Defence Digital Cyber Security Risk Manager

As a Cyber Security Risk Assessor within the CySAAS team, you will lead a team providing timely, impartial and consistent assurance, assessment and advisory services across Defence. Senior personnel will rely on your expertise to ensure they have an accurate understanding of through-life cyber security risks, so they can make informed business decisions. You will work with projects that involve complex technical and security challenges, which may include highly sensitive networks, cryptography and next-generation military vehicles and weapons systems.Along the way, you will strengthen links with other cyber security bodies and business functions - from business delivery partners who provide project-based assurance activities, to industry trade bodies and organisations which deliver Information Technology (IT).As an experienced cyber security leader, you will bring to the role a proven ability to communicate at all levels of a diverse organisation. As thought leadership will be a key aspect of the role, you will need to demonstrate a talent for solving complex problems through innovation. You will have the ability to advise on complex risk balance decisions; to explain cyber security policy, governance and technology to non-experts; and to lead a diverse team of skilled cyber security professionals. With you on board, we will develop a culture across UK Defence which values and protects data.ResponsibilitiesResponsibilities:Provision of timely, impartial and consistent assurance, assessment and advisory services across Defence, to ensure that senior leaders have an accurate understanding of through-life cyber risks and can make informed business decisions.Leadership of cyber security assessment personnel. This may include management of Assessors to ensure: Strategic direction for MOD cyber security assurance is on track. Functional mentoring and professional training and development are achieved. Assurance related management information is accurate and up to date. Workloads are balanced efficiently.Ensuring assurance activities are completed in accordance with Government policy, including escalating risks, explained in business terms, to aid the Senior Leaders decision-making process.Strengthening links with internal and external stakeholders in other cyber security bodies and business functions across Defence, including Defence Intelligence, Defensive Cyber Operations, Principal Security Advisors, industry trade bodies and liaising with other Government Authorities as appropriate; building relationships through encouraging CySAAS attendance at appropriate events.Work to develop a pan-Defence culture which values and protects data appropriately. Lead transformation programmes, within your area of responsibility.Taking appropriate action as required in response to issues/events e.g., tiger teaming, deep dives.Strategic Command is going through a significant transformation programme which aims to improve the way the Command conducts its business and delivers for Defence and the nation. As a consequence of this, all posts within Strategic Command Headquarters and in time the wider organisation, are/will be subject to review and potential changes as we continuously improve across the period of the transformation programme. These changes may be minor or could be more substantive and will generate new opportunities. Throughout, the Commands transformation programme is committed to following the MODs framework on managing and supporting people through the change process and places an emphasis on early and open consultation and engagement with the Commands personnel and Trade Unions.This position is advertised at 37 hours per week.