3rd Party Assurance Specialist x2

Join Police Digital Service as 3rd Party Assurance Specialist - Salary starting at GBP65,000

The 3rd Party Assurance Specialist is a key member of the Police Digital Service Cyber Service Team, providing risk and supplier assurance services and support across Policing.

About Police Digital Service

To protect people from harm in our rapidly changing world, police services must not only keep up with technology and business changes but develop capabilities and ways of working that will enable them to adapt to and deal with the complexity of modern criminality.

Police Digital Service strives to be the go-to partner for technology developments and programmes across UK policing. Our team provides technical advice and delivers services to help policing and law enforcement organisations across the UK prioritise and focus on technology efforts.

Key Responsibilities

• Advise and guide Forces, PDS and suppliers providing services to policing on effective risk management and compliance
• Identify supply chain risks and advise on appropriate controls and mitigations
• Support the resolution of major compliance and risk issues identified in PDS, UK Forces and National Systems
• Advise and recommend where risks should not be tolerated and provide a point of escalation
• Review, assess and assure cyber security documentation
• Advise on cyber risk management matters relating to the supply chain and managed service providers
• Contribute to the development of the PDS Cyber Services (CS) Risk and Compliance monitoring plan
• Monitor trends that could influence PDS CS risk and compliance supply chain management and planning
• Work with the Cyber Policies and Standards team to contribute to information security policies and standards
• Forge strong relationships with key PDS stakeholders, and forces
• Document, implement and execute processes and procedures for monitoring and management of compliance and risks
• Deliver the 'Police Assured Secure Facilities' (PASF) service and provide reporting and metrics
• Work with Information Security and Risk (IS&R) training and education providers to uplift the skills of the UK Policing IS&R community

What you need to succeed in the role

Skills & Knowledge

• Degree in IT information management and risk or related disciplines or significant relevant experience
• Industry recognised certification in Information Security and/or Risk Management or equivalent
• Knowledge and experience in one or more of the following areas: supply chain management, security controls and assessments, privacy and regulatory risks, security frameworks, physical security management
• Ability to undertake qualitative and quantitative risk analysis
• Good IT, analytical, literacy and numeracy skills
• Keen attention to detail
• Excellent understanding of procedural & technical compliance monitoring capabilities
• Knowledge of supplier assurance frameworks and solutions
• Demonstrable knowledge of the latest IT thinking and risk modelling methods
• Good understanding of privacy requirements (including GDPR and DPA 2018)
• Good working knowledge of Digital Policing Strategy and understanding of current technologies and cyber challenges

Experience

• 3+ years of IT/Information security and risk experience in large organisations with complex security and compliance requirements
• Proven experience of conducting risk reviews and audits of suppliers including cloud service providers
• Strong knowledge of the NIST Cyber Security Framework, mapping and translating NIST Controls to other frameworks such as ISO27001 and CIS Top 20 controls
• Track record of developing strong working relationships with numerous stakeholders and managing expectations
• Experience delivering risk and issue remediation in large complex organisations

Why Join us?

• Balance is important and we want you to take time off to recharge - we offer 28 days' annual leave plus bank holidays, rising to 30 days after 5 years of service. Holiday Purchase also available
• Flexible working hours - We trust you to do your job and we appreciate that life doesn't always fit around a 9 to 5 workday. We operate core hours of 10 to 4, Monday to Friday (37hr week)
• We care about your well-being - we have an EAP that offers not just welfare benefits but also retail discounts
• Plan for the future - we offer an excellent pension scheme and life assurance cover
• Put your mind at rest regarding your health - offering remote GP, mental health and physiotherapy appointments via video consultation
• Family - Enhanced maternity and paternity pay along with a flexible return to work
• Community - one paid day off per year for volunteering

You can find out more here:Benefits - Police Digital Service (pds.police.uk)

Diversity, equity and inclusion

We are committed to equal opportunity for all and will not discriminate on any grounds. We encourage applications from people from the widest possible span of experience. We particularly welcome applications from Black, Asian and Minority Ethnic (BAME) candidates and people with disabilities.

Statement

We acknowledge that statistically women are less likely to apply for a job unless they meet all the criteria. We would like to encourage you to apply if you feel you might be the right person for this role. If you have any questions regarding the role itself, please email us at

Please also note that flexible working arrangement such as part time hours, compressed hours or job share would be considered for this role.

Working Arrangements

This is a remote role.

We may close the advert early if we receive a high volume of applications.