Go back
UK Health Security Agency

Deputy Director – Cyber Security

Information:

This job is now closed

Job summary

UKHSA has an exciting opportunity for a Deputy Director of the Cyber Security Division. It is looking to build on its existing capability to provide a critical function in the protection of the UKHSAs digital assets, working closely with wider UKHSA security teams and stakeholders (Government Security Group, NCSC and CPNI) to build a resilient infrastructure, supporting the organisation in reaching its ambition to become a global leader for health security and becomes a critical component of our national security architecture.

This is an exciting opportunity to become a central part of this build and support the development of the Cyber Security specialism, provide strategic direction whilst managing the challenges and drive continuous improvement.

Main duties of the job

Key responsibilities will include:

  • Drive Cyber Security within UKHSA, acting as the security champion for senior stakeholders, the Deputy SIRO, and the Board
  • Orchestrate the design, and maintenance of the UKHSA Cyber Security Strategy
  • Be the primary point of contact on Cyber Security issues with senior stakeholders and actively develop strong working relationships in relation to Cyber Security
  • Manage a skilled cross-functional team to deliver the agency's strategic Cyber Security objectives and BAU outcomes
  • Ensure that the Cyber Security policies and security controls remain appropriate and proportionate to the assessed risks, and are responsive and adaptable to the changing threat environment, business requirements and central government policies
  • Champion learning, development and accreditation, cultivate talent and foster an inclusive, diverse and motivated workforce
  • Work with the heads of specialisms to promote cross-government security mindedness
  • Promote the Government Cyber Security Profession and advise on Cyber Security risks
  • Work with industry, including security manufacturers and security consultants, to drive best practice
  • Drive professional development by working with the Government Security Function to set and drive continuous learning standard

About us

We pride ourselves as being an employer of choice, where Everyone Matters promoting equality of opportunity to actively encourage applications from everyone, including groups currently underrepresented in our workforce.

UKHSA ethos is to be an inclusive organisation for all our staff and stakeholders. To create, nurture and sustain an inclusive culture, where differences drive innovative solutions to meet the needs of our workforce and wider communities. We do this through celebrating and protecting differences by removing barriers and promoting equity and equality of opportunity for all.

Details

Date posted

31 May 2024

Pay scheme

Other

Salary

£75,000 to £117,800 a year per annum, pro rata.

Contract

Permanent

Working pattern

Full-time, Job share, Flexible working

Reference number

919-KP-303685-EXT

Job locations

National / Hybrid

London

E14 4PU


Job description

Job responsibilities

Essential Criteria

You will be a proven cyber security professional, who is able tospeak with credibility to a technical audience. You will be cyber literate throughpractice butmay also hold cyber-related qualifications.

You will have exceptional people leadership skills, and be able to inspire, motivate and engage your teams.You will demonstrate proven experience of building,leading,and developing a team of diversesecurity professionals, with a track record of developing team goals and careers internally.

You will have exemplary influencing and stakeholder managementskills andbe able toinfluence at very senior levels to promote and embed an improved cyber security culture within the organisation.You will need to demonstrate an ability to communicate and influence (on paper and in person) both internal and external stakeholders, fostering close working relationships at a strategic and operational security level.

You will be able to demonstrate leadership in shaping the organisation's ability to respond to and remediate the range of cyber threats UKHSA and HMG continue to face, whilst staying current with and implementing cyber security best practice, advice, and guidance.

You will be able to navigate complex challenges at pace in a rapidly changing environment, leveraging the expertiseof others to manage risk.

You will have a strong understanding of the organisation's legal and compliance requirements in a cyber security context, in particular adherence to GDPR and NIS Directive obligations. You will demonstrate the skills to balance threats and mitigations to make risk-based recommendations.

You will have strong commercial and financial insight, with proven ability to seek out efficiency and value for money;

DV Security clearance (or a willingness to obtain)

Desirable Criteria

An understanding or experience of programme management principles and ability to effectively drive delivery

Knowledge and understanding of HM Government coupled with an ability to confidently navigate Whitehall and ALBs, capable of drawing upon and establishing networks

Knowledge of the health and social care system and/or experience of managing personal data in a health context

Application

To apply for this post, you will need to complete the online application process accessed via the advertisement listed for this role. This should be completed by no later than 23:55 on 16 June 2024 and will involve completing the following application form sections:

  1. A CV setting out your career history, with key responsibilities and achievements and relevant professional qualifications. Please ensure you have provided reasons for any gaps within the last two years; and
  2. A Statement of Suitability of up to 1000 words detailing how your meet the essential criteria referencing evidence of your experience and skills.

Please note: The system will allow you to write up to 1500 words but please do not exceed 1000 words. We will not consider any words over and above this number.

Feedback will not be provided at this stage.Assessment

If you are shortlisted, you will be asked to attend a panel interview in order to have a more in-depth discussion of your previous experience and professional competence in relation to the criteria set out in the Person Specification. The interview will consist of Technical, Strength and Experience based questions.

All successfully shortlisted candidates will be offered an informal conversation with the Director of Data & Cyber Security for an opportunity to learn more about the role, this will not be scored. It is expected that this will take place on the 1st, 2nd and 3rd July 2024 .

At interview you will be assessed against the following Behaviours: Seeing the Big Picture

Making Effective Decisions

Leading and Communicating

Delivering at Pace

As part of the interview, candidates will be required to deliver a 5-minute presentation, based on the Behaviour Seeing the Big Picture, the topic of which will be confirmed prior to the interview.

Option 1 - External

Open to all external applicants (anyone) from outside the Civil Service (including by definition internal applicants).

Security Clearance Level Requirement:

Successful candidates must pass a disclosure and barring security check.

Successful candidates must meet the security requirements before they can be appointed. If successful you must hold, or be willing to obtain, security clearance to NSV Developed Vetting level.

Depending on the candidate, HSP may be applicable.

Job description

Job responsibilities

Essential Criteria

You will be a proven cyber security professional, who is able tospeak with credibility to a technical audience. You will be cyber literate throughpractice butmay also hold cyber-related qualifications.

You will have exceptional people leadership skills, and be able to inspire, motivate and engage your teams.You will demonstrate proven experience of building,leading,and developing a team of diversesecurity professionals, with a track record of developing team goals and careers internally.

You will have exemplary influencing and stakeholder managementskills andbe able toinfluence at very senior levels to promote and embed an improved cyber security culture within the organisation.You will need to demonstrate an ability to communicate and influence (on paper and in person) both internal and external stakeholders, fostering close working relationships at a strategic and operational security level.

You will be able to demonstrate leadership in shaping the organisation's ability to respond to and remediate the range of cyber threats UKHSA and HMG continue to face, whilst staying current with and implementing cyber security best practice, advice, and guidance.

You will be able to navigate complex challenges at pace in a rapidly changing environment, leveraging the expertiseof others to manage risk.

You will have a strong understanding of the organisation's legal and compliance requirements in a cyber security context, in particular adherence to GDPR and NIS Directive obligations. You will demonstrate the skills to balance threats and mitigations to make risk-based recommendations.

You will have strong commercial and financial insight, with proven ability to seek out efficiency and value for money;

DV Security clearance (or a willingness to obtain)

Desirable Criteria

An understanding or experience of programme management principles and ability to effectively drive delivery

Knowledge and understanding of HM Government coupled with an ability to confidently navigate Whitehall and ALBs, capable of drawing upon and establishing networks

Knowledge of the health and social care system and/or experience of managing personal data in a health context

Application

To apply for this post, you will need to complete the online application process accessed via the advertisement listed for this role. This should be completed by no later than 23:55 on 16 June 2024 and will involve completing the following application form sections:

  1. A CV setting out your career history, with key responsibilities and achievements and relevant professional qualifications. Please ensure you have provided reasons for any gaps within the last two years; and
  2. A Statement of Suitability of up to 1000 words detailing how your meet the essential criteria referencing evidence of your experience and skills.

Please note: The system will allow you to write up to 1500 words but please do not exceed 1000 words. We will not consider any words over and above this number.

Feedback will not be provided at this stage.Assessment

If you are shortlisted, you will be asked to attend a panel interview in order to have a more in-depth discussion of your previous experience and professional competence in relation to the criteria set out in the Person Specification. The interview will consist of Technical, Strength and Experience based questions.

All successfully shortlisted candidates will be offered an informal conversation with the Director of Data & Cyber Security for an opportunity to learn more about the role, this will not be scored. It is expected that this will take place on the 1st, 2nd and 3rd July 2024 .

At interview you will be assessed against the following Behaviours: Seeing the Big Picture

Making Effective Decisions

Leading and Communicating

Delivering at Pace

As part of the interview, candidates will be required to deliver a 5-minute presentation, based on the Behaviour Seeing the Big Picture, the topic of which will be confirmed prior to the interview.

Option 1 - External

Open to all external applicants (anyone) from outside the Civil Service (including by definition internal applicants).

Security Clearance Level Requirement:

Successful candidates must pass a disclosure and barring security check.

Successful candidates must meet the security requirements before they can be appointed. If successful you must hold, or be willing to obtain, security clearance to NSV Developed Vetting level.

Depending on the candidate, HSP may be applicable.

Person Specification

Experience

Essential

  • Statement of Suitability
  • CV

Behaviours and Experience

Essential

  • Seeing the Big Picture
  • Making Effective Decisions
  • Leading and Communicating
  • Delivering at Pace

Technical

Essential

  • Presentation
Person Specification

Experience

Essential

  • Statement of Suitability
  • CV

Behaviours and Experience

Essential

  • Seeing the Big Picture
  • Making Effective Decisions
  • Leading and Communicating
  • Delivering at Pace

Technical

Essential

  • Presentation

Disclosure and Barring Service Check

This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.

Certificate of Sponsorship

Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab).

From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab).

Additional information

Disclosure and Barring Service Check

This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.

Certificate of Sponsorship

Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab).

From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab).

Employer details

Employer name

UK Health Security Agency

Address

National / Hybrid

London

E14 4PU


Employer's website

https://www.gov.uk/government/organisations/uk-health-security-agency (Opens in a new tab)

Employer details

Employer name

UK Health Security Agency

Address

National / Hybrid

London

E14 4PU


Employer's website

https://www.gov.uk/government/organisations/uk-health-security-agency (Opens in a new tab)

Employer contact details

For questions about the job, contact:

Recruitment team

SCS Medical and Dental

SCS.MDrecruitment@ukhsa.gov.uk

Details

Date posted

31 May 2024

Pay scheme

Other

Salary

£75,000 to £117,800 a year per annum, pro rata.

Contract

Permanent

Working pattern

Full-time, Job share, Flexible working

Reference number

919-KP-303685-EXT

Job locations

National / Hybrid

London

E14 4PU


Supporting documents

Privacy notice

UK Health Security Agency's privacy notice (opens in a new tab)