Vehicle Cyber Security Lead Auditor
Vehicle Certification Agency
Apply before 11:55 pm on Sunday 2nd February 2025
Details
Reference number
Salary
Job grade
Contract type
Business area
Type of role
Operational Delivery
Quality
Working pattern
Number of jobs available
Contents
Location
About the job
Job summary
Are you skilled in conducting cyber security risk assessments and auditing management systems?
Do you have experience in security testing tools, penetration testing and vulnerability assessments?
Have you got the latest knowledge in automotive cyber security and software updating standards?
Can you lead on the audit and assessment to ensure vehicles manufacturers are producing secure and up to date vehicles?
We’re looking for a Vehicle Cyber Security Lead Auditor to join our team. This is an exciting time for the VCA, and a great opportunity to be getting involved in our mission to make our roads secure.
About Us
Our work is focused on improving vehicle safety and environmental protection by providing robust testing and certification to national and internationally recognised standards. We are a part of the Department of Transport as the designated UK Vehicle Type Approval Authority. With more than 40 years’ experience, we have become one of the largest and well-respected approval bodies around. This position has been built on a reputation for technical expertise and quality, which is at the heart of everything we do, and what you could be a part of.
Job description
The Vehicle Cyber Security Lead Auditor plays an important role in ensuring the cyber security and software updating compliance of vehicles seeking type approval. This is a technically focused role that is expected to use your knowledge and experience in this domain to lead on cyber security and software updating management systems audits and the assessment of vehicles. You will lead the audit team and work with vehicle manufacturers to audit their processes and assess the claims made about their systems.
As a technical lead in Cyber Security and Software Updating, you will be expected to have a strong and specific background in cyber security, with demonstrable expertise and practical knowledge in the field. You will exhibit an ability to make well-informed and critical decisions when determining the compliance for the audits and assessments you are leading. This will involve you overseeing the technical activities of those involved in any audit you are leading, to ensure the highest standards are maintained through the type approval process.
We are committed to ensuring you are familiar with the latest advances and information to conduct your role, by supporting your professional development with training and networking with world leading experts. You will have chance to travel in the UK and overseas and will benefit from flexible working and policies to obtain a work life balance. To account for your breadth of knowledge and skill in this field of work, in addition to a competitive salary, you will also be awarded our Technical Specialist Allowance of up to £14000.
Your duties will include, but are not limited to:
- Lead on the assessment of vehicle manufacturers cyber security and software update submissions as part of the Type Approval process to ensure compliance with regulations.
- Audit management systems to evaluate manufacturer claims of effective processes.
- Attend and observe vehicle testing, documenting the results through detailed records that support the evaluation process.
- Determine compliance from the outcome of management system audits and vehicle assessments.
- Oversee the work of engineers involved in type approval activities to ensure the highest standards are maintained through the type approval process.
- Collaborate with technical lead in the Type Approval Authority by using experience and knowledge to support development of technical interpretations and broader policy developments.
- Act as a mentor and guide colleagues in the realm of cyber security and software updating, sharing your practical insights and knowledge to foster skill development and growth in the team.
For further information, please see the attached Role Profile.
Person specification
To apply for our position, you will need:
- Experience of conducting cyber security risk assessments and management system audits.
- Experience of security testing tools, penetration testing, and vulnerability assessment.
Additional Information
This role is suitable for hybrid working, and therefore a combination of workplace and home-based working can be accommodated subject to business requirements. Hybrid working is a non-contractual arrangement where employees have the flexibility to work remotely combined with a minimum of 60% of their working time a month at either their principal workplace (one of the locations cited in the advert) or, when required for business reasons, visiting stakeholders and colleagues, or carrying out detached duty in another VCA workplace. There may be occasions where you are required to attend above the minimum expectation.
If you have questions regarding how hybrid working is practiced within the business area, or any reasonable adjustments or flexible working arrangements you may currently have or need in place if successful in your application, please contact the Vacancy Holder (see advert for contact details).
Technical Specialist Allowance
In addition to your basic salary, this role attracts a non-pensionable £14,000 annual allowance in recognition of the requirement for professional engineering and/or relevant professional occupational experience.
Licences
Qualifications
Behaviours
We'll assess you against these behaviours during the selection process:
- Making Effective Decisions
Technical skills
We'll assess you against these technical skills during the selection process:
- Government Science and Engineering Framework - Building and Applying Knowledge (Applying Knowledge)
- Government Science and Engineering Framework - Building and Applying Knowledge (Developing / Maintaining Expertise)
- Government Science and Engineering Framework -Technical Oversight and Management (Overseeing Technical Work)
- Government Science and Engineering Framework - Developing science and engineering capability (Mentoring)
Benefits
The Vehicle Certification Agency is the designated UK Vehicle Type Approval Authority. We have over 30 years’ experience supporting industry by providing internationally recognised testing and certification for vehicles, their systems and components.
If you would like to read more about VCA and the benefits of working for us, visit our Careers website!
Things you need to know
Selection process details
How to Apply
To apply you should provide a CV and Personal Statement. Further details around what this will entail are listed on the application form.
We will assess the following experience indicators from your CV & Personal Statement so you should tailor both to clearly explain how you meet them.
- Conducting cyber security risk assessments and management system audits.
- Security testing tools, penetration testing, and vulnerability assessment.
Your Personal Statement should be a maximum of 1000 words and we recommend a minimum of 250 words for each of the bullet points above.
Some guidance to help you with your application can be found in the candidate pack below.
Our 2-stage selection process ensures a comprehensive assessment of each applicant's qualifications, skills, and potential fit within our organisation.
Stage 1: Initial Experience-Based Sift
In this stage, we carefully review all applicants CV & Personal statement to shortlist candidates who meet the experience indicators and possess the necessary qualifications.
Stage 2: In-person Assessment
The final stage involves an in-person assessment in Bristol, where selected candidates will be invited to visit one of our premises. This assessment will include an interview and presentation on a topic provided in advance
Merit List
Please note that candidates placed on the merit list will be considered for suitable positions as they arise. Being on the merit list may lead to potential opportunities beyond a role in Operations.
Sift and Interview
The sift is due to take place the week of 3rd February.
Interviews are likely to be held the week of 24th February
We will try to meet the dates set out in the advert. There may be occasions when these dates will change. You will be provided with sufficient notice of the confirmed dates.
You are encouraged to become familiar with the role profile, as you may be assessed against any of the criteria recorded within.
Your technical skills will be assessed against the Government Science and Engineering Framework, please click here to find out more.
The Department for Transport alongside other Government Departments recruit using Success Profiles. This means for each role we consider what you will need to demonstrate in order to be successful. This gives us the best possible chance of finding the right person for the job, drives up performance and improves diversity and inclusivity.
For further information on Success Profiles visit our Careers website.
Working Pattern
This role is full time only. Applicants who wish to work an alternative pattern are welcome to apply however your preferred working pattern may not be available and you should discuss this with the vacancy holder before applying.
Reasonable Adjustments
As a Disability Confident Leader employer, we are committed to ensuring that the recruitment process is fair, accessible and allows all candidates to perform at their best. If a person with a visible or non-visible disability is substantially disadvantaged, we have a duty to make reasonable changes to our processes.
Complete the “Assistance required” section in the “Additional requirements” page of your application form to tell us what changes or help you might need during the recruitment process. For instance, you may need wheelchair access at an interview, or if you’re deaf, a Language Service Professional.
If you need a reasonable adjustment so that you can complete your application, you should contact Government Recruitment Service via dftrecruitment.grs@cabinetoffice.gov.uk as soon as possible before the closing date to discuss your needs.
Document Accessibility
If you are experiencing accessibility problems with any attachments on this advert, please contact the email address in the 'Contact point for applicants' section.
This job advert contains links to the DfT Careers website. Our website provides useful guidance and information that can support you during the application process. If you cannot access the information on our website for any reason, please email DRGComms@dft.gov.uk for assistance.
Further Information
For more information about how we hire, and for useful tips on submitting your application for this role, visit the How We Hire page of our DfT Careers website. You can find detailed information about the recruitment process and what to expect when applying for a role.
Pre-employment Checking
Applicants who are successful at interview will be, as part of pre-employment screening, subject to a check on the Internal Fraud Database (IFD). This check will provide information about employees who have been dismissed for fraud or dishonesty offences. This check also applies to employees who resign or otherwise leave before being dismissed for fraud or dishonesty had their employment continued. Any applicant’s details held on the IFD will be refused employment.
A candidate is not eligible to apply for a role within the Civil Service if the application is made within a 5-year period following a dismissal for carrying out internal fraud against government.
For further information on National Security Vetting please visit the following page https://www.gov.uk/government/publications/demystifying-vetting.
Feedback will only be provided if you attend an interview or assessment.
Security
Nationality requirements
Working for the Civil Service
We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window).
Diversity and Inclusion
Apply and further information
Contact point for applicants
Job contact :
- Name : Luke Gumbrill
- Email : Luke.Gumbrill@vca.gov.uk
Recruitment team
- Email : dftrecruitment.grs@cabinetoffice.gov.uk
Further information
If you are not satisfied with the response you receive from the Department, you can contact the Civil Service Commission: Visit the Civil Service Commission website Here