Cyber Security Manager

UCAS is at the heart of connecting people to higher education.

UCAS is the world's leading shared admissions service for higher education. We provide application services for UK universities and colleges as well as delivering a wide range of research, consultancy and advisory services to schools, colleges, careers services, professional bodies and employers.

We're a successful and fast-growing organisation, which helps hundreds of thousands of people every year. We're committed to delivering a first-class service to all of our customers — they're at the heart of everything we do.

Business Unit Description
The Digital Services business unit is at the heart of UCAS' technical innovation, data and infrastructure. It focuses on leveraging data science, technology, and enterprise architecture to enhance UCAS' digital products and services.

The unit is dedicated to developing and improving customer-centric digital solutions, ensuring seamless and secure online experiences for all users. By providing insightful data and analysis, often made available to anyone with free-to-use intuitive dashboard, Digital Services empowers the Higher Education sector and those interested in the sector with valuable information to make informed decisions. By working in collaborative, expert led, multi-disciplinary teams, Digital Services drives UCAS' mission to connect students with their next opportunities through advanced technological solutions.

About The Role Contractual Hours
35.00

About The Role
UCAS is widely understood to be the equivalent of UK Critical National Infrastructure at certain points of the curriculum year. The Cyber Security Manager will support the Enterprise Security Lead to ensure an appropriate level of security assurance for Executive Members, Trustees and UK Government at all times.

This role will also provide expertise and support to the Enterprise Security Lead in achieving the strategic goals in UCAS for IT/Cyber security, helping to drive a level of excellence throughout the entire organisation that presents UCAS as 'The Exemplar' in cyber security across the education sector. The Cyber Security Manager will also assist in providing an integrated security service with strong links to all parts of the business including executive members.

Key accountabilities:

• Working within the Security function of the Digital Delivery Business unit:
• Provide an internal security service, collaborating with various teams on security matters and responding to SAQ's.
• Supported by the Enterprise Security Lead, you will develop a series of documented processes to both set and measure a series of standards for operational use across the business
• Collaborate with the Enterprise Security Lead and other security team members in developing and maintaining both a strategy and Security maturity model
• Lead/Support Cyber Security Initiatives/Projects as directed.

You can find the full job description in the attached role profile below.
Skills, Qualifications, And Experience

• One or more of the following qualifications: CompTia Security +, CISM, GIAC, CISSP, CISMP or SANS Certification.
• ITIL V3/V4 Foundation and above.
• Significant experience in a similar role, however lesser experience will still be considered for the right candidate.
• Working knowledge/understanding of the adherence to standards such as ISO27001, CIS-18, NIST CSF, OWASP, MITRE , GDPR etc.
• Good understanding of both the technical and operational aspects of IT systems and services, and security practices (SSDLC) embedded into agile development methodologies.
• A confident communicator, both verbal and written, comfortable engaging with internal customers at all levels, both technical and non-technical.

Package
Salary - up to £62,000

• 30 days annual leave (plus 3 concessionary days over Christmas and your bank holidays)
• Flexibility – UCAS positively supports Hybrid working for its employees, meaning you can work between home and the office in a way that suits you and the business and also has a comprehensive Flexible Working Policy
• A generous pension scheme
• Hundreds of high street discounts and offers with Perkbox
• Internal training and development
• Subsidised gym and café
• Be rewarded for going above and beyond with our ex-gratia bonus scheme and Celebrating U, our quarterly employee recognition scheme
• Dedicated volunteer employee networks promoting wellbeing, awareness and inclusion

Studies have shown that some groups of people are less likely to apply to a role unless they tick every box. At UCAS we recognise that talent comes in various forms and we are committed to delivering a fair and equitable recruitment process where applicants have an equal opportunity to demonstrate their skills. So, if you are interested in this vacancy, but don't necessarily meet every single point on the job description, please still apply.

If you have any questions and would like to find out more about the role before applying please email the Talent Acquisition team via and one of us will be in touch.

Working Arrangements
Is fully remote working an option?
No