Your role is integral to the Information Management & Security (IMS) Function at DVSA to support the presentation of associated risk at all levels and across different scopes. You will work with different stakeholders across Digital and Technology Teams, Service Teams, and other specialisms such as Commercial colleagues to pull together a full risk picture.
You will prepare a risk picture for different senior leaders, Senior Information Risk Owner, Directors and the Audit and Risk Committee. The risks will cover wide areas including data protection, cyber security, data management, digital continuity and physical security risks from across the DVSA business. This will ensure that risks are known, assessed against Agency appetite, and managed in a timely manner, giving opportunity for mitigation as well as acceptance.
You will also manage compliance with HMG security standards and maturity frameworks and report on these within DVSA and to wider Government.
You will work in a busy and varied team where risk is constantly changing and requires updating and managing.
There’s never been a better time to join the DVSA.
Our Digital-first vision is supported by a clear strategy which allows our staff to develop and grow.
Click to find out more the award-winning services we work on and what’s on offer for you, helping drive your career forward.
If you want to find out more about this role, get tips on the application or ask the hiring manager (Graham Watts - Information Audit and Risk Manager) any questions, join us for a virtual information session on 16th April at 17:30.Click here to register.
Check out our latest blog from our Information Audit and Risk Manager, Graham Watts here.
You will:
- Manage the Information Management and Security and Senior Information Risk (SIRO) registers co-ordinating the risk management amongst the relevant stakeholders to ensure that risks are appropriately managed within appetite and are distributed as part of SIRO briefings, Audit and Risk Committee meetings and to other governance boards as appropriate.
- Ensure that risks are identified and raised through data protection impact assessment and through other routes and are fed into the wider Agency risk picture.
- Provide input and approve SIRO risk acceptance supporting future changes in the IT infrastructure in a timely manner.
- Document risks of any non-compliance against government standards and maturity models, including identifying actions required to address any weaknesses and put together plans for improvement.
Additional Information
This role can be based in Bristol, Swansea, Nottingham, Newcastle, Chadderton or Garrett’s Green, your presence at one of these locations will form part of the working arrangements agreed with you. We operate a hybrid working model giving you greater flexibility about where and when you work. Our expectation is that you will spend a minimum 60% of your time at your base location. Visits to other DVSA sites or work locations count towards this.