GOVTALENT.UK

Cyber Security Risk Associate

This opening expired 7 months ago.

Department for Business and Trade

Location(s):
Belfast, Birmingham, Cardiff, Darlington, Edinburgh, London, Salford
Salary:
£31,443 to £41,150
Job grade:
Higher Executive Officer
Business area:
Information Technology (IT)
Contract type:
Permanent
Working pattern:
Full-time, Part-time

About the job

Job summary

Job Description

As a Cyber Security Risk Manager Associate, you will work to identify and mitigate Cyber related risks.  You will provide risk or service owners with advice to help them make well informed risk-based decisions.  Taking on expertise from the wider Cyber, Technology and other professions across the Department. 

As part of the team responsible for the Cyber Risk and Compliance aspect of Cyber Security within The Department for Business and Trade (DBT) you will.  Reporting to the Cyber Risk Leads, you will collaborate closely with the wider Cyber team and DDaT, as well as Government Security Profession. 

The Governance Risk and Compliance (GRC) team is responsible for cyber risk management, maintaining in-house system security assurance, running internal cyber security training, setting standards for compliance, and devising policies, and enabling audit management and response. 

As a member of the GRC team you will demonstrate the Civil Service Values by working with integrity, honesty to enable a more secure posture in the Department and enable appropriate acceptance of risk by Senior decision makers.

You will have strong collaboration skills, working with other professions and a significant number of non-technical colleagues to support them in delivering the GRC mission, which is to protect and promote a governed, Cyber risk aware and compliant DBT.

The Cyber team prioritise the wellbeing and careers of our people.  We will support you to improve and grow, offering amazing learning and development opportunities, through internal training, shadowing, and external courses. 

If you are someone who wants to develop further or are looking for a career change and you have transferrable skills, we want to hear from you. 

Job description

Responsibilities

In this role you will:   

  • Support the Cyber Risk Leads to conduct Cyber Security related risk assessments that follow DBT’s Information Risk Assurance Process (IRAP).
  • Research suppliers, technologies, and contracts, gathering documentation to support and evidence risk-based decisions.
  • Support the Cyber Risk Leads to provide tailored advice to a range of stakeholders on how to mitigate identified risks by proportionately applying security controls, using best practise and standards.
  • Undertake risk management activities within established security and risk management frameworks.
  • Carry out project and IRAP case management activities.
  • Support culture and awareness training activities and incident management activities, and other Cyber and Information Security tasks as required to support the wider team.

Person specification

Essential Skills and Experience   

You will need to have demonstrable skills and experience of:

  • Basic understanding of risk management and interest in information security.
  • Basic understanding of Government Security Classifications.
  • Being inclusive, a learner and a relationship builder - self-motivated, pro-active and able to adapt to changing priorities, using your initiative appropriately to deliver.
  • Being an explainer and influencer - effective verbal, and written communication skills.
  • Being emotionally intelligent and a relationship builder - able to take technical details create materials and present to non-technical audiences.
  • Being adaptable, a catalyst and organiser - able to bring people together and be organised and able to multi-task, prioritise and manage time effectively.

Desirable Skills and Experience   

These are not necessary but would be ideal if you:

  • Have previous experience working within an IT/Cyber Security role.
  • Experience in a risk assurance role.
  • Knowledge of information security frameworks.

Personal Attributes and Skills

  • Ability to manage workload and prioritise in a fast-paced environment. 
  • Ability to communicate technical ideas to a non-technical audience. 
  • A keen learner with a desire to expand their knowledge of cyber security. 
  • Demonstrates high integrity and good ethics when handling sensitive and confidential information. 
  • Be a self-motivated individual and a key integral team member as part of the wider Cyber team.
  • Being able to see the bigger picture rather than focusing on just completing tasks.

Benefits

  • Learning and development tailored to your role
  • An environment with flexible working options
  • A culture encouraging inclusion and diversity
  • A Civil Service pension with an average employer contribution of 27%

Things you need to know

Selection process details

Interviews for this vacancy will be conducted virtually. We will, however, consider in-person interviews by exception.

Please ensure that you check your emails regularly as all updates from us will be sent to you this way.

How to Apply  

Unless otherwise specified, all interviews are currently being held online. Please ensure that you check your emails regularly as all updates from us will be sent to you this way.

Sift will take place week commencing: 19/02/2024

Interviews will take place week commencing: 04/03/2024

Please notes these dates are indicative and may be subject to change.

At the sift stage for this role, we will assess your CV and personal statement against the essential skills and experience listed above, so please ensure these documents evidence these criteria. Your personal statement must be a maximum of 650 words. Please organise your personal statement into paragraphs, each dedicated to a specific essential criterion. It may benefit your application to title each paragraph with the corresponding essential criteria header. Additionally, while addressing the criteria, briefly elaborate on your interest in DBT the reasons for your enthusiasm about this role.

If we receive a high volume of applications, we will conduct a ‘short sift’ and read one element of your application. For this campaign a short sift would be conducted based on:  Personal Statement.

 How We Interview

At the interview stage for this role, you will be asked to demonstrate relevant Behaviours and Strengths from the Success Profiles framework. A role-specific list of these can be found below.

Applicants successful to interview stage will be provided with a diagram within the interview and asked strength-based questions based on the diagram.

We will assess you against these behaviours during the selection process:

  • Changing and Improving
  • Communicating and Influencing
  • Making effective decisions

We will also ask you strength-based questions, which are not listed in the advert. These are short questions that you should provide a natural answer to, therefore they demonstrate your innate strengths.  

Reserve List

Appointments may be made to candidates in merit order based on location preferences. Candidates who pass the bar at interview but are not the highest scoring will be held on a 12-month reserve list for future appointments. Candidates who are judged to be a near miss at interview may be offered a post at the grade below the one advertised.

Security Clearance Details 

All security clearances require you to provide evidence of your UK footprint where you have been physically present in the UK.

The requirement for SC clearance is to have been present in the UK for at least 3 of the last 5 years.

Failure to meet the residency requirements will result in your security clearance application being rejected.

If you require SC clearance you will need to provide evidence of the below requirements.

Checks will be made against:

  • Departmental or company records (personnel files, staff reports, sick leave reports and security records).
  • UK criminal records covering both spent and unspent criminal records.
  • Your credit and financial history with a credit reference agency.
  • Security Services record.
  • Location Details

Further Information

If successful and transferring from another Government Department a criminal record check may be carried out.

The Department for Business and Trade embraces and values diversity in all forms. We welcome and pride ourselves on the positive impact diversity has on the work we do, and we promote equality of opportunity throughout the organisation.

Harmonised terms and conditions are attached. Please take time to read the document to determine how these may affect you

Please note – the successful candidate will be expected to remain in post for a minimum of 18 months before being released for another role.

Any move to the Department for Business and Trade from another employer will mean you can no longer access childcare vouchers. This includes moves between government departments. You may however be eligible for other government schemes, including Tax Free Childcare. Determine your eligibility at https://www.childcarechoices.gov.uk

New entrants are expected to join on the minimum of the pay band.

Reasonable adjustment

If a person with disabilities is put at a substantial disadvantage compared to a non-disabled person, we have a duty to make reasonable changes to our processes.

If you need a change to be made so that you can make your application, you should contact the DDaT Recruitment team before the closing date to discuss your needs.

Our recruitment process is underpinned by appointment on the basis of fair and open competition and appointment on merit, as outlined in the Civil Service Commission's Recruitment Principles.

The Civil Service Code sets out the standards of behaviour expected of civil servants. If you feel your application has not been treated in accordance with these principles and you wish to make a complaint, you should in the first instance contact DBT by email: ddat.recruitment@trade.gov.uk.

If you are not satisfied with the response you receive, you can contact the Civil Service Commission, which regulates all Civil Service recruitment. Click here to download a PDF about the Civil Service Commission/Complaints.

If you are experiencing accessibility problems with any attachments on this advert, please contact the email address in the 'Contact point for applicants' section.

For further information and to apply please click the link to direct you to the advertisers website.

Vetting Requirements

SC

All security clearances require you to provide evidence of your UK footprint where you have been physically present in the UK.

The requirement for SC clearance is to have been present in the UK for at least 3 of the last 5 years.

Failure to meet the residency requirements will result in your security clearance application being rejected.

If you require SC clearance you will need to provide evidence of the below requirements.

Checks will be made against:

  • departmental or company records (personnel files, staff reports, sick leave reports and security records)
  • UK criminal records covering both spent and unspent criminal records
  • your credit and financial history with a credit reference agency
  • Security Services records


Feedback will only be provided if you attend an interview or assessment.

Security

Successful candidates must undergo a criminal record check. Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check (opens in a new window).

See our vetting charter (opens in a new window). People working with government assets must complete baseline personnel security standard (opens in new window) checks.

Nationality requirements

This job is broadly open to the following groups:

  • UK nationals
  • nationals of the Republic of Ireland
  • nationals of Commonwealth countries who have the right to work in the UK
  • nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) (opens in a new window)
  • nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS)
  • individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020
  • Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service
Further information on nationality requirements (opens in a new window)

Working for the Civil Service

The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants.

We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window). The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria. The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.

Added: 7 months ago