Warning
Mae'r hysbyseb swydd hon wedi dod i ben ac mae'r ceisiadau wedi cau.
Head of Cyber Governance, Risk and Compliance
| Dyddiad hysbysebu: | 20 Rhagfyr 2024 |
|---|---|
| Cyflog: | £70,540 bob blwyddyn, pro rata |
| Oriau: | Llawn Amser |
| Dyddiad cau: | 19 Ionawr 2025 |
| Lleoliad: | PO28BY |
| Gweithio o bell: | Ar y safle yn unig |
| Cwmni: | Ministry of Defence |
| Math o swydd: | Parhaol |
| Cyfeirnod swydd: | 383009 |
Crynodeb
In this role, you’ll provide thought-leadership and insight to enable Navy operations and outputs, to be appropriately secure and resilient. You’ll need to understand Navy’s compliance against standard cyber security frameworks, as defined by MOD. You’ll engage proactively with stakeholders across Navy Command, in the governance of cyber security risk, developing an understanding of compliance levels and ensuring cyber risks are under effective management.
You’ll lead a team, developing the core skills and expertise, so that they can develop and maintain a wider understanding of cyber risks and capabilities, across RN’s complex and challenging environments.
Responsibilities will include:
Own the governance, risk, and compliance (GRC) aspects of cyber security within Navy Command.
Ensure that a suitable control framework is in place to manage security and technology risks within appetite. Covering areas, including policies & standards, supply chain risk, operational risk, user education and operational resilience / business continuity oversight.
Act as the subject matter expert regarding security and technology compliance requirements and standards, including NIST and ISO27001.
Ensure security and risk consultancy is provided to support business activities.
Share subject matter expertise and support the wider Navy Digital Team and business stakeholders.
Line management of several direct reports within the team. Resource management across the team, ensuring that the relevant workload is delivered as agreed.
Carry out cyber security assurance on RN Capabilities and the supply-chain risk.
Maintain personal skills in the context of technology, GRC, best practices and the strategic direction of Navy Command.
Support the development of mechanisms to drive continuous improvement and encourage the sharing of best practice.
Maintain close liaison with key stakeholders across Defence and other government departments, to support wider policy activities.
Deputise for the Chief Information Security Officer (CISO) when required.
You’ll lead a team, developing the core skills and expertise, so that they can develop and maintain a wider understanding of cyber risks and capabilities, across RN’s complex and challenging environments.
Responsibilities will include:
Own the governance, risk, and compliance (GRC) aspects of cyber security within Navy Command.
Ensure that a suitable control framework is in place to manage security and technology risks within appetite. Covering areas, including policies & standards, supply chain risk, operational risk, user education and operational resilience / business continuity oversight.
Act as the subject matter expert regarding security and technology compliance requirements and standards, including NIST and ISO27001.
Ensure security and risk consultancy is provided to support business activities.
Share subject matter expertise and support the wider Navy Digital Team and business stakeholders.
Line management of several direct reports within the team. Resource management across the team, ensuring that the relevant workload is delivered as agreed.
Carry out cyber security assurance on RN Capabilities and the supply-chain risk.
Maintain personal skills in the context of technology, GRC, best practices and the strategic direction of Navy Command.
Support the development of mechanisms to drive continuous improvement and encourage the sharing of best practice.
Maintain close liaison with key stakeholders across Defence and other government departments, to support wider policy activities.
Deputise for the Chief Information Security Officer (CISO) when required.