Cyber Assurance Risk Advisor

at  Department for Levelling Up Housing and Communities

JOB SUMMARY

Here at the Department for Levelling Up, Housing and Communities (DLUHC), we work on things that make a real difference to people’s lives.
Whether it’s through the homes we live in, the work of our local councils, or the communities we’re all part of, our work is at the top of the political agenda. We have ambitious and far-reaching outcomes to achieve this year and, if you’re thinking of joining us, there’s never been a more exciting time.
We have over 3,500 staff who are based in 20 offices across the UK.
As a cyber assurance risk advisor for DLUHC you’ll sit within the heart of our internal cyber security team, part of the technology function within the digital directorate, who are responsible for cyber security, core IT digital tools, networks, SAP and IT infrastructure/hosting. You will be part of a team that is growing to meet the needs of the Department as it further embraces cloud technologies and products. Cyber is responsible for the overall cyber security of the Department’s services, applications and suppliers so has a broad remit and a mission to keep us safe from a variety of threats plus help others build and deliver services securely.
We aim to provide high quality digital services using a mix of internal and external teams to deliver evergreen cloud services. Delivering this responsibility comes with a high demand for adoption of new technologies, systems and applications that require security review and scrutiny to ensure the department operates in a safe and secure environment.
The primary responsibility of this cyber role is to review third party suppliers and products, such as SAAS applications, however, will also include occasional involvement in the review of IT systems, services and applications developed or purchased by the department, identifying any security issues, design flaws and making security recommendations in line with industry security best practices and the HMG Security Policy Framework. Supported by our technical teams, architects and engineers you will provide high quality cyber security advice and guidance across all matters relating to proposed digital services, applications and suppliers.

JOB DESCRIPTION

We particularly welcome candidates from an ethnic minority background and other underrepresented groups to apply, as we work to continually improve our ability to represent the places and communities we support through our work.
Find out more about what it’s like to work in a digital, data and technology role at DLUHC including our culture, ways of working, career progression and staff benefits. You can also read the DLUHC Digital blog to learn about the work we’re doing.

As a Cyber Assurance Risk Advisor, you’ll:

• analyse security requirements, taking account of both internal and external guidance, policy and regulations
• assist with developing /promoting information security policies to achieve security outcomes within a defined scope and in line with cross-government policies and the new GovAssure service
• assist with designing and implementing security awareness campaigns
• be part of the assurance process, identifying security threats, vulnerabilities and hazards to the department’s suppliers, systems, services, or processes to inform risk assessments and design of security features
• use your increasing knowledge and expertise in assurance to make decisions on the levels of risk the Department is being exposed to and recommendations of how to remediate these within particular systems, suppliers, applications or services
• support and conduct cyber security risk assessments, cyber security audits and cyber security incident management
• support cyber security operations processes in accordance with organisational policies and standards and business requirements
• assist in managing contracts, suppliers or services related to cyber security
• work with other teams to help them create services that are secure by design
• promote good cyber security practices across the Department and support product teams to ensure their services continue to be secure as they are run and updated to meet new business requirements

NATIONALITY REQUIREMENTS

This job is broadly open to the following groups:

• UK nationals
• nationals of the Republic of Ireland
• nationals of Commonwealth countries who have the right to work in the UK
• nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) (opens in a new window)
• nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS)
• individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020
• Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service

Further information on nationality requirements (opens in a new window)

GROUP 1 DDAT ROLES

DLUHC has implemented the DDaT capability framework for Group 1 roles. Applicants that are successful at the sift stage will be required to complete a capability assessment at interview.
DLUHC will honour completed capability assessments for this role from other Government Departments for existing Civil Servants. Please provide a copy of your capability assessment to the Hiring Manager when applying. If you have any queries on pay, please contact the Hiring Manager.
Salary is determined by performance at interview, within the range advertised. Each experience or technical skill is assessed between 1-3, representing working towards, at or above the job level requirements. You are awarded a proficiency level accordingly, and you will be given opportunities at least once a year to re assess your capability and progress through the pay scale within your grade. An additional digital allowance may be payable depending on level of assessed capability.

There may be opportunities for candidates to work flexibly depending on the business needs. This will be discussed with the vacancy manager on a case-by-case basis if you are successful for the role.

• Please note: The Darlington Economic Campus is a pioneering new cross-government hub which will bring together people across departments and public organisations to play an active role in the most important economic issues of the day. The work of the Campus will make a real difference to people both across the UK and internationally. There will be substantial career opportunities and exciting prospects - a career at the Campus means you will be working at the heart of Government, with access to the benefits and fantastic opportunities offered by the civil service. This role is based at DLUHC and we will be joined on the campus by:
• HM Treasury
• Department for International Trade
• Department for Business, Energy and Industrial Strategy
• Office for National Statistics
• Department for Educatio