The Government People Group exists to work with departments, professions, and functions to build a modern, effective Civil Service.
We support the government workforce with the right skills and capability. We are working with leaders to get the right people in the right jobs, with the right skills and continuous learning to excel in their roles.
We provide leadership, and in turn, create leaders with exceptional line management capability across departments, influencing partners in the wider public sector and beyond. This involves getting our retention and reward strategy right, to nurture specific skills, and create pride and resilience in our workforce.
Our role is also to provide system leadership across central government in pulling together back office services. Collectively, we help support the Cabinet Office’s priority to drive efficiencies, and reforms that will make government work better, to ultimately provide a better service to the public.
GPG Platforms, Data and Interoperability (PD&I) Directorate is at the forefront of providing first-class platforms and services for over 400,000 civil servants, covering recruitment, data analysis, skills, and learning solutions. As a crucial part of the team, you'll be reporting to the Head of Architecture Services, contributing to the development and innovation of shared service platforms within the government.
We are seeking experienced and highly skilled individuals to join our dynamic team as Cyber and Information Security Leads. The successful candidate(s) will play a pivotal role in ensuring the safeguarding of our critical information and data assets. This is a unique opportunity for a professional with a holistic approach to data protection and security, coupled with strong stakeholder management skills. This role encompasses information assurance, designing and implementing comprehensive security strategies, policies, and procedures to protect our programmes, projects, and live digital services from Cyber and security threats.
Responsibilities will include:
Strategy: Develop and maintain Cyber and Information Security strategy, ensuring alignment with business objectives and industry best practices.
Security Controls: Lead the implementation and management of Cyber and Information Security controls across different areas, including programmes, projects, and live digital services.
Security Assessments: Conduct regular security assessments and audits to identify vulnerabilities and recommend appropriate countermeasures
Governance: Provide input to Governance Boards, manage challenging stakeholders, and lead on contract deliverables, acting as a point of escalation for issues.
Relationships: Build and maintain strong relationships with customers, monitor client contracts' progress, and evaluate and address information assurance risks for customers.
Supplier Management: Build, manage, and oversee third-party supplier management relationships.
Guidance: Provide expert support and guidance to internal teams in addressing security issues while ensuring compliance with applicable security standards and regulations.
Other responsibilities include:
- Lead the development and implementation of robust cybersecurity measures for ongoing and upcoming projects and live services.
- Conduct cyber risk assessments and provide security guidance
- Promote and implement secure-by-design principles
- Support GPG as part of GovAssure activities
- Monitor and respond to security incidents
- Manage relationships across government, suppliers, and vendors.