GOVTALENT.UK

Cyber Security Assurance Analyst

This opening expired 3 months ago.

Department for Environment, Food and Rural Affairs

Location(s):
Bristol, Reading
Salary:
£39,439 to £47,039
Job grade:
Senior Executive Officer
Business area:
Information Technology (IT), Analytical
Contract type:
Permanent
Working pattern:
Full-time, Part-time

About the job

Job summary

Defra is the UK government department responsible for safeguarding our natural environment, supporting our world-leading food and farming industry, and sustaining a thriving rural economy. Our broad remit means we play a major role in people's day-to-day life, from the food we eat, and the air we breathe, to the water we drink.

Digital, Data Technology and Security Services (DDTS) is the trusted team for digital across the entire Defra Group.

We have around 1,200 colleagues across DDTS and our ambition is to make it easier and faster than ever for people to interact with Defra. If you are ready to drive innovation and push boundaries, we want to hear from you. Join us and together we will create a great place for living, and a green and healthy future for all.

Find out more about DDTS:

Defra digital, data and technology blog

LinkedIn 

Defra Jobs 

Job description

Are you interested in protecting DEFRA's IT services to provide sustainable support, reliable services, and world class service?

The Defra Group Security function within Digital, Data Technology and Security Services DDTS is recruiting a Cyber Security Assurance Analyst to support senior management in delivering a robust security function capable of protecting Defra from a wide range of threats.

Government security is undergoing a step change and now is an exciting time to get involved. The security profession has an increasingly important role to play in a more digital world - the vision is to create an energetic, forward-thinking and technically proficient profession for government that leads the way in balancing security risks with the delivery of cost-effective, high-quality services.

In Defra you will play a key role for assuring the security of a portfolio of projects, incidents and audits on behalf of Defra group. Acting as subject matter expert within DDTS for one or more specialist technology or security topics, providing advice and recommending approaches to project managers and ensuring that project- level response to technology trends is appropriate from a security perspective. In this role you will provide expert IT security advice on the resolution of IT security incidents on behalf of the Security Team - taking decisions on behalf of the Security Assurance Lead where required in time- restricted scenarios.

We will help you from day one to ensure you settle into the role quickly and help you develop your IT skills with access to the latest product training and a tailored learning and development plan that you. Your learning, development and career growth journey doesn't end when you join Defra. It's just getting started!

Please note this post requires Security Check (SC) clearance. To gain (SC) clearance all applicants are required to have been a UK resident for a minimum of 5 years. If this requirement is not met, the individual will not be able to progress their application further.

Person specification

Responsibilities

  • Managing an assigned set of portfolios of IT projects from a security assurance perspective, ensuring that all projects follow the Defra Group Security Assurance process so that any risks at go live are understood and mitigated to allow sign off against the minimum baseline standards.
  • Reviewing and risk assessing security architecture designs and patterns and based on best practice, baseline standards and National Technical Authority standards.
  • Providing specialist advice, guidance and recommendations to service managers, project managers / external partners, in line with relevant legislation and best practice, to effectively underpin risk-based decision making.
  • Assessing threats and technical vulnerabilities associated with services, including scoping, supporting and reviewing IT Health checks of services as required.
  • Developing, maintaining and sharing cyber/ IT security expertise to improve knowledge and competence as required.
  • Continuous development of knowledge of IT Security and specialist topics in the field to ensure that advice and support provided is in line with latest technology and best practice.
  • Supporting, coaching, motivating and supporting any HEO IT security analysts/ fast streamers/ apprentices in the team to deliver group-wide policy and assurance services.

Skills and experience

  • Experience in providing IT security project assurance, risk assessment, incident management and advice to a complex organisation.
  • Detailed subject matter expertise in one or more specific technologies from a security perspective to include: Mobile and Endpoint Security and Monitoring, Server Architectures and hardening techniques, Vulnerability Management, Cloud services or Config Management, including OS, Middleware and COTS (Common Off The Shelf) and SaaS (Software-a--s-Service) applications.
  • Experience of engaging, advising and influencing at all levels of an organisation including senior managers and proven leadership skills in challenging and complex environments.
  • The ability to form excellent relationships within your department and with the wider security community including teams and the UK Intelligence Community.
  • The ability to analyse complex information in order to provide appropriate expert advice and guidance.
  • Proven ability of performing effectively to deadlines, maintaining focus in challenging situations and adapting to find solutions that meet the needs of stakeholders.

Selection process

The Civil Service marks each element of the selection process on a merit basis. You can visit the gov.uk website for further information on the Civil Service rating scale.

Ensure you have tailored your CV and Personal Statement to the 'responsibilities' and 'skills and experience' section of the job advert by providing examples on how you are suitable for the role. We would recommend using the STAR method. 

For further information on STAR, you can check out our hints and tips document.

Application

As part of the application process, you will be assessed on your experience and will be asked to complete:

  • A CV
  • A 750-word personal statement: Referring to the 'skills and experience' sections of the job advert, please demonstrate how you are suitable for the role by providing relevant examples.

Sift

Sift will begin shortly after the advert closes.

Should there be a large number of applications, an initial sift will be conducted using your personal statement.

Candidates who pass the initial sift may be progressed to a full sift, or progressed straight to assessment or interview.

Interview

If successful at sift stage, you will be invited to interview where you will be assessed on the Behaviours listed below. 

A presentation or additional exercise may also be assessed.

    Interview dates are to be confirmed. Please note that these may be subject to change.

    Interviews will be held virtually on Microsoft Teams.

    For further information on Success Profiles, please use the links below and watch our videos on Defra Jobs.

    Behaviours

    Experience

    Benefits

    Alongside your salary of £39,439, Department for Environment, Food and Rural Affairs contributes £10,648 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides.

    Things you need to know

    Selection process details

    This vacancy is using Success Profiles (opens in a new window), and will assess your Behaviours and Experience.

    For further information on the selection process for this role, please refer to the person specification section of the job advert.

    Near miss

    Candidates who are judged to be a near miss at interview may be considered for other positions in Defra which may be at a lower grade, but have a potential skills match.

    Reserve list

    A reserve list may be held for a period of 12 months from which further appointments can be made.

    Salary

    New entrants to the Civil Service are expected to start on the minimum of the pay band. The internal roles rules apply to existing Civil Servants, i.e. level transfers move on current salary or the pay range minimum, transfers on promotion move to new pay range minimum or receive 10% increase. Either case is determined by whichever is the highest.

    Location

    As part of the pre-employment process for this post, successful candidate(s) will be able to agree a contractual workplace from those locations listed in this advert. The agreed contractual workplace is then the substantive and permanent place of work for the successful candidate(s).

    Where the location is ‘National’ the successful appointee should discuss and agree an appropriate contractual location in line with both Defra’s location policy and site capacity, prior to proceeding with pre-employment processes. Successful applicants currently employed by the hiring Defra organisation for this post may choose to remain in their current contractual location or may choose to change contractual location to one of those listed above. This should be discussed and agreed prior to proceeding with pre-employment processes.

    The agreed amount of time spent at a workplace for this post will reflect the requirement for Civil Servants to spend at least 60% of their working time in an organisation workplace with the option to work the remaining time flexibly from home. Working time spent at a workplace may include time spent at other organisational locations including field-based operational locations, together with supplier, customer or partner locations. This is a non-contractual agreement which is consistent with common Civil Service expectations.

    Travel costs to non-contractual workplaces will be subject to departmental travel and subsistence policies. Travel costs to contractual workplaces are the responsibility of the employee.

    The successful candidate is required to carry out all their duties from a UK location, and cannot do so from an overseas location at any time.

    Defra includes the core department, APHA, RPA, Cefas and VMD

    Our main Defra DDTS hubs are in York, Warrington, Newcastle, Reading and Bristol.

    Please also be aware that space within the London office is restricted and it may not be possible to be based in this location.

    Visa sponsorship statement

    Please take note that Defra does not hold a UK Visa & Immigration (UKVI) Skilled Worker Licence and are unable to sponsor any individuals for skilled worker sponsorship.

    Reasonable adjustment

    If a person with disabilities is put at a substantial disadvantage compared to a non-disabled person, we have a duty to make reasonable changes to our processes.

    If you need a change to be made so that you can make your application, you should:

    • Contact Government Recruitment Service (GRS) via DefraRecruitment.GRS@CabinetOffice.gov.uk as soon as possible before the closing date to discuss your needs.
    • Complete the “Assistance required” section in the “Additional requirements” page of your application form to tell us what changes or help you might need further on in the recruitment process. For instance, you may need wheelchair access at interview, or if you’re deaf, a language service professional.

    Accessibility

    If you are experiencing accessibility problems with any attachments on this advert, please contact the email address in the 'contact point for applicants' section.

    Criminal Record Check

    If successful and transferring from another government department, a criminal record check maybe carried out.

    In order to process applications without delay, we will be sending a Criminal Record Check to Disclosure and Barring Service on your behalf. However, we recognise in exceptional circumstance some candidates will want to send their completed forms direct. If you will be doing this, please advise Government Recruitment Service of your intention by emailing Pre-Employment.Checks@cabinetoffice.gov.uk stating the job reference number in the subject heading.

    Internal fraud database check

    Applicants who are successful at interview will be, as part of pre-employment screening subject to a check on the internal fraud database (IFD). This check will provide information about employees who have been dismissed for fraud or dishonesty offences. This check also applies to employees who resign or otherwise leave before being dismissed for fraud or dishonesty had their employment continued. Any applicant’s details held on the IFD will be refused employment.

    A candidate is not eligible to apply for a role within the Civil Service if the application is made within a 5 year period following a dismissal for carrying out internal fraud against government.

    NSV

    For further information on National Security Vetting please visit the following page https://www.gov.uk/government/publications/demystifying-vetting

    Childcare Vouchers

    Any move to Defra from another employer will mean you can no longer access childcare vouchers. This includes moves between government departments. You may however be eligible for other government schemes, including Tax Free Childcare. Determine your eligibility at https://www.childcarechoices.gov.uk



    Feedback will only be provided if you attend an interview or assessment.

    Security

    Successful candidates must undergo a criminal record check. Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check (opens in a new window).

    See our vetting charter (opens in a new window). People working with government assets must complete baseline personnel security standard (opens in new window) checks.

    Nationality requirements

    This job is broadly open to the following groups:

    • UK nationals
    • nationals of the Republic of Ireland
    • nationals of Commonwealth countries who have the right to work in the UK
    • nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) (opens in a new window)
    • nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS)
    • individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020
    • Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service
    Further information on nationality requirements (opens in a new window)

    Working for the Civil Service

    The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants.

    We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window). The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria. The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.

    Added: 3 months ago