Senior Cyber Security Service Manager

at  Department for Work and Pensions

JOB SUMMARY

Are you an experienced Service Manager with an interest in Cyber Security?
Does securing critical government services sound like a worthy challenge?
As a Senior Service Manager working in Digital Security, you will support the Adaptive Cybersecurity Ecosystem (ACE).
ACE aims to improve DWP’s ability to Identify, Protect, Detect, Respond and Recover from security threats by combining various cybersecurity capabilities, processes, and people into a single function.
You will lead in maturing the Security focused ‘Secure Place’ build within ServiceNow platform across DWP Digital.

The role includes:

• Leading SecurePlace related service management activities for one of or multiple ServiceNow security modules; Vulnerability Response (VR), Security Incident Response (SIR) & Integrated Risk Management (IRM).
• Contribution to implementation of the strategy for creation and delivery of consistent, efficient, and effective user centred services and support.
• Upholding the SecurePlace strategy of being the hub of the DWP Cyber Security Ecosystem which enables automated and orchestrated workflows between various security functions.
• Ensuring platform maturity requests align with the overarching Digital Security strategy.
• Working with multiple Security functional teams and Security product owner teams to support an efficient route to building out and maturing the SecurePlace platform delivery and Service Management for Security tools.
• Supporting and improving the build of an easy, efficient working relationship across teams, stakeholders, and user groups.
• Ensuring DWP standards for Software Development Lifecycle (SDLC) are adhered to.
• Leading workshops to discover user requirements and help to develop end-to-end workflows that enable the implementation of security use cases.
• Working with the SecurePlace product team to build and maintain a healthy product roadmap for each of the ServiceNow security modules.

This is a technically focussed ServiceNow based Service Management role and hands-on experience with expert knowledge of ServiceNow platform is vital. A solid understanding of Cyber Security principles and practices is also desired.
Please note this role requires you to pass Security Check clearance. For further information, please see ‘Selection process details’.

JOB DESCRIPTION

Support the build and maturity of the SecurePlace platform/service and other Digital Security tools and functions that exist within the Cyber Security Ecosystem, utilised by our customer base.
Review, validate and approve platform maturity requests which align with the overarching Digital Security strategy. Working with stakeholders where requests do not align.
Manage the SDLC relationship/activities with the DWP Place Product team. Organise, run, and track outputs from the related Agile sprint ceremonies to ensure a consistent approach to delivery is achieved.
Support delivery of the Digital Security Adaptive Security Programme control maturity by building out the CIS control workflow, working closely with Security Risk & Compliance colleagues.
Lead on allocated activities to support delivery, to deadlines, on the lower level working plans that achieve security outcomes including Cyber Security Use Cases.
Facilitate and lead meetings, workshops, and focus groups to effectively understand business problems and user needs within large complex products or services.
Lead on the identification and recommendation of service improvements. Including the utilisation of Security Orchestration and Automation Response (SOAR) solutions.
Build own knowledge of current security tools, frameworks, and methods to contribute to increasing maturity of the Secure Place platform.
Lead, coach, or mentor others as required.
Assist with product overviews, show & tells, roadmap reviews, and other sessions that create a robust foundation for the platform to exist and mature.

NATIONALITY REQUIREMENTS

This job is broadly open to the following groups:

• UK nationals
• nationals of the Republic of Ireland
• nationals of Commonwealth countries who have the right to work in the UK
• nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) (opens in a new window)
• nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS)
• individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020
• Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service

Further information on nationality requirements (opens in a new window)

The role includes:

• Leading SecurePlace related service management activities for one of or multiple ServiceNow security modules; Vulnerability Response (VR), Security Incident Response (SIR) & Integrated Risk Management (IRM).
• Contribution to implementation of the strategy for creation and delivery of consistent, efficient, and effective user centred services and support.
• Upholding the SecurePlace strategy of being the hub of the DWP Cyber Security Ecosystem which enables automated and orchestrated workflows between various security functions.
• Ensuring platform maturity requests align with the overarching Digital Security strategy.
• Working with multiple Security functional teams and Security product owner teams to support an efficient route to building out and maturing the SecurePlace platform delivery and Service Management for Security tools.
• Supporting and improving the build of an easy, efficient working relationship across teams, stakeholders, and user groups.
• Ensuring DWP standards for Software Development Lifecycle (SDLC) are adhered to.
• Leading workshops to discover user requirements and help to develop end-to-end workflows that enable the implementation of security use cases.
• Working with the SecurePlace product team to build and maintain a healthy product roadmap for each of the ServiceNow security modules