Job Description

The role is a diverse and challenging one that includes:

• Desk Officer and Subject Matter Expert for the day-to-day WARP management function including supporting complex investigations for DIO and it’s Industry Partners.
• Assists with providing a range of functional corporate report returns and statistics for DIO and other stakeholders on a monthly basis.
• Manages and coordinates regional Information Technology Security Officer (ITSO) duties across the DIO estate.
• DIO ITSO and Subject Matter Expert for IT security queries for DIO TLB and its Industry Partners.
• Management of DIO-wide storage of Authority of Carriage (AoC) letters. This includes management of locally authorized Regional Security Officers issuing of AoC letters.
• Monitors implementation of hardware and software changes and enhancements to ensure security is not breached and, as appropriate, ensuring that security implications are considered at the weekly CIO Statement of Need (SON) Triage.
• Prepares security reports and conducts security surveys required by the Head of Information Cyber Security & Assurance, and Senior TLB Stakeholders.
• Develops ad-hoc and templated SyOps as required by DIO Standard Change Team in liaison with the CIO Information Cyber Security & Assurance Team accreditors.
• Assists with the Information Cyber Security & Assurance education and awareness programmes to target areas of non-compliance and embed security as a BAU activity within DIO.
• Conducts all DIO HQ ITSO audits, spot checks and muster programmes and subsequent reports, manage the regional ITSOs audits and musters programmes for the DIO Top Level Budget (TLB).
• Act as the Primary Crypto Custodian and Subject Matter Expert for DIO TLB and supports the DIO InfoCySec Manager in the management of Assistant Crypto Custodians to ensure adequate cover across the DIO estate at all times.
• Act as the Data Protection Desk Officer (DPDO) and support the Warning Advisory Reporting Point (WARP) and DIO Assistant Data Protection Advisor in investigating data breaches, including provision of guidance to business areas on breach resolution, and actions to prevent further occurrence/s.
• Supports the DIO Assistant Data Protection Advisor in advising and assisting Information Asset Owners (IAOs) and project teams throughout the Data Protection Impact Assessment (DPIA) process, as required. The DPDO will check the Pre-DPIA and DPIA Workbook has been completed as required and will confirm if a DPIA is necessary at pre-screening stage in the absence of a Local Data Protection Advisor decision.
• Supports the DIO Assistant Data Protection Advisor with less complex Subject Access Requests (SARs) and ad-hoc data protection activities.

Behaviors

We'll assess you against these behaviors during the selection process:

• Making Effective Decisions
• Changing and Improving
• Managing a Quality Service
• Leadership
• Communicating and Influencing
• Delivering at Pace

We only ask for evidence of these behaviors on your application form:

• Making Effective Decisions
• Changing and Improving
• Managing a Quality Service

Benefits

We enable our people to work at the right place, with the right people, at the right time.

We believe that if we look after our people they will be passionate about delivering great things for our customers.

We understand the importance of life outside of work and our industry leading flexible working practices, digital technology and modern workspaces will give you the opportunity to enjoy a healthy work-life balance.

The MOD Discover My Benefits page lists the full set of benefits. Some of the many benefits you will receive include:

• Highly competitive Pension Scheme
• Flexi-time scheme
• Alternative working practices such as working from home
• 25 days annual leave rising (1 day per year) to 30 days upon completion of 5 years’ service
• Ability to roll over up to 10 days annual leave per year
• In addition to 8 public holidays per year you will also receive leave for HM The Queen’s birthday
• Minimum of 15 Days Special Leave in a rolling 12-month period to for volunteer military or emergency service reserve commitments
• Special Paid Leave for volunteering up to 6 days a year
• Enhanced maternity, paternity and adoption leave
• Employee Assistance Programme to support your wellbeing
• Most sites have good travel links with free car parking; many also have other facilities such as a Sports & Social Club, Gym and / or site shops

Required Knowledge, Skills, and Abilities

Defense or OGD Information Technology Security Officer (DITSO) experience. Defense or OGD Warning, Advice & Reporting Point (WARP) experience. Defense or OGD Crypto Custodian experience. Data Protection Act (DPA18) experience including Subject Access Requests (SARS) and DPIAs. ISO 27001 or ISO 9001 auditor qualification and experience.Demonstrable broad knowledge and experience in an Information Cyber Security & Assurance role exposed to current HMG Cyber Security and Assurance policy and guidance and NCSC Best Practice and guidance. We'll assess you against these technical skills during the selection process: Government Security Profession Career Framework: Information Risk Assessment & Risk Management NCSC Information Risk Assurance Skill 5.2 (Practitioner Level). Government Security Profession Career Framework: Applied Security Capability NCSC Information Risk Assurance Skill 5.5 (Practitioner Level).