Location
About the job
Job summary
We encourage applications from a diverse range of candidates
At DfE, we are proud of the commitment we make to diversity and inclusion and of the progress we have made. We have active & vibrant staff networks, special leave policies and workplace adjustments put in place for those who need them. We are continuing to build a diverse DfE, in an inclusive environment which nurtures and realises potential in all, at all levels.
Equality and Diversity – Department for Education
Who we are
At our heart, we are the department for realising potential. We enable children and learners to thrive, by protecting the vulnerable and ensuring the delivery of excellent standards of education, training and care.
Our Cyber Security department
The Department for Education is responsible for children’s services and education, including early years, schools, higher and further education policy, apprenticeships, and wider skills in England. We work to protect the department’s essential services, like funding schools and colleges, and safeguarding children from cyber threats, ensuring the confidentiality, integrity, and availability of systems and data that underpin these essential citizen services.
We are responsible for the whole spectrum of cyber and information security across the department, including Information Security and Information Risk management, Security Operations, and Security Architecture and Engineering.
This is a great opportunity if you want a challenge at a national level in a role that makes a difference to so many. Joining us means you will help to safeguard children and ensure their education and care is delivered effectively.
Job description
What you’ll do
As our lead for Security Architecture and Engineering, you will be at the forefront of ensuring the secure and seamless integration of cyber security principles into the department’s services, systems and technologies.
You will be responsible for leading a team of security architects and engineers, working collaboratively with cross-functional Agile teams to embed security-by-design practices into system designs and software development lifecycles across the department. In this dynamic role, you will be instrumental in fostering a culture of security, accelerating our development velocity, and minimising risks while enabling innovation. You will also play a leading role in designing holistic security solutions and driving delivery internally, across our
This role presents a unique opportunity for an experienced security architect/engineer with a good understanding of Agile methodologies to drive the secure, agile development of cutting-edge digital services for the education sector. Join us in shaping a culture where security is an enabler of innovation and a fundamental aspect of our Agile processes.
Person specification
Key Responsibilities
Responsibilities in this role will include:
- Lead and mentor small teams of security architects and engineers, providing technical guidance and oversight and driving the development of security architecture and engineering solutions, ensuring that security is an integral part of the process from the outset.
- Collaborate closely with development teams to integrate security into Agile methodologies and processes, such as static and dynamic analysis tools, container security solutions, and automated security testing within CI/CD.
- Promote secure coding practices, and provide developers with guidance and training on security best practises.
- Design and implement security solutions for teams in the security department, like improved threat detection and automated service assurance in cloud-based and hybrid environments.
- Threat modelling exercises to identify potential security vulnerabilities and risks in applications and systems. Work with development teams to prioritise and address these threats.
- Continuously assess and improve security architecture and engineering practices, staying current with emerging threats and industry best practises. Advocate for Agile security at both the team and organisational levels.
- Support cross-government and education sector security initiatives.
Essential Criteria
Who you are
We are seeking an individual capable of seamlessly transitioning between hands-on technical work and strategic big picture thinking to lead on technical solutions. The ideal candidate will possess the acumen to discern when to dive into detailed design and when to step back, effectively guiding, influencing, and coaching others within the team.
Effective communication is essential in this role, and you should be adept at effortlessly conveying complex security concepts to non-technical audiences and influencing others around you and senior leadership to make effective risk-based security decisions.
You should have a deep understanding of information security principles and best practices, including a variety of security frameworks such as NIST CSF, CIS, and NIS. You should also have a good understanding of a variety of security tools and how to leverage them at an enterprise level, including SIEM, DLP (Data Loss Prevention), and vulnerability scanning.
Over the course of your career, it is likely that you will have developed a broad understanding of network security protocols, gaining proficiency in firewalls, IDS/IPS, VPNs, and network architecture, that you have applied to both cloud and non-cloud native environments – ideally AWS.
The ideal candidate is equally adept on the software development side, with a good understanding of application security, secure coding practices and application vulnerabilities, e.g., OWASP Top 10.
As part of the role, you will be expected to hold or apply to the National Security Vetting process in order to obtain Security Clearance (SC).
Benefits
Applicants currently holding a permanent post in the Civil Service should note that, if successful, their salary on appointment would be determined by the Department’s transfer / promotion policies.
As a member of the DfE, you will be entitled to join the highly competitive Civil Service Pension Scheme, which many experts agree is one of the most generous in the UK, with an average employer contribution of 27%.
You will have 25 days leave, increasing by 1 day every year to a maximum of 30 days after five years’ service. In addition, all staff receive the King’s Birthday privilege holiday and 8 days’ bank and public holidays.
We offer flexible working arrangements, such as job sharing, term-time working, flexi-time and compressed hours.
Most DfE employees will be working a hybrid pattern, spending at least 60% of their time in an office or work setting. Changes to these working arrangements are available in exceptional circumstances but must be agreed with the line manager and in line with the requirements of the role.
Travel to your primary office location will not be paid for by DfE, but costs for travel to an office which is not your main location will be covered.
As an organisation, which exists to support education and lifelong learning, we offer our staff excellent professional development opportunities.