Head of Cyber Assurance, Engagement and Red Team (Job share)
| Posting date: | 12 August 2024 |
|---|---|
| Salary: | £64,700 to £75,000 per year |
| Additional salary information: | National: £64,700 - £69,200 London: £68,790 - £75,000. Offers above the band minimum are subject to our assessment of your skills and experience as demonstrated at interview. Salaries over the band minimum will be paid as a non-pensionable allowance. |
| Hours: | Part time |
| Closing date: | 01 September 2024 |
| Location: | Manchester |
| Company: | Government Recruitment Service |
| Job type: | Permanent |
| Job reference: | 364400/4 |
Summary
The Government Security Group (GSG) is the centre of the Security Function, based within the Cabinet Office. This role offers an exciting opportunity to work in a fast-paced, dynamic team, with a breadth of stakeholders including in other Government departments, the National Technical Authorities and the Agencies, and to contribute to delivering improved security across Government.
The Cyber Directorate was formed in September 2022 following an independent review of GSG capability and priorities. A new Cyber Director post was created within GSG and existing teams leading three deputy directors, each leading the following teams: Cyber Operations and Assurance, Cyber Transformation, and Cyber Policy and Solutions.
We are responsible for delivering the first Government Cyber Security Strategy. Our purpose is to make Government’s critical functions significantly hardened to common attacks by 2025, and all government organisations across the public sector resilient to known vulnerabilities and attack methods no later than 2030.
GSG’s culture embraces a diverse workforce: we come from all walks of life. GSG values the fact that our different backgrounds, cultures, genders, experiences and ways of working ultimately bring us together as a more effective team. We strive for a collegiate and inclusive working culture that means our voice at every level is heard. Each one of us has a part to play in helping the Government to keep the UK secure.
GSG also wants to do better at recognising that we have responsibilities outside of work – so that we not only work hard, but we work smart – whether that’s full time, part-time or job sharing, we work flexibly. We promote hybrid working with a combination of time spent in the office and at home, where appropriate.
GSG is committed to being an equal opportunities employer. We value and welcome diversity. We will not tolerate harassment or other unfair discrimination on grounds of sex, marital status, race, colour, nationality, ethnic origin, disability, age, religion or sexual orientation. We promote and support the diversity of our workforce, promote learning and development, and celebrate our successes.
This job share post jointly leads our work in evaluating and improving cyber security across government and is responsible for the Assurance, Engagement and Red teams. We are now coming to the end of the first year of our new Assurance regime, GovAssure, and you will be responsible for bringing GovAssure through its second year of run, evaluation of the results and improvement for the next year. As part of our plan to transition to continuous assurance, you will be responsible for evaluating control library solutions, working with departments to understand their experience and build an enduring solution to embed assurance in day to day business.
The post works closely with stakeholders in NCSC, CDDO, and the Cyber GSEC as well as stakeholders across the government security community and is responsible for directing relationship management through the Engagement team, who work with portfolios of government departments to understand security challenges and manage consultation including departmental journeys through GovAssure. As part of holistic assurance, the post also manages the Red team, who coordinate a programme of adversary simulation testing. You will be jointly responsible for overseeing programme and integrating assurance techniques into departmental practice, building a community and mainstreaming testing in government.
The teams work with the Operations team to support understanding of broader government vulnerabilities and incidents and provide surge capacity for crisis management.
We have a strong focus on building an inclusive environment where every member of the team feels valued and able to share their experiences and skills, and welcome applications from candidates who share this ethos. You will gain a unique insight into the cyber security challenges facing Government and its partners, and will work with National Technical Authorities, the national security community and industry to tackle these challenges.
The post holder will need a strong understanding of cyber security, in particular assurance frameworks and real world experience of cyber defence. Relationship management with multiple stakeholders will be critical and you will be responsible for a team of 20.
Our cyber posts attract a skills based DDAT pay lead. This post is subject to a DDAT skills assessed non pensionable pay lead. In certain circumstances exceptional candidates may be eligible for a higher starting salary.