Cyber Assurance Manager ***Closing date extended 5th May 2024 at 23:55***
National Crime Agency
Apply before 11:55 pm on Sunday 5th May 2024
Details
Reference number
Salary
Job grade
Contract type
Business area
Type of role
Internal Audit
Security
Other
Working pattern
Number of jobs available
Contents
Location
About the job
Job summary
About Integrated Protective Security
The Integrated Protective Security Command (IPS) is responsible for securing the Agency to protect the public.
IPS safeguards the NCA from the full range of security threats that target the Agency, our officers and our assets, to enable the organisation to achieve its operational objectives, both domestically and overseas, with flexibility, agility and integrity.
IPS officers provide specialist security services to the Agency 24 hours a day, 7 days a week, 365 days a year, to mitigate security risks.
As an officer within the command you will be responsible for implementing bespoke, efficient and proportionate protective security measures that adapt and respond to evolving security threats. Using an intelligence led, risk-based approach you will operate within the three pillars of security (cyber,personnel and physical) to defend the entire NCA by preventing, responding to and managing security incidents wherever they arise.
IPS is a diverse command, providing specialist services across the following disciplines:
- Business continuity and disaster recovery
- Counter corruption
- Cyber defence
- Information assurance
- International security
- Operational security
- Security education
- Sensitive Intelligence Management Unit
- Supply chain security
- Technical security
- Physical security
- Professional standards
- Security vetting
IPS reports to the Director General Operations, with a dedicated Deputy Director and senior leadership team aligned to each of the security pillars. We are responsible for people, processes, technology and standards, operating across the NCA to support operational and non-operational teams, along with the Command Team, to ensure the Agency remains resilient and retains public confidence in a volatile and complex threat landscape.
We aim to hire for talent and train for skill, providing world-class training and career development opportunities to all of our people, to deliver a tireless public service.
Job description
We are currently looking to recruit two Cyber Assurance Managers to join our Cyber Security Team within the Integrated Protective Security command.
The right candidate can be based in London or Warrington.
What will the successful Candidate be doing?
The Cyber Security Team leads the strategic response to cyber risks, cyber security function, oversees audit, building internal and external alliances with diverse stakeholders to deliver the NCA’s strategic objectives.
As a Manager of Information Assurance, you will be the go-to-person for all business areas across the Agency. The work you do, will directly affect the security of the NCA’s most valuable applications and data, ensuring the Agency’s operations, and National Security are protected. You will have direct contact with stakeholders at all grades, both in the technical and operational areas. You will work within a small team of Information Assurance professionals made up of Crown Servants and trusted private sector partners.
**To be considered, you will need to successfully complete SC Enhanced clearance before commencing the role and achieve DV clearance within the first 12 months in post.**
Person specification
Key Responsibilities (responsibilities will include, but not be limited to:
- The day-to-day management of personnel and tasking within the Cyber Assurance space, ensuring the confidentiality, integrity and availability of the NCA’s wide-ranging IT systems.
- Manage, coach and develop staff, including managing issues relating to the performance and conduct of officers in line with NCA values.
- Provide advice and guidance in Information Assurance matters to senior business risk stakeholders including Information Asset Owners (IAOs).
- Work with the IAO and Information Custodians (ICs) to ensure that each IAO knows their IA responsibilities and their data remains secure.
- Ensuring the security of the NCA’s IT systems through the completion of security audits and risk assessments to ensure that IT security is implemented in accordance with Government Security Classification as well as relevant laws, regulations and standards.
- Provide expertise, guidance and advice in IT Security related matters, including maintaining up to date knowledge of network, application and communications security solutions, as well as emerging technologies.
- Manage the Agency’s IA function, following frameworks that assist in maintaining acceptable level of IT Security risk to the NCA.
- Collaboration with other Security Teams (Cyber operational, physical and personnel) and adjacent commands to support the overall aim of lowing risk to data loss.
- Support of senior management in the delivery of an effective and efficient departmental service, deputising where appropriate.
- Provide formal technical security assurance, reviewing new architecture and system designs, providing advice on the security of NCA’s information and information processing facilities, including acting as the internal quality review for work conducted within projects.
- Provide support, guidance and expertise in relation to Incident Management. Giving direction on vulnerability identification and risk mitigation.
- Make recommendations and provide policy guidance to senior management on IT security issues including leading the development of IT Security policy and procedures.
- Develop and build internal and external partnerships working collaboratively to foster good relations, including working with other government departments. Attend working groups, government committees and meetings.
Qualifications
Recognised higher education in an IT related area, and/or, certifications, from a recognised body, in digital security eg. GIAC, ISC2, BCS, ISACA, CompTIA etc.
and
Experience of adopting security standards using one or more of the following frameworks: HMG Information Assurance Standards (IAS), CIS v8, HMG Good Practice Guides (GPG’s), Security Policy Framework (SPF), ISF Standard of Good Practice, NIST, ISO 27001
Please ensure the dates of any accreditations you are relying on, are entered on to the CV.
Should you progress to the assessment stage of the process, you will be required to provide a copy of the original certificate.
Failure to provide evidence at interview may result in your application not progressing to the next stage.
Behaviours
We'll assess you against these behaviours during the selection process:
- Making Effective Decisions
- Communicating and Influencing
Technical skills
We'll assess you against these technical skills during the selection process:
- Experience of assessing security risk.
- Experience of producing reports for senior management.
- Experience of managing stakeholders within meetings, both face-to-face and remotely.
- Experience of task prioritisation and delegation.
Benefits
All officers in the NCA are members of the UK Civil Service. You will be eligible for:
- Civil Service pension scheme
- 26 days annual leave rising to 31 on completion of 5 years continuous service
- If qualifying criteria is met new joiners to the NCA from UK Police Forces or UKIC will have service with those employers taken into account for continuous service purposes for Annual Leave entitlement only, this will be up to a maximum of 31 days leave (including 1 privilege day).
- Training and development opportunities
- Special leave
- Flexible working and family friendly policies
- Cycle to work scheme
- Blue Light scheme
For further details on benefits please visit https://www.nationalcrimeagency.gov.uk/careers/benefits-and-support
Things you need to know
Selection process details
If you wish to apply for this vacancy, you must submit your application by 23:55 on Sunday 28th April 2024.
Sift Process
You will be asked to complete a CV as part of the application process Your CV should set out your career history including training and qualifications, with key responsibilities and achievements. Please ensure that each entry of your career history also has a few sentences outlining a description and the key elements of that role, and that you provide reasons for any gaps within the last two years. Please ensure the dates of any accreditations you are relying on are entered onto the CV. Experience criteria can also be assessed from CV.
- CV - Recognised higher education in an IT related area, and/or, certifications, from a recognised body, in digital security eg. GIAC, ISC2, BCS, ISACA, CompTIA etc.
and
Experience of adopting security standards using one or more of the following frameworks: HMG Information Assurance Standards (IAS), CIS v8, HMG Good Practice Guides (GPG’s), Security Policy Framework (SPF), ISF Standard of Good Practice, NIST, ISO 27001
- 4x Technical skills via a 250 Statement of Suitability per criteria, as listed above (Technical/Experience 1, 2, 3, and 4).
For further application guidance please visit https://www.nationalcrimeagency.gov.uk/careers/applying-and-onboarding
Once submitted your application will be acknowledged by the Government Recruitment Service.
Please note depending on the volume of applications a Longlist at sift may be conducted on following criteria:
- Experience of assessing security risk.
Candidates must pass this criteria for their application to be progressed.
A panel will then assess your application to select those demonstrating the best fit for the role by considering the evidence you have provided against the criteria set out in the Entry Criteria section.
Failure to address any or all of these may affect your application.
Sift results are expected to be released w/c Monday 16th May 2024.
Interview Details
You will then be asked to attend an interview in order to have a more in-depth discussion of your previous experience and professional competence.
At interview you will be assessed against Behaviours and Technical Skills.
Interviews will take place throughout June - locations to be confirmed. Please be advised that the type of interview (eg. virtual/face-to-face) may be subject to change and successful candidates will be notified of this prior to attending. However the interview is conducted, the interview criteria will remain as detailed within this advert.
The above sift and interview dates are an indicative timeline.
Should you be successful at sift but cannot attend on the interview date(s) listed the recruitment team cannot guarantee an alternative date. Please contact the recruitment team.
Full details of the assessment process will be made available to shortlisted candidates.
Please ensure that all examples provided in your application are taken directly from your own experience and that you describe the examples in your own words. Any instances of plagiarism including copying of examples/answers from internet sources will result in a withdrawal of your application. Further action, including disciplinary action, may be considered in such cases involving internal candidates. Providing false or misleading information would be contrary to the core values of honesty and integrity expected of all Civil Servants.
Interview Outcome
Candidates will be alerted of the outcome of their interview via their CS Jobs Portal. We will be retaining a candidate pool of successful applicants to draw from as vacancies arise for up to 12 months.
If your application is successful and we are unable to offer you a post immediately, you will be invited to join our reserve list. If over the next 12 months we are able to offer you a position, we will contact you as soon as possible.
Once we make you an offer you will then go through our vetting and pre-employment checks processes.
All Appointments will be made in location merit order.
Multi-Location
Where more than one location is advertised, candidates will be appointed in merit order for each location. You will be asked to state your location preference on your application.
Please be aware that you can be posted to any location that you put in your preferences. If you would only like to be posted to one location, please confirm one location only. If you are posted to a location that you have requested and you do not accept that location, you may not be offered another role.
Please note, only advertised location can be offered. Notes populated in a free text box will not be taken into consideration.
If you are not found appointable at the advertised grade you may be offered the lower grade role if you are considered to meet the skills, experience and behaviours for the lower level. The benchmark for appointing to the lower grade is set at the start of each campaign. All offers will be made in merit.
If you are found appointable at the higher grade but there are no positions available you may be offered an appointment at the lower grade.
Hybrid Working
Here at the NCA we have a hybrid working arrangement in place enabling officers to work a proportion of their role remotely. Eligibility and the degree of home working will vary depending on the requirements of the role. Further details can be discussed at offer stage.
Reasonable Adjustment
We are committed to ensuring our recruitment process is inclusive and accessible to all. As part of our application process you will be prompted to provide details of any reasonable adjustment to our recruitment process that you may need. If you have a disability or long-term condition (a physical or mental impairment that has a substantial and long term effect on your ability to carry out normal day-to-day activities, we have a duty to make reasonable changes to our processes.
If you need a change to be made so that you can make your application, you should: Contact Government Recruitment Service via ncarecruitment.grs@cabinetoffice.gov.uk as soon as possible before the closing date to discuss your needs. Complete the ‘Assistance required’ section in the ‘Additional requirements’ page of your application form to tell us what changes or help you might need further on in the recruitment process. For instance, you may need wheelchair access at interview, or if you’re deaf, a Language Service Professional.
Inclusion and Accessibility
We are proud to be an inclusive, equal opportunities employer. As a Disability Confident Leader we are committed to ensuring that all candidates are treated fairly throughout the recruitment process. For details of the available group please visit https://www.nationalcrimeagency.gov.uk/careers/benefits-and-support
In order to monitor the effectiveness of the National Crime Agency’s Diversity & Inclusion strategy, the NCA require certain personal details about you on submission of your application. Please note that this will be treated in confidence and will not impact your application. You will be asked to complete an E-consent survey asking for permission to share this data with the NCA to be used for statistical/monitoring purposes only, refusal of consent to share the information will not impact your application.
If you are experiencing accessibility problems with any attachments on this advert, please contact ncarecruitment.grs@cabinetoffice.gov.uk
Additional Information
- The NCA is a 24/7 organisation, and working patterns must support business requirements. Some roles may require you to respond at short notice or outside of core hours.
- Individuals will be required to undertake and pass a substance misuse test as part of pre-employment checks.
- Successful candidates may be required to undertake a medical. If required, the medical will take place in either London or Warrington. Unfortunately, travel costs will not be reimbursed.
- If you are an internal candidate who has passed interview but is undergoing an internal investigation or have a written warning in place preventing a post move you may not be able to be posted until this investigation is concluded or restriction lifted. You will remain on the reserve list for a max of 12 months.
VETTING REQUIREMENTS SC
All security clearances require you to provide evidence of your UK footprint where you have been physically present in the UK.
The requirement for SC clearance is to have been present in the UK for at least 3 of the last 5 years.
Failure to meet the residency requirements will result in your security clearance application being rejected.
If you require SC clearance you will need to provide evidence of the below requirements.
Checks will be made against:
- Departmental or company records (personnel files, staff reports, sick leave reports and security records)
- UK criminal records covering both spent and unspent criminal records
- Your credit and financial history with a credit reference agency
- Security Services records
VETTING REQUIREMENTS - DV
All security clearances require you to provide evidence of your UK footprint where you have been physically present in the UK.
The requirement for DV is to have been present in the UK for at least 7 of the last 10 years.
Failure to meet the residency requirements will result in your security clearance application being rejected.
If you require DV clearance you will need to provide evidence of the below requirements.
Checks will be made against:
- successful completion of the BPSS
- UK criminal record and identity checks
- credit reference checks
- relevant personnel and medical checks (if required)
For further information on National Security Vetting please visit the following page https://www.gov.uk/government/publications/demystifying-vetting
We encourage all candidates to visit the NCA careers page for further information please visit https://www.nationalcrimeagency.gov.uk/careers
If you have any specific queries about the role that are not covered by the candidate pack, please contact:
ncarecruitment.grs@cabinetoffice.gov.uk
Feedback will only be provided if you attend an interview or assessment.
Security
Medical
Nationality requirements
Working for the Civil Service
We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window).
Apply and further information
Contact point for applicants
Job contact :
- Name : NCA Recruitment Team - GRS
- Email : ncarecruitment.grs@cabinetoffice.gov.uk
Recruitment team
- Email : ncarecruitment.grs@cabinetoffice.gov.uk
Further information
If you are not satisfied with the response you receive from the Department, you can contact the Civil Service Commission: https://civilservicecommission.independent.gov.uk/recruitment/recruitment-complaints/
