About the job

Job summary

The National Cyber Security Centre (NCSC) was set up in 2016 as the UK’s National Technical Authority and lead operational body for cyber security.  As part of GCHQ, the organisation has unparalleled insight into the current and potential cyber threats the UK faces, but much of the NCSC’s work is unclassified, citizen-facing and focused on acting at scale to build resilience. 
 
Under the National Cyber Strategy the NCSC‘s mandate was reaffirmed, to deliver an ambitious, world-leading programme to make the UK the safest place to live and work online. This is part of the UK five pillar approach to the whole of national cyber security – focusing on threat, technology, resilience, ecosystem and international partnerships.  The strategy emphasised the importance of balancing the demands of increasing cyber resilience across the UK today whilst prioritising the innovation that will keep us one step ahead in the future.  
 
The NCSC’s current priorities (outlined in the foreword to the Annual Review 2023) are to improve the UK’s cyber resilience to the most significant cyber risks; retain our edge as technology changes, and become the strongest organisation we can be.   
 
NCSC’s success is based on harnessing world-class technical expertise and using this to deliver practical impact at scale, and partnerships are crucial. We work with the rest of the UK intelligence community; the National Protective Service Authority; with central government (Cabinet Office, DSIT, FCDO and Home Office); with defence, and across law enforcement with the National Crime Agency and others.  We also collaborate with lead government departments and regulators to improve resilience in key sectors; with the Information Commissioner’s Office, and with a wide range of industry partners.  Our partnerships include the UK’s Communications Service Providers; the wider global technology and cyber security industry; and sectors like finance, energy, and defence whose resilience are key to UK prosperity.  A key part of the role will be to take partnership with this community to the next level.  

We are also proud to demonstrate the UK’s international leadership in cyber security.  We build strong partnerships with other capable cyber nations and share our expertise and insight for global benefit.  

The enduring cyber security challenge is to incentivise tech companies to build security into their products by design, and to incentivise organisations, companies and the wider public to increase their cyber resilience in a world where many either don’t understand the risk or hope they can postpone or scale back the cost of their response.  Cybercrime remains an enduring threat to businesses and citizens, while State actors and the proliferation of capability are an increasing threat to critical national infrastructure and government in particular. 2024 will be an exciting year for NCSC, with the focus on AI and other critical future technology, and a general election by January 2025 which we will help to secure against cyber threats. We are also working with partners (such as the National Protective Security Agency) to develop a cohesive longer-term resilience strategy to help us address the threat from state actors. 
 
NCSC also continues to evolve on its journey to a resilient and recognisable organisation with a clear mandate and focus on user need, with an evidenced, value for money, data-driven offer, a skilled and diverse pipeline of technical talent and an authentic and inclusive culture.

Job description

CEO NCSC is a fantastic opportunity to lead a respected national organisation, recognised globally as a world-leading cyber security agency and a unique part of wider GCHQ.  

The CEO has a pivotal role shaping, delivering and communicating the UK’s national approach to cyber security; managing nationally significant incidents; building partnerships internationally and with industry, and delivering insight and results at scale for national effect.  As well as leading NCSC into the future and building its inclusive organisational culture, you will be a key part of GCHQ’s leadership team and Management Board, transforming the organisation for the intelligence and security challenges of the future, and representing it at home and abroad.

Person specification

As CEO of NCSC, you will lead the organisation on the next stage of the evolution outlined above.  Throughout you will advocate, mentor, inspire and role-model inclusive leadership, both in NCSC and wider GCHQ.  
 
Essential Criteria:

Strong leadership skills, including the ability to harness the technical expertise embedded in the NCSC.  You will set the vision and strategy for the organisation and embed an inclusive culture.

Proven, exceptional influencing skills. This includes the networks and ability to deal with the most senior political and official levels of Government at both a strategic and tactical level as well as managing the NCSC’s key relationships, including those with international parties.

Superb communication skills, including the ability to act as a media spokesperson. In particular the ability to translate complex technological issues into easy-to-understand, actionable messages, regularly for the public on national media, and sometimes to very senior non-technical people under real pressure. Also the ability to command a highly specialised audience with personal credibility, for example at CyberUK, our annual national cyber security conference.   

Crisis management skills. You will need to act as a crisis manager within Government and as the public voice of HM Government in the event of a serious cyber incident affecting the UK.

Board level leadership skills.  As an active member of the GCHQ Board and executive team, you will be part of the collective leadership that helps to inspire and lead GCHQ to succeed in our purpose and our priorities.  This includes additional cross- organisational responsibilities – you may be asked to lead across the organisation on particular technologies (like AI), relationships (with key partners) or diversity issues (such as social mobility) to ensure GCHQ remains a great place to work. 

A high level of commercial and international awareness so that the NCSC’s advice is useful to business and sensitive to the commercial realities they face. You will also need to ensure NCSC’s offer remains innovative and value for money, convening rather than crowding out the private sector, and to make tough resource choices.

Benefits

A range of benefits will be available to you, including the following:

• 25 Days Annual Leave automatically rising to 30 days after 5 years' service, and an additional 10.5 days public and privilege holidays
• Opportunities to be recognised through our employee performance scheme
• Interest-free season ticket loan
• Excellent pension scheme
• Cycle to work scheme
• Facilities such as a gym, restaurant and on-site coffee bars (at some locations)
• Paid parental and adoption leave.

Things you need to know

Selection process details

Our recruitment process is fair, transparent, and based on merit. 

The closing date for applications is 10:00AM Monday 8th January.

The panel will then conduct a Shortlist which will assess your application to select those demonstrating best fit for the role by considering the evidence provided. 

Candidates will be informed as soon as possible thereafter if they have been selected to proceed. The selection process will comprise of the following:

• Staff Engagement Panel which is expected to be held virtually.
• Media Assessment which is expected to be held virtually.
• Psychometric testing interview which is expected to be held virtually. This will follow online assessments which will need to be completed in advance.  The online assessment is likely to take approximately one hour to complete.  
• Panel Interview to be held in London.

Security

Successful candidates must undergo a criminal record check. Successful candidates must meet the security requirements before they can be appointed. The level of security needed is developed vetting (opens in a new window).

See our vetting charter (opens in a new window). People working with government assets must complete baseline personnel security standard (opens in new window) checks.

Nationality requirements

Open to UK nationals only.

Working for the Civil Service

The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants.

We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window). The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.