Job ID 338974
Are you a Cyber Security Risk Manager that has worked in a large-scale organisation?
Do you want to deliver expert network and cyber security services that support live IT operations for the entire infrastructure of DWP?
If so, we have a number of Senior and Lead Cyber Security Risk Manager vacancies.
These are critical roles co-ordinating and delivering the Digital Security Risk management programme of work, with risk driving security, enabling a clear, practical, and realistic view of Cyber Security Risk information. These roles form a vital First Line capability within the HMG three-line defence model.
If you want to work in an environment which values passion and creativity, and where you'll use your skills to make a difference to millions of people, we'd love to hear from you.
Delivery. Work. Projects.
DWP is the UK's largest government department. We help people into work and make payments worth over £195bn a year to support some of the most vulnerable people in our society.
Our DWP Digital community is driving a once-in-a-generation transformation of government services, using fresh ideas and leading-edge technologies to create innovative, scalable and user-centric digital solutions.
As a Lead Cyber Security Risk Manager, you will report directly to the Digital Security Risk Management Team Lead, you will Lead within the Digital Group to help deliver 1st line risk identification, assessment, remediation, and treatment of risks. You will lead the work to implement controls and make recommendations to address security vulnerabilities and control weaknesses in products, projects, and programmes, working with product owners and Subject Matter Experts to enable them to make well informed risk-based decisions whilst leading and influencing the management of tactical and strategic risks.
As a Senior Cyber Security Risk Manager, you will work within the Digital Group to help deliver 1st line risk identification, assessment, remediation, and treatment of risks. You will identify controls, make recommendations to address security vulnerabilities and control weaknesses in products, projects, and programmes, working with product owners and Subject Matter Experts to enable them to make well informed risk-based decisions whilst leading and influencing management of tactical and strategic risks.
Day to Day You Will:
Lead Cyber Security Risk Manager
Provide leadership to ensure effective security Risk expertise, advice and support is delivered to include business managers, Senior Risk Owners, and the Executive Team within DWP
Provide Security input at board level and working in liaison across the Department and with wider HMG, at both strategic and practical levels
Provide leadership and direction on the implementation of the Digital Governance Risk and Compliance methodology and day to day utilisation of the risk management toolsets at all levels
Provide leadership and direction for the research/evaluation of business processes aligned to known/emerging Security risks and controlsSenior Cyber Security Risk Manager
Manage and support Digital's Cybersecurity risk management lifecycle by working to help deliver 1st line risk identification, assessment, remediation, and treatment of risks
Drive a culture of effective and accurate security risk management and facilitate the governance of Digital Security Enterprise Risk Management within the four stages of the Security/Fraud Risk management lifecycle
Provide thought-leadership to ensure effective security Risk expertise, advice and support is delivered to business managers, Senior Risk Owners, and the Executive Team within DWP
Work closely with Security & Data Protection and other internal and external stakeholdersWhat skills, knowledge and experience will you need?
Knowledge in leading complex risk assessments, interfacing routinely with senior management
The ability to develop complex and innovative information risk management plans under supervision and able to develop complex and innovative information risk management plans either as an individual or leading a team.
Experience of leading corporate threat intelligence processes.
Experience of leading development of corporate Information Security strategies.
Certified in Risk and Information Systems Controls (CRISC), or equivalent risk management qualifications, and or proven knowledge of risk management frameworks – identification, assessment, risk response and mitigation, control monitoring and reporting. (Desirable only)Details. Wages. Perks.
You'll join us in one of our brilliant digital hubs in Birmingham, Blackpool, Leeds, Manchester, Newcastle or Sheffield, whichever is most convenient for you.
We also have all the tools and tech we need to enable our people to work and collaborate flexibly. We work a hybrid model – with some time at home and some time in the hub with the team.
We offer competitive pay of up to £89,392 for the Lead role and up to £75,781 for the Senior role.
You'll be eligible for a brilliant civil service pension with employer contributions worth over 27%.
You'll get a generous leave package starting at 26 days, plus all the usual bank holidays, and the option to take extra days off on flexi leave.
We also have a broad benefits package built around your work-life balance which includes:
Flexible working, flexi hours and flexi days
Hybrid working: some time in a hub with the team, some time at home
Time off volunteering and charitable giving
Bring your authentic self to work with 'I Can Be Me in DWP'
Discounts and savings on shopping, fun days out and more
Interest-free loans to buy a bike or a season ticket, so it's even easier for you to get to work and start making a difference
Sports and social activities
Working in an award-winning environment
Professional development, coaching, mentoring and career progression opportunities