Location
About the job
Job summary
Would you like the opportunity to gain experience, knowledge and develop new skills working for an elite law enforcement agency dedicated to combatting serious and complex fraud, bribery and corruption, within the UK’s Civil Service?
Based in the SFO Departmental Security Unit, the Security and Cyber Assurance Lead will report to the Security Advisor. You will have an understanding of how security risks may impact delivery of the SFO’s strategic objectives. You will be responsible for security assurance activity, providing confidence to senior leaders and stakeholders that risks are effectively managed and within security risk appetite.
Working alongside Information Technology and other internal colleagues and drawing on government security expertise, you will seek to improve the SFO’s security posture, helping the SFO protect its assets in response to known threats.
You will lead on assurance activity with the aim of achieving compliance with mandated government security standards (Departmental Security Health Check, HMG Cyber Security Strategy (GovAssure), Technology Change Projects and Supply Chain Assurance).
You will carry out auditing to maintain accreditation and access to third party systems, and support the security function by providing security advice, drafting security policy, and supporting cyber security awareness.
You will work with the Security Advisor on Incident Management and Business Continuity Planning (BCP), ensuring plans are in place to support business resilience and are tested regularly to effectively manage and recover from unexpected incidents.
Job description
As a Security and Cyber Assurance Lead, you will be responsible for:
- Managing the Security and Business Continuity Risk Registers ensuring risks are identified, controls are implemented and risks are escalated appropriately;
- Maintaining an effective working relationship with Information Technology colleagues, working closely with the IT Cyber Security Lead, assessing supply chain, technology change and project portfolio cyber security risk; help build risk management and Secure by Design principles into business and project plans;
- Managing the Incident Management and Business Continuity Planning cycle, ensuring response and resilience plans are tested and coordinate lessons learnt recommendations so that they are implemented;
- Collating accurate and timely audit records of SFO access to third party systems as required in line with up to date system security operating procedures enabling accreditation to be maintained by SFO to support the delivery of SFO business;
- Leading on the promotion of cyber security standards and best practice assurance activity with the aim of achieving compliance with mandated government security standards (Departmental Security Health Check, GovAssure – HMG Cyber Security Strategy) by engaging with stakeholders and ensuring submissions are completed and submitted within necessary timescales.
- Providing security advice and guidance to SFO staff drawing on government security expertise, best practice or information sources as necessary to ensure SFO assets, people and information are protected.
- Supporting security colleagues in the Departmental Security Unit and collaborating with stakeholders when required to do so to ensure security activity is prioritised and delivered in order to support strategic SFO business plans.
Person specification
Behaviours
We’ll assess you against these behaviours during the selection process:
- Changing and Improving
- Making Effective Decisions
- Seeing the Big Picture
Benefits
Option to join the Civil Service pension scheme. For further details, click here http://www.civilservice.gov.uk/pensions
Generous annual leave provision of 25 days which increases to 30 days after five years’ service plus an additional day in recognition of the King’s Birthday and the option to buy or sell up to five days’ leave per year. Different terms may apply if you are already a Civil Servant.
Discretionary performance-related bonus scheme.
Interest-free season travel ticket, bicycle loan and cycle to work scheme.
Access to the Rental Deposit Salary Advance Scheme which assists employees in meeting the costs of deposits for privately rented homes.
Opportunities for learning and development.
Flexible working arrangements and family-friendly policies.
Voucher for eye care and discounted spectacles.
Access to a range of discounts through membership of the Civil Service Sports and Social Club, CSSC Sports and Leisure. http://www.cssc.co.uk/
Maternity and paternity leave provision over and above the statutory entitlements.
Access to My CPS Rewards Gateway. My CPS Rewards offers staff a range of rewards and savings including:
- Discounts with high street retailers
- Savings on grocery shopping at a range of supermarkets
- Special salary sacrifice and recognition schemes
- Reloadable gift cards and e-cards
- Instant vouchers
Any move to the Serious Fraud Office from another employer will mean you can no longer access childcare vouchers. This includes moves between government departments. You may however be eligible for other government schemes, including Tax-Free Childcare. Determine your eligibility at https://www.childcarechoices.gov.uk/