Principal Cyber Security Risk Manager

Join a team at the heart of the global economy! The Department for Business and Trade ("DBT") and Inspire People are partnering together to bring you an exciting opportunity for a Principal Cyber Security Risk Manager to identify, understand and mitigate cyber related risks. Salary between £59,634 to £78,981 plus excellent Civil Service benefits including 28% pension contribution. Salary is dependent on location and technical skills as assessed at interview. Flexible, hybrid working from London, Cardiff, Darlington, Belfast, Birmingham, Salford and Edinburgh.

The Department for Business and Trade (DBT) has a clear mission - to grow the economy. Their role is to help businesses invest, grow and export to create jobs and opportunities right across the country.

The Digital, Data and Technology (DDaT) directorate develops and operates tools and services to support this mission.

DBT Cyber work to improve the security of the systems and processes that affect the operation of the Department. The Governance Risk and Compliance (GRC) team were established to create a safer Cyber landscape to deliver DBT's vision and do this through establishing good practice in new information projects, reviewing compliance and setting standards for the department.

About the role

Main responsibilities

• You will be a risk assurance professional who understands technology and can:
• Independently lead and undertake Cyber risk identification and management activities, making use of established security and risk management governance structures and where necessary developing new ones
• Undertake Cyber Security risk assessments as part of the IRAP (Information Risk Assurance Process), conduct tailored threat assessments and other risk management activities, to ensure activities are consistent with applicable regulations, legislation, good practice, and Government guidance
• Mentor and develop junior team members in Risk assessment
• Be the point of contact for the CTO and SIRO about Cyber Security Risk
• Provide tailored advice to a range of stakeholders on how to mitigate identified risks by proportionately applying security good practice, ensuring credible advice that is aligned to published guidance and standards and drawing on the breadth of expert support available
• Supporting Cyber compliance and audit activities
• Work across the Cyber team and other professions to provide practical expert advice that enables risk-based decision making at all levels within the department

Skills and experience

It is essential that you have:

• A professional information security certification - CISSP or similar
• Experience managing a team and managing contracts
• Experience leading risk management and assurance activities in complex environments - balancing service delivery with security assurance
• Working knowledge of cloud technology architecture
• Solid knowledge of information security frameworks, such ISO 27001, and applying those frameworks in assessing risk
• Effective verbal and written communication skills up to and including C-Suite

It is desirable that you have:

• Experience working within large, complex organisations
• Experience of executing cases and managing outsourced assurance teams

Benefits

• learning and development tailored to your role
• a flexible, hybrid working environment with options like condensed hours
• a culture encouraging inclusion and diversity
• a Civil Service pension with an average employer contribution of 27%
• annual leave starting at 25 days rising to 30 days with service
• three paid volunteering days a year
• an employee benefits programme including cycle to work

Other Information

This role requires SC Clearance. DBT's requirement for SC clearance is to have been present in the UK for at least 3 of the last 5 years. Failure to meet this requirement will result in your application being rejected and your offer will be withdrawn.

If you're an experienced Cyber Security Risk professional, please apply to the role today or contact Alison Whitehead for a confidential conversation.