Full Job Description
Details
Reference number
240355
Salary
£41,165 – £49,776
Grade
Senior Executive Officer
Contract type
Permanent
Fixed Term
Loan
Secondment
Length of employment
Permanent
Business area
ONR – Information Technology
Type of role
Information Technology
Working pattern
Flexible working
Number of posts
1
Contents

Location

About the job

Things you need to know

Apply and further information

Location

Bootle, Cheltenham, London
About the job

Summary
ONR is not a Civil Service department, however, we are an arms length body of Department of Work and Pensions.

Job Purpose

The Cyber Security Operations Manager is an interesting, varied role working within the small Corporate Security team leading all aspects of ONR’s cyber security operations. These include leading the management of ONR’s enterprise Cloud environment with responsibility for delivering security controls which ensure ONR meets Government Security Standards and maintains our ISMS to maintain ISO27001 certification.

Additionally, you will work with delivery partners to maintain security standards in ONR’s Security Operations Centre, SIEM monitoring, change management, incident management, policy and playbook development, provision of security advice and implementation of user awareness activity.

About the Role

This new role will be at the heart of the ONR’s Corporate Security Team and be a champion for continual improvement across ONR. Ideally suited to a Cloud Security Operations practitioner this role is critical in protecting ONR from cyber threats. The successful candidate will drive forward a programme of enhancements to ONR’s cyber security operations capability to provide us with a rich and comprehensive view of our cyber security maturity.

Working closely with IT operations and ONR’s managed service provider, the ability to communicate at all levels will be fundamental to this role as will working across the corporate security and wider ONR. Being able to translate complex cyber security issues into digestible language appropriate for the audience will be a critical skill of the successful applicant.

Job description
Principal Responsibilities

Monitoring and configuration of Azure security dashboards
Chairing ONR’s IT Security Working Group, challenging suppliers to deliver improved security services
Preparing vulnerability and incident reports for the ONR CISO
Development of security policies, procedures and playbooks
Leading response to cyber security incidents
Maintenance of the security risk register
Leading security input in the Technical Design Authority
Developing and managing security changes through the Change Management Board
Support assurance activity including Cyber Essentials Certification, ISO27001 certification and delivery of IT Security Health Checks
Working with Government partners, including NCSC, on security activities including implementation of Active Cyber Defence
Supporting the Cyber Security Operations Lead as required
Line Management Responsibilities

As part of this role there will be an expectation to manage staff
Responsibilities
Essential Skills and Experience

Proven, hands-on experience working with M365 and Azure.
A proficient communicator both verbally and written with the ability to converse and engage at all levels within the organisation.
The ability to distil complex information and present it in a clear logical fashion to a non technical audience.
Proven attention to detail; consistently producing outputs to a high standard and with a strong customer service awareness focus.
Able to prioritise own workload, in a busy environment with often competing priorities, ensuring key deadlines are achieved.
Developed collaborating and partnering skills with the ability to influence stakeholders at all levels within the organisation.
Experience in cyber incident management
Desirable skills and experience

Proven deployment of security tools or configuration (e.g. MS Defender, MCAS, SIEMs, firewalls, IDS, WAF, DLP, DNS)
Experience supporting assurance activities (e.g. ISO27001 certification, Cyber Essentials+)
Configuration and monitoring of Data Leak Prevention tools.
Experience maintaining and configuring Microsoft Active Directory and Group Policy toolsets.
Experience maintaining and configuring Microsoft Exchange Online and SMTP.
Things you need to know

Security
Successful candidates must pass a disclosure and barring security check.
Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check.

See our vetting charter.
People working with government assets must complete basic personnel security standard checks.
Medical
Successful candidates will be expected to have a medical.
Selection process details
Please submit your application through the recruitment portal on the ONR website directly by clicking onto the link above apply at advertisers site where you can also download full job description

The closing date for receipt of applications is 20th October 2022 at 11:45pm

We are accepting CVs for this role which will be used as part of the shortlist and panel members will have direct access to your uploaded CV. Please do not include any personal information on your CV to ensure your complete application is fully anonymised. We will request your personal information through our portal when applying which will be anonymised automatically.

Your application should include:

CV to include a full record of your education and professional qualifications and a full employment history
A suitability statement highlighting the ‘essential skills and experience’ (please provide specific evidence/examples where possible up to a maximum of 350 words relating to each essential criteria)
If you have any experience under ‘desirable skills and experience’, please also highlight these within your statement
Your ability and skills will be assessed at an in-depth interview if you are invited to the next stage of the recruitment process. An initial sift of applications is made against the above criteria and failure to address any or all will affect your application. We will offer an interview to disabled people who meet the minimum criteria for the role.

Feedback will only be provided if you attend an interview or assessment.
Nationality requirements
This job is broadly open to the following groups:

UK nationals
nationals of Commonwealth countries who have the right to work in the UK
nationals of the Republic of Ireland
nationals from the EU, EEA or Switzerland with settled or pre-settled status or who apply for either status by the deadline of the European Union Settlement Scheme (EUSS)
relevant EU, EEA, Swiss or Turkish nationals working in the Civil Service
relevant EU, EEA, Swiss or Turkish nationals who have built up the right to work in the Civil Service
certain family members of the relevant EU, EEA, Swiss or Turkish nationals
Further information on nationality requirements
Working for the Civil Service
Please note this Post is NOT regulated by the Civil Service Commission.
The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.
Apply and further information

This vacancy is part of the Great Place to Work for Veterans initiative.
Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.
Contact point for applicants
Job contact :

Name :
Dan Harte
Email :
[email protected]
Recruitment team :

Email :
[email protected]
Further information
https://www.onr.org.uk/complaints-concerns-whistleblowing.htm