about 1 month ago
This is an exciting role in the Local Digital Cyber team, a multidisciplinary team in the MHCLG Digital Directorate. The team is working to improve cyber security across local government encompassing people, process and technology. Our?team supports a national 'Local Digital' movement that brings together everyone required to make excellent local public services, working with local government stakeholders to adopt the?Local Digital Declaration?principles in their service delivery.??? We?were voted?Apolitical's?'Global Public Service Team of the Year 2019' in the 'New Ways of Working' category?for our innovative approach to incentivising collaboration.?? The Role: You will be joining the Local Digital Cyber team and working across multiple work streams providing expert advice, guidance and patterns as we collaboratively work with and support 344 local authorities across England to improve their cyber security posture. Our work ranges from providing direct, targeted technical support to specific councils to developing a framework and self-assessment tool that will support local authorities to achieve a recommended level of cyber health and also growing capability. You will also be on hand to support the MHCLG response when there is a significant cyber incident in the sector., + Act as a subject matter expert to the Local Digital Cyber team as we develop our services (such as Cyber Health Framework) to improve the cyber security posture of local government + Contribute to building security capability in local government, by researching, identifying, capturing, iterating security architecture patterns and guidance encompassing legacy, on-premise with some cloud and hybrid + Working with partners such as NCSC and Cabinet Office, provide expert advice to MHCLG to understand and manage the cyber risk to the sector + Support MHCLG with the response to a local government cyber incident + Represent the programme and contribute at local government sector working groups and meetings Skills: + Communication skills: You have a deep understanding and can apply security concepts to a technical level. You can effectively translate and accurately communicate security and risk implications across technical and non-technical stakeholders, and are able to respond to challenge. You can manage stakeholders' expectations and be flexible, adapting to stakeholders' reactions to reach consensus. + Design secure systems: You can design and review secure system architectures through the application of patterns and principles, to meet user needs while managing risks. + Enabling and informing risk-based decisions: You can make and guide effective decisions on risk, explaining clearly how the decision has been reached. You can make decisions proportionate to the level of technical complexity and risk. + Research and innovation: You can advise on developments to security approaches in technology. You can identify new technologies and design the use of these in the business context. + Specific security technology and understanding: You have knowledge of system architectures especially legacy on-premise environments. You can understand and articulate the impact of vulnerabilities on existing and future designs and systems, and can identify how easy or difficult it will be to exploit these vulnerabilities. You have broad knowledge of a range of systems but may specialise in one. + Understanding the whole context: You understand trends, practices and policies outside your team and how these will impact the work. You understand how your work fits into the broader strategy and historical context. You can consider the patterns and interactions on a larger scale. You can interpret and apply an understanding of policy and process, business architecture, and legal and political implications to assist in the development of technical solutions or controls. + Analysis. You can visualise, articulate and solve complex problems and concepts, by interrogating and using data or intelligence to formulate and influence plans. You can interpret complex business and technical issues and identify and recognise a viable solution or control. You can understand and link complex and diverse sets of information to inform the response and approach: for example, identifying vulnerabilities and their impact. You can review solutions and identify areas for change. You can drive the collection of information that is used and analysed. You can feed back on policy and requirements. If this Cyber Security Architect role sounds like something that you would be interested in, please click the link to apply and get in touch with one of our PSR team now. "In applying for this role you acknowledge the following; this role falls in scope of the Off Payroll Working in the Public Sector legislation. Any rates of payment quoted will reflect the gross rate per day for the assignment, and will be subject to appropriate taxes and statutory costs. As such the payment to the intermediary and your income resulting from this contract will be different." Please be aware that this role can only be worked within the UK and not Overseas. To move forward with your application, click "Apply"