Chief Information Security Officer

**Details**:
**Reference number**:

- 240942**Salary**:

- £71,000 - £120,000- total compensation available of up to £120,000 - made up of base salary and non-pensionable Pivotal Role Allowance**Grade**:

- SCS Pay Band 1**Contract type**:

- Permanent**Business area**:

- CO - Chief Digital and Information Office**Type of role**:

- Information Technology
- Security**Working pattern**:

- Flexible working, Full-time, Job share, Part-time**Number of posts**:

- 1Contents

Location

About the job

**Benefits**:
Things you need to know

Location
- Bristol, London, ManchesterAbout the job

**Summary**:
The Cabinet Office are seeking a **Chief Information Security Officer** (CISO) on a permanent basis.

You will be joining the Chief Digital Information Office (CDIO) organisation, who have a critical remit to enable and transform the Cabinet Office through the provision of exemplary digital, data and technology (DDaT) products and services.

**Job description**:
The CISO within the Cabinet Office will play a key leadership role within the CDIO organisation, leading the Cyber Security function who are tasked with securing the Cabinet Office against cyber threats, developing our strategy, policies and capabilities to do so very effectively. Furthermore, the CISO will have a pan-Cabinet Office landscape leadership role; working closely with the business units and arms length bodies (ALBs) to promote consumption of capabilities, adoption of best practices and close alignment to policy.

This role reports to the Chief Digital Information Officer and will be a member of the senior leadership team, contributing to the continued development of critical directorate within the Cabinet Office.

As CISO you will be accountable for leading the development and delivery of shared cyber security capabilities which secure the Cabinet Office’s digital and IT services against cyber threats, and embedding the Cyber Security capabilities within the organisation. Key customers include the department’s OFFICIAL IT platforms (including approximately 15,000 end user devices), and high-profile citizen-facing services such as GOV.UK and Digital Identity.

**Responsibilities**:

- defining and implementing the Cabinet Office’s cyber security strategy and roadmap
- developing and delivering the department’s shared services which manage cyber security risk (across security architecture, engineering, and operations)
- understanding and reporting on cyber security risk, by developing and delivering the department’s cyber security governance, risk management and compliance capabilities
- leading the response to critical cyber security incidents
- building relationships with, influencing, and collaborating with senior leadership across the Cabinet Office (and its ALBs) to improve coverage of shared cyber security capabilities
- leading collaboration with other Cabinet Office Digital functions (such as Data and Technology teams) to improve the end-to-end management of the Cabinet Office’s cyber risks through better governance and assurance, and ensuring cyber security is considered and embedded in everything that we do through Security by Design
- leading collaboration with the Senior Security Advisor, the Data Protection Officer, Government Security Group, and the National Technical Authorities
- representing cyber security within the Cabinet Office at the senior leadership level and on relevant boards and committees

Applicants should demonstrate their skills and experience against the following essential criteria in your CV and supporting statement:

- Experience building and leading an enterprise cyber security function and managing diverse and high performing teams
- In-depth understanding of cyber threats, vulnerabilities and mitigations
- Excellent communication skills, and a track record of delivering clear and concise written and verbal communications to senior stakeholders on complex issues
- An ability to form strong working relationships, influence others, and coordinate activities across multiple teams
- High levels of personal resilience, remaining calm under pressure with the ability to think and act strategically, developing practical, creative and innovative solutions, business models and approaches, and implementing these.

Desirable criteria includes prior experience as Head of Security/CISO; and experience leading strategic annual and periodic planning.

**Behaviours**:
We'll assess you against these behaviours during the selection process:

- Leadership
- Seeing the Big Picture
- Changing and Improving
- Communicating and Influencing
- Delivering at Pace

**Benefits**:

- Learning and development tailored to your role.
- An environment with flexible working options.
- A culture encouraging inclusion and diversity.
- A Civil Service Pension which provides an attractive pension, benefits for dependants and average employer contributions of 27%.
- A minimum of 25 days of paid annual leave, increasing by one day pe