Location
About the job
Job summary
Could you help us keep the Department’s systems, data, people, processes, places, and supply chains secure? Do you want to be part of a diverse and expanding area of work? Are you self-motivated, willing to learn, develop and work towards qualifications while delivering in a vital role?
Join the Department’s Security Policy & Standards Team and help us protect and secure some of the most critical parts of the UK Government.
The Department for Work and Pensions (DWP) is responsible for the delivery of welfare, pensions and child maintenance across the UK. Most people in Britain encounter DWP at some point in their lives, and it is the UK’s biggest public service department and data controller, we operate on a scale that is almost unmatched anywhere in Europe.
To support the important work that DWP delivers, we are looking for new security professionals to help us keep the Department secure by ensuring we have the right security policies and standards in place.
Job description
The Security Policy and Standards Team are responsible for managing the creation, development, and evaluation of DWP Security Policies and Standards which set the security parameters for the Department to operate securely and effectively. They define the measures that help to protect DWP, its infrastructure and its staff from physical, personnel and cyber threats.
In addition to ensuring DWP’s security policies and standards are regularly reviewed and updated, keeping pace with the everchanging risk landscape, the team works closely with a range of projects and initiatives across DWP, ensuring our security policies and standards are embedded within new technologies and processes by design.
The post holder will be part of an experienced and passionate team which is spread across the country. This is an exciting opportunity to develop your capability in security policy, and to play an active role in ensuring DWP’s security policies and standards are fit for purpose and remain effective in supporting the Department deliver its strategic objectives.
Person specification
Responsibilities
In the Security Policy & Standards Manager role you will:
- Support the development of Security Policy & Standards, ensuring that the portfolio continues to meet current and emerging business needs, priorities and necessary updates as threats evolve.
- Managing the existing Policy and Standards portfolio, ensuring updates are made in a timely manner and providing consistency in language and framework used amongst all of our products.
- Support the departmental business objectives by providing accurate and timely responses to queries relating to security policies and standards.
- Build collaborative relationships with key stakeholders within the security directorate such as Cyber, Data Protection and Risk Management.
- Build and nurture relationships with key stakeholders across the wider department-including areas such as Service Delivery and HR.
- Manage review schedules, provide appropriate updates on progression of work and highlight areas at risk of progression.
- Manage and develop secretariat functions relating to governance of security policy and standards-ensuring relevant stakeholders are included, actions addressed and chasing up outstanding queries.
- Play a part in developing an inclusive and supporting workplace by being an engaging and enthusiastic member of the team.
In addition, you will be encouraged and supported to work towards professional certifications that will be relevant to your role, continuously learn new skills and knowledge and to develop your management capability.
This role would suit individuals with a strong background and interest in security, IT or digital roles, with a passion for making a difference across DWP.
Essential criteria:
- Good writing/drafting skills, being able to explain complex issues in clear, easy to understand language.
- Strong project management skills including keeping key stakeholders updated, and ensuring actions are assigned to relevant subject matter experts.
- Being able to provide clear, pragmatic advice that supports business objectives and enables the delivery of the department’s services.
- Effective communication skills, with experience of building strong working relationships with colleagues and stakeholders to achieve progress on shared objectives and delivery.
- The ability to manage multiple workstreams and prioritise time/resources depending on criticality of work.
Desirable Experience
- Knowledge of security principles and governance, and how they work within the public sector.
- Practical experience of preparing communications, responding to stakeholder interest and enquiries to ensure requirements are met in a professional and enabling manner.
- Well-developed communication skills, with the ability to articulate, to a professional standard, complex ideas in clear, business focused language which is tailored for a target audience.
- Knowledge of digital security risks and the current threat landscape.
- The ability to seek out and analyse data/MI, and present findings back in a clear and concise manner.
- Good technical skills and capability relating to Microsoft Suite of products-e.g. Word, Excel, Sharepoint.
Behaviours
We’ll assess you against these behaviours during the selection process:
- Communicating and Influencing
- Working Together
- Delivering at Pace
- Changing and Improving
Benefits
- Learning and development tailored to your role
- An environment with flexible working options
- A culture encouraging inclusion and diversity
- A Civil Service pension with an average employer contribution of 27%
Hybrid working
This job role may be suitable for hybrid working, which is where an employee works part of the week in their DWP office and part of the week from home. This is a voluntary, non-contractual arrangement and your office will be your contractual place of work. The number of days that anyone will be able to work at home will be determined primarily by business need, but personal circumstances and other relevant circumstances will also be taken into account. If you are successful, any opportunities for hybrid working, including whether a hybrid working arrangement is suitable for you, will be discussed with you prior to you taking up your post.