Senior Cyber Security Risk Manager | Cyber Security Jobs Leeds, United Kingdom

Permanent in Cyber Security Manager Email Job
  • Share:

Job Detail

  • Offered Salary 1000
  • Experience 3 Years
  • Gender Male
  • Qualifications network-engineering

Job Description

Reference number



£49,171 – £65,000


Grade 7

Contract type


Business area

DWP – Digital

Type of role


Working pattern

Flexible working, Full-time, Job share, Part-time

Number of posts



This role will be based in Blackpool, Leeds, Manchester, Newcastle or Sheffield. Please find further information on the Corporate hub locations here.

About the job


Technology Services provide the foundations upon which digital services for DWP are developed and operate. Our purpose is to deliver secure, effective and cost-efficient digital infrastructure services and to run live IT operations that support DWP business objectives. We do this by putting users and quality of service at the heart of what we do.

Our team is made up of 1,500 colleagues working collaboratively across 10 portfolio-led teams in a fast-moving environment. Our teams deliver an end-to-end suite of digital products and services that support DWP colleagues and citizens in an ever-evolving technology landscape. Our work is focused around the following 6 themes:

1. Delivering a digital workplace that improves the way we work. We provide the products and services to make our users’ jobs easier, encourage greater collaboration and support flexibility in working patterns, locations and on devices of their choice – helping to drive forward DWP’s digital transformation.

2. Delivering high-quality and resilient IT services and support. We are embedding a Full Stack Service Model to integrate our IT operations and ensure our services meet existing and future network demand.

3. Building a world-class performance-focused user experience control centre. We have created an end-to-end, data-driven performance environment to measure our systems and ensure we keep the department functioning.

4. Exploiting and enhancing hybrid cloud services. We provide hybrid cloud services that balance on-premise and public cloud to offer true platform independence and optimum price performance.

5. Protecting and securing our services. We ensure our IT systems remain secure and available, resilient to natural and human-caused disaster – ensuring citizens always have access to our key services.

6. Developing our people, capability and skills. We have created a sustainable service by developing our people, bringing key skills in-house to DWP, giving our teams professional pathways to develop and opportunities to progress within Technology Services.

As we continue our journey to service excellence we have identified a number of opportunities to join our Technology Services team.

Job description

Are you ready to embrace the challenges of a progressive DWP Digital Security Risk Management team?

Are you a Cyber Security Risk Manager that has worked in a large scale organisation?

If the answer to these two questions is ‘Yes’ you could be our next Senior Cyber Security Risk Manager.

This is a critical role co-ordinating and delivering the Digital Security Risk management programme of work, with risk driving security, enabling a clear, practical, and realistic view of Cyber Security Risk information. The role forms a vital First Line capability within the HMG three-line defence model.

As a Senior Cyber Security Risk Manager, you will work within the Digital Group to help deliver 1st line risk identification, assessment, remediation, and treatment of risks. You will identify controls, make recommendations to address security vulnerabilities and control weaknesses in products, projects, and programmes, working with product owners and Subject Matter Experts to enable them to make well informed risk-based decisions whilst leading and influencing management of tactical and strategic risks.

Security engagement must be inclusive to ensure we avoid treating security as just another specialism and instead, ensure minimum standards of awareness and minimum security standards are built into our product base.

As a Senior Cyber Security Risk Manager you will:

  • Manage and support Digital’s Cybersecurity risk management lifecycle by working to help deliver 1st line risk identification, assessment, remediation, and treatment of risks.
  • Drive a culture of effective and accurate security risk management and facilitate the governance of Digital Security Enterprise Risk Management within the four stages of the Security/Fraud Risk management lifecycle.
  • Provide thought-leadership to ensure effective security Risk expertise, advice and support is delivered to business managers, Senior Risk Owners, and the Executive Team within DWP.
  • ldentify controls and make recommendations to address security vulnerabilities and control weaknesses in products, projects, and programmes, working with product owners and Subject Matter Experts to enable them to make well informed risk-based decisions whilst leading and influencing the management of tactical and strategic risks.
  • Identify, capture, or contextualise risks and mitigating controls, enabling risk owners and managers to take responsibility for the management and maintenance of their security.
  • Work closely with Security and Data Protection and other internal and external stakeholders, to ensure Cyber Security threats, vulnerabilities, and opportunities with the potential to impact or improve resilience of Digital IT Infrastructure are identified, and / or reported appropriately.
  • Take responsibility for delivering timely and quality results with focus and drive.
  • Use evidence and knowledge to support accurate, expert decisions and advice. Carefully consider alternative options, implications and risks of decisions.
  • Support strategic development of the service vision with programmes, enabling the prioritisation and delivery of solutions with appropriate security controls to mitigate Cyber Security Risks through a structured risk management process.


Responsibilities are outlined above.


We’ll assess you against these behaviours during the selection process:

  • Making Effective Decisions
  • Delivering at Pace

Technical skills

We’ll assess you against these technical skills during the selection process:

  • Information Risk Assessment and Management:
  • Applied security capability
  • Protective Security
  • Threat Understanding


  • Learning and development tailored to your role
  • An environment with flexible working options
  • A culture encouraging inclusion and diversity
  • An employer pension contribution of up to 27%
  • A generous annual leave allowance

Salary Information

Salary for this role is from £49,171 (Band min) to £59,589 (Band max).

Where the maximum salary of £59,589 is offered, a Digital Allowance of up to £5,411 per annum is available for exceptional candidates, based on our assessment of your skills and experience.

Our offer to successful candidates will be based on an assessment of your skills and experience as demonstrated at interview.

Existing Civil Servants who secure a new role on lateral transfer should maintain their current salary.

Existing Civil Servants who gain promotion may move to the bottom of the next grade pay scale or 10% increase in salary whichever would be the greater.

This job role may be suitable for hybrid working, which is where an employee works part of the week in their DWP office and part of the week from home. This is a voluntary, non-contractual arrangement and your office will be your contractual place of work. The number of days that anyone will be able to work at home will be determined primarily by business need but personal circumstances and other relevant circumstances will also be taken into account. If you are successful, any opportunities for hybrid working, including whether a hybrid working arrangement is suitable for you, will be discussed with you prior to you taking up your post.

Other jobs you may like