Defence Digital Cyber Vulnerability Team Lead
| Posting date: | 17 August 2025 |
|---|---|
| Salary: | £36,530 per year |
| Additional salary information: | A pension contribution of 28.97% based on the listed salary. |
| Hours: | Full time |
| Closing date: | 16 September 2025 |
| Location: | SN13 9NR |
| Remote working: | Hybrid - work remotely up to 2 days per week |
| Company: | Ministry of Defence |
| Job type: | Permanent |
| Job reference: | 420963 |
Summary
As Cyber Vulnerability Team Lead, you’ll be responsible for leading and managing a small team, maintaining the proactive identification of vulnerabilities, across MOD’s wide area network (WAN) connected systems. This includes cloud environments and our internet facing digital perimeter, in support of MOD’s enduring Defensive Cyber Operations (DCO).
You’ll support live DCO incidents, hastening resolution, and subsequent risk assessment, of unmitigated vulnerabilities on MOD’s CIS (Computer & Information Systems).
The role may evolve as future Defence reforms are enacted.
Responsibilities
Undertake line management, mentoring and countersigning tasks of a small team.
Manage and support vulnerability and other operational cyber incidents, as operational tempo dictates, as per the team rota. Including conducting and maintaining network vulnerability scanning.
Maintain and manage cyber vulnerability situational awareness reporting on MOD’s networks, highlighting deviation from MOD and other extant MOD/Government policies.
Maintain risk and vulnerability analysis/escalation of the known MOD systems and ensure CVT (Cyber Vulnerability Team) input to JDCU (Joint Defensive Cyber Unit) and wider DD/MOD reporting is maintained and evolves to meet changing operational requirements.
Develop and maintain team processes (ITIL, SIAM etc) and standard operating procedures, work instructions and other documents. This also includes requirements/user stories, in support of future capability delivery.
Represent the team and unit at IT Security Policy and Procedures working groups and other technical/operational meetings and ensure that relationships with stakeholders are developed and maintained.
Maintain and develop the skills needed to exploit the evolving toolsets being delivered as part of MOD’s DCO activities and future Defence reform. This includes maintaining up to date knowledge of threat actor tactics and evolving vulnerability methods and trends.
Remote working within this role is something that can be discussed at interview stages or with your future line manager if you are found successful.
Please note, candidates will be redirected to the Civil Service Jobs website where you will need to submit your application form. Please note the closing date above is incorrect and cannot be amended so please check the closing date on Civil Service Jobs and allow enough time to submit your application form.
You’ll support live DCO incidents, hastening resolution, and subsequent risk assessment, of unmitigated vulnerabilities on MOD’s CIS (Computer & Information Systems).
The role may evolve as future Defence reforms are enacted.
Responsibilities
Undertake line management, mentoring and countersigning tasks of a small team.
Manage and support vulnerability and other operational cyber incidents, as operational tempo dictates, as per the team rota. Including conducting and maintaining network vulnerability scanning.
Maintain and manage cyber vulnerability situational awareness reporting on MOD’s networks, highlighting deviation from MOD and other extant MOD/Government policies.
Maintain risk and vulnerability analysis/escalation of the known MOD systems and ensure CVT (Cyber Vulnerability Team) input to JDCU (Joint Defensive Cyber Unit) and wider DD/MOD reporting is maintained and evolves to meet changing operational requirements.
Develop and maintain team processes (ITIL, SIAM etc) and standard operating procedures, work instructions and other documents. This also includes requirements/user stories, in support of future capability delivery.
Represent the team and unit at IT Security Policy and Procedures working groups and other technical/operational meetings and ensure that relationships with stakeholders are developed and maintained.
Maintain and develop the skills needed to exploit the evolving toolsets being delivered as part of MOD’s DCO activities and future Defence reform. This includes maintaining up to date knowledge of threat actor tactics and evolving vulnerability methods and trends.
Remote working within this role is something that can be discussed at interview stages or with your future line manager if you are found successful.
Please note, candidates will be redirected to the Civil Service Jobs website where you will need to submit your application form. Please note the closing date above is incorrect and cannot be amended so please check the closing date on Civil Service Jobs and allow enough time to submit your application form.