Cyber Security Risk Manager
| Posting date: | 17 May 2025 |
|---|---|
| Salary: | £44,590 per year, pro rata |
| Hours: | Full time |
| Closing date: | 16 June 2025 |
| Location: | PO2 8BY |
| Remote working: | On-site only |
| Company: | Ministry of Defence |
| Job type: | Permanent |
| Job reference: | 400413 |
Summary
Leading the delivery of cyber risk management in the RN and continued integration of cyber security into existing risk management activities, you’ll provide advice and guidance to improve cyber risk decisions and use assurance to drive continuous improvement.
Through evidenced based decisions, informed by current threats and include mitigations, you’ll collaborate with stakeholders across RN and MOD, to understand the parts of the RN delivering cyber security risk management, in complex and challenging environments.
This role is key to management and oversight of RN cyber risks and enabling other key stakeholders to reduce and understand RN’s overarching cyber risk. You’ll need to build an understanding of cyber risks across the command, to identify trends and provide updates to the Navy Executive Committee.
Responsibilities
Continued integration of cyber security into Navy Command risk management, including people, processes and technology.
Provide tailored advice to a range of stakeholders on how to conduct cyber security risk management, consistent with RN and MOD policy, leveraging threat intelligence and best practice to mitigate risks.
Provide expert security advice that highlights cyber security related risks, so risk or service owners can make well-informed and auditable decisions.
Work with assurance teams to understand how risk management is conducted and use findings to drive continuous improvement.
Lead on reporting any Strategic Navy Command cyber risk status and trends.
Understand any risks outside of the Chief Information Security Officer's CISO risk appetite.
Engage with all key stakeholders involved in cyber risk management, building the community of interest and promoting cyber risk knowledge sharing; work with Cyber Risk Management (CRM) partners, as part of the Cyber Security Operations Capability (CSOC), in the interest of the broader aims of CRM.
(Remote working within this role is something that can be discussed at interview stages or with your future line manager if you are found successful.)
Through evidenced based decisions, informed by current threats and include mitigations, you’ll collaborate with stakeholders across RN and MOD, to understand the parts of the RN delivering cyber security risk management, in complex and challenging environments.
This role is key to management and oversight of RN cyber risks and enabling other key stakeholders to reduce and understand RN’s overarching cyber risk. You’ll need to build an understanding of cyber risks across the command, to identify trends and provide updates to the Navy Executive Committee.
Responsibilities
Continued integration of cyber security into Navy Command risk management, including people, processes and technology.
Provide tailored advice to a range of stakeholders on how to conduct cyber security risk management, consistent with RN and MOD policy, leveraging threat intelligence and best practice to mitigate risks.
Provide expert security advice that highlights cyber security related risks, so risk or service owners can make well-informed and auditable decisions.
Work with assurance teams to understand how risk management is conducted and use findings to drive continuous improvement.
Lead on reporting any Strategic Navy Command cyber risk status and trends.
Understand any risks outside of the Chief Information Security Officer's CISO risk appetite.
Engage with all key stakeholders involved in cyber risk management, building the community of interest and promoting cyber risk knowledge sharing; work with Cyber Risk Management (CRM) partners, as part of the Cyber Security Operations Capability (CSOC), in the interest of the broader aims of CRM.
(Remote working within this role is something that can be discussed at interview stages or with your future line manager if you are found successful.)