Head of Information & Cyber Security
Recruiter
Department for Transport
Listed on
23rd October 2020
Location
London
Salary/Rate
Salary: National Starting £58,595 London Starting £64,727
Salary Notes
Salary: National Starting £58,595 London Starting £64,727
Type
Permanent
Start Date
ASAP
This job has now expired please search on the home page to find live IT Jobs.
Are you a senior Information and Cyber Security professional who is keen to shape and influence policy and practice across a government department?Can you deliver at pace and work collaboratively to lead a government information and cyber security improvement program?
Does the opportunity to promote and embed a pragmatic user centred approach to cyber and information security appeal to you?
Are you adept at working collaboratively across boundaries whilst leading and developing high-performing teams to realise individual and organisational potential?
If so, we would love to hear from you! Reporting to the Chief Technology Officer (CTO) this is a key role within our Digital Service senior leadership team heading up our Information and Cyber Security Assurance teams. You will be working closely with senior colleagues to embed, communicate and deliver our recently developed Digital Technology strategy, of which a key theme is "enhancing our security".
You will have responsibility for our Information and Cyber security, strategy, posture and direction of travel for all corporate and operational IT systems. You'll work closely with our Cyber operations team, who will provide you the information and metrics you need to shape the future of security in DfTc.
With the passion and skills to embed a pragmatic user centred approach to information and cyber security, you will support the delivery of the next generation of high performing digital services for our customers and staff. This is a great opportunity for someone who has the aspiration to become a CISO in the future.
Responsibilities include but are not limited to; Responsibility for the governance of information & cyber security for the Department.
Lead the information and cyber security capability within the Department (excludes Data Protection and Transport Security) to ensure consistent and high-quality security management in support of the business goals and aligned to minimum standards.
Ensure that information assets and associated technology, applications, systems, infrastructure and processes are adequately managed and protected in the digital ecosystem in which we operate.
Provide regular reporting on the current status of the information security program to stakeholders within the Department and across Government as part of the strategic risk management effort, thus supporting business outcomes.
Provide effective leadership to the Department's internal Knowledge & Information Management (KIM) function, Cyber and Information Security Teams.
Ensure that the Information & Cyber Security policies and security controls employed remain appropriate and proportionate to the assessed risks, and are responsive and adaptable to the changing threat environment, business requirements and central HM Government policies
Lead the DfTc Security Improvement Program, with a view to maturing our capability, technology and people.
About You
We are looking for an experienced Information and Cyber Security professional with the following experience and capability:
Qualified Information and Cyber Security professional. You will be an experienced Information and Cyber Security professional, (CISSP, CISM qualified) with practical knowledge in the delivery of Information Security Management Systems, and application of this within an organisation of circa 3500 staff.
Delivering at pace. You will be confident in leading programmes of work, as well managing a maturing function, to set direction and deliver at pace to ensure compliance and continual improvement of information and cyber security.
Risk Management. You will have demonstrable experience of providing direction, managing change, both technical and people related as the information and cyber security threat landscape changes to embed a proportionate, pragmatic user centred approach information and cyber security.
Applied knowledge of information and cyber security standards.Working knowledge of central government security frameworks and initiatives will be needed, as well as practitioners understanding of non-government frameworks, such as ISO27001 and NIST
Stakeholder Management. You will be confident challenging and engaging with senior officials, up to and including Director General and Permanent Secretary level, providing advice in a format that allows risk-based decisions to be made.
Negotiating and influencing. Ability to build and establish collaborative relationships with a wide range of senior partners, and experience of working successfully with subject matter experts and across functional areas, where security remit is shared with other functions outside of the core Digital Service team. Examples include Transport Security, Corporate Security and data protection teams who are essential partners but are not part of the Digital Service division.
Leadership and management. You will be adept at working collaboratively as part of a senior leadership team to set and deliver strategy, culture and behaviours that foster a culture of high performance and rapid delivery of outcomes. This will include proven experience of leading teams and developing staff to meet and exceed their potential.
