About the job

Job summary

Secure infrastructure is the target. Think like the opposition. Architect the attack.

You’re the type of person who’s quick to learn about unfamiliar systems and technologies and enjoy being the first to approach the problem and that’s exactly what you’ll get to do.

At HMGCC, you’ll combine your experience and knowledge of common vulnerabilities with a creative and open mind to identify the weakest points in a system. You’ll direct and coordinate the work of vulnerability researchers and build representative model environments for others to attack.

Alongside the Head of Profession, you’ll identify the learning and development opportunities you need to help you progress, both from internal courses as well as external.

This is not an IT pen testing role – this is about taking the gloves off to achieve objectives. Because that’s what our opposition can, and will, do to compromise our infrastructure.

More About You

You will already have,

• Experience in a relevant technical development discipline (electronic hardware, software, firmware, systems).
• An interest in developing and proving attack surfaces for systems.
• Experience of leading teams & task management.

To strengthen your application, it would be beneficial if you have one or more of the following (but these are not essential),

• Experience of design, implementation, testing or maintenance of at least one of the following; 
  • Information Technology Systems
  • Control Systems
  • Communications Systems
• Experience of hardware-in-the-loop testing.

Your Personal Skills

You will be the type of person who,

• Thrives on learning about unfamiliar technologies and how customers deploy and use them.
• Communicates technical concepts fluently to a range of audiences from non-technical senior customers through to experienced vulnerability researchers.
• Approaches problems with an open and inquiring mind.
• Can adapt. Change and innovation is a big part of our organisation. You will be able to adapt with the support of your team and management.

Job description

Putting your skills to use

Using your diverse range of skills within the team, you will,

• Develop an understanding of systems used by our customers and understanding what impactful attacks against them would like.
• Develop and document the attack surface for systems.
• Lead a small team of vulnerability researchers and developers to produce proof-of-concept attacks to demonstrate critical system vulnerabilities.
• Lead the build of a representative test environment.
• Lead verification of attacks demonstrated by the team.
• Take first line responsibility for communicating findings and potential mitigations to stakeholders.

Person specification

You will already have,

• Experience in a relevant technical development discipline (electronic hardware, software, firmware, systems).
• An interest in developing and proving attack surfaces for systems.
• Experience of leading teams & task management.

To strengthen your application, it would be beneficial if you have one or more of the following (but these are not essential),

• Experience of design, implementation, testing or maintenance of at least one of the following; 
  • Information Technology Systems
  • Control Systems
  • Communications Systems
• Experience of hardware-in-the-loop testing.

Your Personal Skills

You will be the type of person who,

• Thrives on learning about unfamiliar technologies and how customers deploy and use them.
• Communicates technical concepts fluently to a range of audiences from non-technical senior customers through to experienced vulnerability researchers.
• Approaches problems with an open and inquiring mind.
• Can adapt. Change and innovation is a big part of our organisation. You will be able to adapt with the support of your team and management.

Benefits

What we Offer

Now that we’ve explained a bit about what you will we be doing, here’s what we can offer you,

• 25 days annual leave, rising to 30 after 5 years’ service.
• 8 Bank Holiday days off in addition to your annual leave.
• 2 ½ additional days leave (set dates through the year).
• Paid overtime or TOIL. Your salary is for your contracted hours. If you work more, and sometimes it’s needed, we believe you should be rewarded for that.
• Lots and lots of training.  This can be anything from a ½ day internal course to a distant learning degree.  If it’s relevant to your career, we will aim to support you.
• Our Pension scheme is Alpha.  It’s competitive.
• Sports & Social Society. Whether its classic cars or baking, golf or crafting, we have a society for you.
• On site nursery (subject to availability).
• 3 days paid leave a year to support a registered charity of your choice.
• Free parking.
• Free onsite gym, open 24 hours a day.
• Relocation Package*
• Affinity Groups – whether you are disabled, LGBTQ and/or from an Ethnic Minority. We provide an inclusive environment and support for everyone.

About HMGCC

We’re HMGCC, Her Majesty’s Government Communications Centre. You may not have heard of us before.  That’s because our customers are other UK Government Departments. Using our collective expertise, we develop communication systems for our customers that are innovative, reliable and totally secure to protect national security at home and overseas.

We invest in our people, not only with training but also support throughout your career with us; to allow you to reach your full potential at work, as well as enjoy the work/life balance many aspire to.

To find out more about us and if we’re right for you, please visit our website.

Equal Opportunities

Inclusion & Diversity really matters to us. It's not just about numbers or visible differences.

HMGCC are committed to providing equal opportunities and encourage applications from candidates of all backgrounds, ethnicities, gender identities, sexual orientations, and those with disabilities or who are neurodiverse.

We’re not looking for any one type of person. We’re looking for talent from all different backgrounds to join our organisation, where we genuinely respect and value each other's differences, as well as our similarities. It makes us even better at what we do.

We are proud to offer candidates the opportunity to apply through the Offer of Interview Scheme. The scheme ensures eligible candidates are selected for an interview as long as their application meets the minimum criteria for the role. To find out more and how you can apply under this scheme, please see the inclusion and diversity information on our website. 

Things you need to know

Selection process details

Discover more by visiting our website. 

Our Recruitment Team will process your application once the role has closed and everyone will get a response.

Please note dependent on the recruitment requirements, we withhold the right to bring forward the closing date for this role from the original closing date.  

Security

Successful candidates must undergo a criminal record check. Successful candidates must meet the security requirements before they can be appointed. The level of security needed is developed vetting (opens in a new window).

See our vetting charter (opens in a new window). People working with government assets must complete baseline personnel security standard (opens in new window) checks.

Nationality requirements

Open to UK nationals only.

Working for the Civil Service

The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants.

We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window). The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.