Group Cyber Assurance Manager Location: Location: Flexible and hybrid working model Salary: £Commensurate with experience, including excellent benefits package & flexible working
The Nuclear Decommissioning Authority (NDA) is a non-departmental public body created to clean up the UK's earliest nuclear safety sites safely, securely and cost-effectively, with care for people and the environment. The work to clean up the UK's nuclear legacy is the largest, most important environmental restoration project in Europe.
There are around 16,000 people who help deliver NDA's mission and they make up one of the most advanced nuclear workforces in the world.
The Security and Corporate Services function within the NDA Corporate Centre provides the necessary functional support activities within the NDA Group, which ensures that the domains of Information Communication Technology, Information Governance, Information Security, Security & Resilience and Corporate Centre Services, operate securely, creatively, transparently and effectively in the delivery of the NDA mission.The role
This newly created role is responsible for planning, supporting and coordinating the necessary actions to ensure systems and services meet the necessary acceptance and assurance standards of the NDA Group.
As an information and cyber security professional, the role holder will work as part of the Cyber GRC team to provide risk owners with the necessary advice and guidance on assurance requirements, in line with risk appetite and operational requirements. Risk owners should ultimately have the basis and evidence to make an informed decision on whether they should accept the risks associated with any given capability, balanced against its business and operational opportunities.
Working collaboratively with all of the Group's operating companies, their information and cyber security teams and with the supply chain, this new and broad ranging role will support the growing number of group-wide digital and technology projects and services. The role holder will play a key part in the adoption of a proactive and risk-led approach to assurance. Recording compliance is a minority task for the role.The candidate
You will be a proven cyber assurance professional with experience of owning and maintaining processes for group-wide information and cyber security assurance, ensuring their fitness for purpose as the technical and operating environment evolves.Key accountabilities will include:
- Designing, undertaking, commissioning and overseeing security assurance activities, providing the link between risk assessments and risk treatment
- Development of risk-balance cases
- Assisting group-wide programmes, projects and commercial activities in the interpretation and application of information and cyber security policies, standards and practices
- Working with the security architecture function to embed secure-by-default and ensure appropriate through-life assurance activities are planned, established and then managed
- Sharing relevant assurance evidence across the group to increase the efficiency and speed of putting new capabilities into service
- Champion and advise on the use and development of group-wide cyber assurance services, including, but not limited to, Cyber Range and technical testing services
The NDA is very keen to discuss this opportunity with individuals who have demonstrated strong personal experience in delivering structured and efficient cyber assurance services in large public or private sector matrix organisations.
The NDA value the unique differences that each of our colleagues bring to work every day and are committed to creating an environment where everyone feels respected, included and able to perform at their best.
The NDA are committed to creating a workplace that is diverse and inclusive, and we therefore particularly welcome applications from women, BAME, LGBT+ and disabled candidates.
The NDA is happy to talk flexible working.To apply
To discuss this role in confidence or request a Candidate Brief, please contact Laurence Wolahan M or Louise Holmes M of Hays Executive.
To apply, please upload your resume and covering letter, stating why you are the ideal candidate for the position of Group Cyber Assurance Manager at the NDA. Please also include details of current remuneration package.Closing date for applications: 3rd May 2021 Please note: The above dates may be subject to change
This job was originally posted as www.cwjobs.co.uk/job/92436682