Head Of Security Engineering

Are you interested in joining GDS as our Security Engineering Lead?

The GDS Information Security team is tackling some fascinating challenges in creating a secure developer experience in the public cloud. If you join us, you would lead our cyber Security Engineering capability and profession to build a coherent approach to Security Engineering across our many high-profile digital services.

This is a hands-on role: you would provide expert advice and strategy, but also create infrastructure, automate parts of the developer experience and build in security and privacy guardrails proportional to the risks we face. You'll also work with the GDS engineering community to embed secure coding and infrastructure practices at the team level.

Job description

As the Head of Security Engineering for GDS, you will be responsible for ensuring GDS has effective and appropriate cyber security developed, implemented, operated and maintained across its portfolio services. This is an exciting time in GDS with a number of unique projects under development where you will have the ability to help shape and transform the full life cycle of GDS development and operations from a Security Engineering perspective. You will have the opportunity to be creative and collaborate closely with colleagues across GDS, the Cabinet Office and government to effectively translate GDS and Cabinet Office objectives and cyber risk management into specific security processes enabled by security technologies and services.

Working with the GDS CISO, we expect the Head of Security Engineering to enable and drive a fundamental transformation in our Security Engineering capabilities and maturity as well as working strategically with colleagues across the other security, architecture operations and risk areas.  You will be responsible for providing subject matter expertise in tools, techniques to enable programme teams across GDS to effectively and efficiently deliver their systems in a secure manner and remain secure.  You will stay on top of changes to security, good practice and industry wide trends and ensure that teams can easily and securely use the best products.    

As the Head of Security Engineering You'll:

• ensure that the portfolio of programmes and products are delivered to meet HMG and Cabinet Office security policy & standards, working in collaboration with GDS Programme Directors and product teams.  Establish new and improved standards, processes, tools and capability to achieve this, based on your vision
• work closely with the Engineering Enablement team to embed good security practices and guardrails into the common platforms and tools that we use at GDS, focusing on a usable but secure developer experience
• lead the Cyber Security Engineering capability and profession across GDS to develop and implement a coherent and aligned approach to Security Engineering. Surface the training and support needed by the community
• develop and maintain a Security Engineering process that enables GDS to develop and operate services securely, addressing risks and delivering countermeasures that are aligned with business, technology and threat drivers
• develop Security Engineering strategy and plans based on sound enterprise security architecture practices. Contribute to the roadmap
• develop and maintain Security Engineering artefacts (e.g., models, templates, standards and procedures) that can be used to leverage security capabilities across projects and programmes
• provide expert advice and support on Security Engineering across projects and programmes to help to build more collaborative and constructive relationships with a growing ecosystem of cyber security experts across government and technology suppliers, including relationship and contract management where necessary

Person specification We’re interested in people who:

• have proven experience in Security Engineering, SecOps or DevSecOps demonstrated through your previous roles - you'll be able to advocate for the right approaches and continuously challenge in and out of the team
• have experience of securing cloud technologies.
• demonstrate technical competence in Cyber Security through relevant qualifications and/or practical knowledge
• have the ability to confront issues and challenge assumptions at the highest levels within GDS and with delivery partners, stakeholders and clients in an assertive yet constructive way
• show they can develop procedures, standards and processes that deliver end-to-end, tightly monitored IT environments
• have the ability to set an appropriate security strategy, managing resource allocation to effectively deliver to this 
• are self-motivated and able to manage multiple priorities at the same time, whilst being able to look at the detail where necessary to guide others and provide advice around appropriate methods and tools

Whilst we are not looking for knowledge of specific cyber security frameworks, we will expect an understanding of modern, industry standard security issues and processes, with knowledge of HMG security frameworks being beneficial.

Benefits

The benefits of working at GDS

There are many benefits of working at GDS, including:

• flexible hybrid working with flexi-time and the option to work part-time or condensed hours
• a Civil Service Pension with an average employer contribution of 27%
• 25 days of annual leave, increasing by a day each year up to a maximum of 30 days
• an extra day off for The King’s birthday
• an in-year bonus scheme to recognise high performance
• career progression and coaching, including a training budget for personal development
• paid volunteering leave
• a focus on wellbeing with access to an employee assistance programme
• job satisfaction from making government services easier to use and more inclusive for people across the UK
• advances on pay, including for travel season tickets
• death in service benefits
• cycle to work scheme and facilities
• access to children's holiday play schemes across different locations in central London
• access to an employee discounts scheme
• 10 learning days per year
• volunteering opportunities (5 special leave days per year)
• access to a suite of learning activities through Civil Service learning

GDS offers hybrid working for all employees. This means that everyone does some working from home and also spends some time in their local office. You’ll agree to your hybrid working arrangement with your line manager in line with your preferences and business needs.

Any move to Government Digital Service from another employer will mean you can no longer access childcare vouchers. This includes moves between government departments. You may however be eligible for other government schemes, including Tax Free Childcare.

Things you need to know Selection process details There are 2 stages to the selection process.

• Application
• Video final panel interview

Application stage - CV and two application questions 

As part of your application, you’ll be asked to submit an anonymised CV demonstrating your previous work history. It is essential that your CV meets the skills and experience listed in the person specification above. 

You will also need to answer two application questions based on the person specification and one security question. Please note you will have a up top 300 word limit per question which must be followed.

Failure to submit your CV and complete the application questions may result in your application being unsuccessful.

Video final panel Interview

Deciding on your next career move is a big decision, so it’s important you have the opportunity to meet the members of the GDS community. The final panel interview will determine whether you are suitable for the role, and if the opportunity is right for you. If you do not pass the final panel interview, but have demonstrated an acceptable standard you may be considered for similar roles at a lower grade.

Whilst we value the use of AI technology to enhance our daily work, we also value the personal touch and urge applicants to write responses without the use of AI to emphasise their own unique experiences.

Depending on how many applications we get, there might also be an extra stage before the video interview, for example a phone interview or a technical exercise.

In the Civil Service, we use Success Profiles to evaluate your skills and ability. This gives us the best possible chance of finding the right person for the job, increases performance and improves diversity and inclusivity. We’ll be assessing your technical abilities, skills, experience and behaviours that are relevant to this role.

For this role we’ll be assessing you against the following Civil Service Behaviours:

• Leadership
• Making Effective Decisions
• Seeing the Big Picture
• Communicating and Influencing

We’ll also be assessing your experience and specialist technical skills against the following skills defined in the Digital, Data and Technology Profession Capability Framework for the Principle Infrastructure Operations Engineer role:

• Information Security
• Security Governance, Risk and Compliance Management
• Security Assurance

Recruitment timelines 

To ensure your application is managed in a timely manner it’s essential you are available on the dates indicated below. If you wish to apply, please make a note of the recruitment timelines. 

• Role opens : Friday 08th March 2024
• Role closes : Sunday 24th March 2024
• Shortlisted candidates will receive an invitation for an interview by 27th March
• Final panel interview: 2nd April onwards

Candidates that do not pass the interview but have demonstrated an acceptable standard may be considered for similar roles at a lower grade.

A reserve list will be held for a period of 12 months, from which further appointments can be made.

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, colour, national origin, gender, sexual orientation, age, marital status or disability status.

Feedback will only be provided if you attend an interview or assessment.

Security

Successful candidates must undergo a criminal record check.

Successful candidates must meet the security requirements before they can be appointed. The level of Security needed is security check (opens in a new window).
See our vetting charter (opens in a new window).

People working with government assets must complete baseline personnel security standard (opens in new window) checks.

Nationality requirements

This job is broadly open to the following groups:

• UK nationals
• nationals of the Republic of Ireland
• nationals of Commonwealth countries who have the right to work in the UK
• nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) (opens in a new window)
• nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS)
• individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020
• Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service

Further information on nationality requirements (opens in a new window)

Working for the Civil Service

The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants.
We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window).

The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.

Apply and further information

This vacancy is part of the Great Place to Work for Veterans (opens in a new window) initiative.

The Civil Service welcomes applications from people who have recently left prison or have an unspent conviction. Read more about prison leaver recruitment (opens in new window).

Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.