria

•    Experience of Home Office Intelligence systems
•    Knowledge of the work of the border and immigration systems and policy

We’ll assess you against these behaviours during the selection process:

• Leadership
• Changing and Improving
• Communicating and Influencing
• Making Effective Decisions

We only ask for evidence of these behaviours on your application form:

• Leadership

• Learning and development tailored to your role
• A culture encouraging inclusion and diversity
• A Civil Service pension with an average employer contribution of 27%