Vehicle Cyber Security Lead Auditor

Vehicle Certification Agency

Apply before 11:55 pm on Sunday 2nd February 2025

 

Details

Reference number

383032

Salary

£58,198 - £64,321
The base pay is £44,198 - £50,321. In addition to this the role includes a Recruitment Retention Allowance of up to £14,000. which will bring the minimum base salary up to £58,198

Job grade

Senior Executive Officer

Contract type

Permanent

Business area

VCA - Bristol Operations

Type of role

Engineering
Operational Delivery
Quality

Working pattern

Flexible working, Full-time

Number of jobs available

1

Contents

Bristol, Nuneaton

Job summary

Are you skilled in conducting cyber security risk assessments and auditing management systems?

Do you have experience in security testing tools, penetration testing and vulnerability assessments?

Have you got the latest knowledge in automotive cyber security and software updating standards?

Can you lead on the audit and assessment to ensure vehicles manufacturers are producing secure and up to date vehicles?

We’re looking for a Vehicle Cyber Security Lead Auditor to join our team. This is an exciting time for the VCA, and a great opportunity to be getting involved in our mission to make our roads secure.

About Us

Our work is focused on improving vehicle safety and environmental protection by providing robust testing and certification to national and internationally recognised standards. We are a part of the Department of Transport as the designated UK Vehicle Type Approval Authority. With more than 40 years’ experience, we have become one of the largest and well-respected approval bodies around. This position has been built on a reputation for technical expertise and quality, which is at the heart of everything we do, and what you could be a part of.  

Job description

The Vehicle Cyber Security Lead Auditor plays an important role in ensuring the cyber security and software updating compliance of vehicles seeking type approval. This is a technically focused role that is expected to use your knowledge and experience in this domain to lead on cyber security and software updating management systems audits and the assessment of vehicles. You will lead the audit team and work with vehicle manufacturers to audit their processes and assess the claims made about their systems.

As a technical lead in Cyber Security and Software Updating, you will be expected to have a strong and specific background in cyber security, with demonstrable expertise and practical knowledge in the field. You will exhibit an ability to make well-informed and critical decisions when determining the compliance for the audits and assessments you are leading. This will involve you overseeing the technical activities of those involved in any audit you are leading, to ensure the highest standards are maintained through the type approval process.

We are committed to ensuring you are familiar with the latest advances and information to conduct your role, by supporting your professional development with training and networking with world leading experts. You will have chance to travel in the UK and overseas and will benefit from flexible working and policies to obtain a work life balance. To account for your breadth of knowledge and skill in this field of work, in addition to a competitive salary, you will also be awarded our Technical Specialist Allowance of up to £14000.

Your duties will include, but are not limited to:

  • Lead on the assessment of vehicle manufacturers cyber security and software update submissions as part of the Type Approval process to ensure compliance with regulations.
  • Audit management systems to evaluate manufacturer claims of effective processes.
  • Attend and observe vehicle testing, documenting the results through detailed records that support the evaluation process.
  • Determine compliance from the outcome of management system audits and vehicle assessments.
  • Oversee the work of engineers involved in type approval activities to ensure the highest standards are maintained through the type approval process.
  • Collaborate with technical lead in the Type Approval Authority by using experience and knowledge to support development of technical interpretations and broader policy developments.
  • Act as a mentor and guide colleagues in the realm of cyber security and software updating, sharing your practical insights and knowledge to foster skill development and growth in the team.

For further information, please see the attached Role Profile.

Person specification

To apply for our position, you will need:

  • Experience of conducting cyber security risk assessments and management system audits.
  • Experience of security testing tools, penetration testing, and vulnerability assessment.

Additional Information

This role is suitable for hybrid working, and therefore a combination of workplace and home-based working can be accommodated subject to business requirements. Hybrid working is a non-contractual arrangement where employees have the flexibility to work remotely combined with a minimum of 60% of their working time a month at either their principal workplace (one of the locations cited in the advert) or, when required for business reasons, visiting stakeholders and colleagues, or carrying out detached duty in another VCA workplace. There may be occasions where you are required to attend above the minimum expectation. 

If you have questions regarding how hybrid working is practiced within the business area, or any reasonable adjustments or flexible working arrangements you may currently have or need in place if successful in your application, please contact the Vacancy Holder (see advert for contact details).

Technical Specialist Allowance

In addition to your basic salary, this role attracts a non-pensionable £14,000 annual allowance in recognition of the requirement for professional engineering and/or relevant professional occupational experience.

Licences

Full UK Drivers Licence

Qualifications

Degree in Information Security, Computer Science, Information Technology or Electronic Engineering

Behaviours

We'll assess you against these behaviours during the selection process:

  • Making Effective Decisions

Technical skills

We'll assess you against these technical skills during the selection process:

  • Government Science and Engineering Framework - Building and Applying Knowledge (Applying Knowledge)
  • Government Science and Engineering Framework - Building and Applying Knowledge (Developing / Maintaining Expertise)
  • Government Science and Engineering Framework -Technical Oversight and Management (Overseeing Technical Work)
  • Government Science and Engineering Framework - Developing science and engineering capability (Mentoring)

The Vehicle Certification Agency is the designated UK Vehicle Type Approval Authority. We have over 30 years’ experience supporting industry by providing internationally recognised testing and certification for vehicles, their systems and components.

If you would like to read more about VCA and the benefits of working for us, visit our Careers website!

Selection process details

This vacancy is using Success Profiles (opens in a new window), and will assess your Behaviours, Experience and Technical skills.

How to Apply 

To apply you should provide a CV and Personal Statement. Further details around what this will entail are listed on the application form. 

We will assess the following experience indicators from your CV & Personal Statement so you should tailor both to clearly explain how you meet them.  

  • Conducting cyber security risk assessments and management system audits.
  • Security testing tools, penetration testing, and vulnerability assessment.

Your Personal Statement should be a maximum of 1000 words and we recommend a minimum of 250 words for each of the bullet points above. 

Some guidance to help you with your application can be found in the candidate pack below. 

Our 2-stage selection process ensures a comprehensive assessment of each applicant's qualifications, skills, and potential fit within our organisation.  

Stage 1: Initial Experience-Based Sift  

In this stage, we carefully review all applicants CV & Personal statement to shortlist candidates who meet the experience indicators and possess the necessary qualifications. 

Stage 2: In-person Assessment 

The final stage involves an in-person assessment in Bristol, where selected candidates will be invited to visit one of our premises.  This assessment will include an interview and presentation on a topic provided in advance

Merit List 

Please note that candidates placed on the merit list will be considered for suitable positions as they arise.  Being on the merit list may lead to potential opportunities beyond a role in Operations. 

Sift and Interview 

The sift is due to take place the week of 3rd February. 

Interviews are likely to be held the week of 24th February

We will try to meet the dates set out in the advert. There may be occasions when these dates will change. You will be provided with sufficient notice of the confirmed dates.  

You are encouraged to become familiar with the role profile, as you may be assessed against any of the criteria recorded within.  

Your technical skills will be assessed against the Government Science and Engineering Framework, please click here to find out more. 

The Department for Transport alongside other Government Departments recruit using Success Profiles. This means for each role we consider what you will need to demonstrate in order to be successful. This gives us the best possible chance of finding the right person for the job, drives up performance and improves diversity and inclusivity.   

For further information on Success Profiles visit our Careers website  

Working Pattern

This role is full time only. Applicants who wish to work an alternative pattern are welcome to apply however your preferred working pattern may not be available and you should discuss this with the vacancy holder before applying.

Reasonable Adjustments

As a Disability Confident Leader employer, we are committed to ensuring that the recruitment process is fair, accessible and allows all candidates to perform at their best. If a person with a visible or non-visible disability is substantially disadvantaged, we have a duty to make reasonable changes to our processes.

Complete the “Assistance required” section in the “Additional requirements” page of your application form to tell us what changes or help you might need during the recruitment process. For instance, you may need wheelchair access at an interview, or if you’re deaf, a Language Service Professional.

If you need a reasonable adjustment so that you can complete your application, you should contact Government Recruitment Service via dftrecruitment.grs@cabinetoffice.gov.uk as soon as possible before the closing date to discuss your needs.

Document Accessibility

If you are experiencing accessibility problems with any attachments on this advert, please contact the email address in the 'Contact point for applicants' section.

This job advert contains links to the DfT Careers website. Our website provides useful guidance and information that can support you during the application process. If you cannot access the information on our website for any reason, please email DRGComms@dft.gov.uk for assistance.

Further Information 

For more information about how we hire, and for useful tips on submitting your application for this role, visit the How We Hire page of our DfT Careers website. You can find detailed information about the recruitment process and what to expect when applying for a role.

Pre-employment Checking

Applicants who are successful at interview will be, as part of pre-employment screening, subject to a check on the Internal Fraud Database (IFD). This check will provide information about employees who have been dismissed for fraud or dishonesty offences. This check also applies to employees who resign or otherwise leave before being dismissed for fraud or dishonesty had their employment continued. Any applicant’s details held on the IFD will be refused employment. 

A candidate is not eligible to apply for a role within the Civil Service if the application is made within a 5-year period following a dismissal for carrying out internal fraud against government.

For further information on National Security Vetting please visit the following page https://www.gov.uk/government/publications/demystifying-vetting.



Feedback will only be provided if you attend an interview or assessment.

Security

Successful candidates must undergo a criminal record check.
Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check (opens in a new window).

See our vetting charter (opens in a new window).
People working with government assets must complete baseline personnel security standard (opens in new window) checks.

Nationality requirements

This job is broadly open to the following groups:

  • UK nationals
  • nationals of the Republic of Ireland
  • nationals of Commonwealth countries who have the right to work in the UK
  • nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) (opens in a new window)
  • nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS)
  • individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020
  • Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service
Further information on nationality requirements (opens in a new window)

Working for the Civil Service

The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants.

We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window).
The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.
The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.

Diversity and Inclusion

The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see the Civil Service People Plan (opens in a new window) and the Civil Service Diversity and Inclusion Strategy (opens in a new window).
This vacancy is part of the Great Place to Work for Veterans (opens in a new window) initiative.
The Civil Service welcomes applications from people who have recently left prison or have an unspent conviction. Read more about prison leaver recruitment (opens in new window).
Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.

Contact point for applicants

Job contact :

  • Name : Luke Gumbrill
  • Email : Luke.Gumbrill@vca.gov.uk

Recruitment team

  • Email : dftrecruitment.grs@cabinetoffice.gov.uk

Further information

If you feel your application has not been treated in accordance with the Recruitment Principles and you wish to make a complaint, in the first instance, you should contact Government Recruitment Services via email: dftrecruitment.grs@cabinetoffice.gov.uk
If you are not satisfied with the response you receive from the Department, you can contact the Civil Service Commission: Visit the Civil Service Commission website Here

Share this page