Lead Security Architect

UKHSA's Cyber Security Architecture Delivery team is responsible for defining cyber security technical standards for the organisation, providing technical guidance and consulting to help service teams to deliver against those standards, and supporting the selection of security tools and technology. The team (of ten) works across the organisation to support projects to ensure that solutions (predominantly AWS & Azure) are securely designed, identifying threats and where appropriate working with pen test teams to scope testing. As Lead Security Architect, you will be responsible for overseeing the secure delivery of projects and data platforms; ensuring architectural design reviews (HLD/LLD) and threat models are carried out to a high standard. It is an exciting, fast-paced role that will drive strategic change across the organisation both in terms of data and analytic capability, and culture. You'll work closely with a variety of stakeholders including business leads, project managers, delivery partners - as well as multi-disciplinary Technology teams who build and run services.

Working for your organisation We pride ourselves as being an employer of choice, where Everyone Matters promoting equality of opportunity to actively encourage applications from everyone, including groups currently underrepresented in our workforce. UKHSA ethos is to be an inclusive organisation for all our staff and stakeholders. To create, nurture and sustain an inclusive culture, where differences drive innovative solutions to meet the needs of our workforce and wider communities. We do this through celebrating and protecting differences by removing barriers and promoting equity and equality of opportunity for all., The Cyber Security Architecture Delivery team is a mix of permanent civil servants (Two Lead Security Architects and Head of department) and contract Security Architects (6 to 10) As Lead Security Architect you will:

• Work closely with security architects, overseeing their work and providing assurance that architectural design reviews and threat models are carried out consistently to the required standard
• Ensure the team have the appropriate blueprints, guidance, policies and standards required to complete their work.
• Take a risk based and outcome driven approach to secure architecture
• Develop and communicate meaningful security policies
• Identify and promote best practices for multidisciplinary teams to deliver resilient, secure and scalable services
• Identify, own, and respond to security risks and issues as they arise
• Cultivate and maintain relationships with other security teams within UKHSA, Cabinet Office, NCSC and the rest of government
• Ensure all work is in line with DSPT-CAF compliance and the security architecture framework (blueprints, standards etc…) are maintained., You will be required to complete an application form. You will be assessed on the listed four essential criteria, and this will be in the form of a:
• Application form ('Employer/ Activity history' section on the application)
• 500 word Statement of Suitability. This should outline how your skills, experience, and knowledge, provide evidence of your suitability for the role, with reference to the essential criteria. The Application form and Statement of Suitability will be marked together. Longlisting: In the event of a large number of applications we will longlist into 3 piles of:

1. Meets all essential criteria
2. Meets some essential criteria
3. Meets no essential criteria Please note only 1 & 2 pile will be carried though to shortlisting. Shortlisting: In the event of a large number of applications we will shortlist on:

• Can demonstrate cyber security knowledge in a previous hands-on role, especially working within big programmes, and have experience of security management and information assurance practice Desirable criteria: This may be used in the event of a large number of applications / large amount of successful candidate. If you are successful at this stage, you will progress to interview & assessment. Healthjobs UK has a word limit of 1500, but your statement of suitability must be no more than 500. Please do not exceed this word limit, we will not consider any words over and above this number. Feedback will not be provided at this stage. Please note you will not be able to upload your CV. You must complete the application form in as much detail as possible. Please do not email us your CV. Stage 2: Interview You will be invited to a (single) remote interview. Behaviours, experience and ability will be tested at interview. The Behaviours tested during the interview stage will be: -

• Making effective decisions

• Leadership

• Communicating and Influencing - Lead behavour

• Delivering at pace Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records., If you have spent more than 6 months abroad over the last 3 years you may need an International Police Check. This would not necessarily have to be in a single block, and it could be time accrued over that period. Artificial Intelligence (AI) Artificial Intelligence can be a useful tool to support your application, however, all examples and statements provided must be truthful, factually accurate and taken directly from your own experience. Where plagiarism has been identified (presenting the ideas and experiences of others, or generated by artificial intelligence, as your own) applications may be withdrawn and internal candidates may be subject to disciplinary action. Please see our candidate guidance for more information on appropriate and inappropriate use. Link below: Artificial intelligence and recruitment , Civil Service Careers Internal Fraud check If successful for this role as one aspect of pre-employment screening, applicant's personal details - name, national insurance number and date of birth - will be checked against the Cabinet Office Internal Fraud Hub and anyone included on the database will be refused employment unless they can show exceptional circumstances. Currently this is only for External candidates to the Civil Service. Careers website Please visit our careers site for more information https://gov.uk/ukhsa/careers Feedback will only be provided if you attend an interview or assessment.

Security Successful candidates must undergo a criminal record check. Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check (opens in a new window). See our vetting charter (opens in a new window). People working with government assets must complete baseline personnel security standard (opens in new window) checks.

Nationality requirements This job is broadly open to the following groups:

• UK nationals
• nationals of the Republic of Ireland
• nationals of Commonwealth countries who have the right to work in the UK
• nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) (opens in a new window)
• nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS)
• individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020
• Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service Further information on nationality requirements (opens in a new window)

• can demonstrate cyber security knowledge in a previous hands-on role, especially working within big programmes, and have experience of security management and information assurance practices.

• Has experience with modern software engineering practices and or cloud infrastructure, including building, managing and deploying modern web services

• Understands security end-to-end, from security considerations in the design of services, through to architecture reviews, threat modelling, controls and remediation against existing live services

• builds strong relationships and communicates effectively with senior stakeholders and colleagues, ensuring that security considerations are well accounted for and built into ways of working Desirable criteria:

• Leading a team of technical specialists

• Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) qualification

£56,185 - £70,566 Per Annum, Pro Rata

• £56,185- £66,581 (National)
• £58,340- £68,574 (Outer London)
• £60,494- £70,566 (Inner London) You will also receive an additional Market Pay Supplement of between - £5,000 to £15,000 (Dependent on your capability level). A Civil Service Pension with an employer contribution of 28.97% GBP, Alongside your salary of £56,185, UK Health Security Agency contributes £16,276 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides.

• Learning and development tailored to your role

• An environment with flexible working options

• A culture encouraging inclusion and diversity

• A Civil Service pension with an employer contribution of 28.97%, The new facilities will start becoming operational in the mid-2030s, with full completion by 2038. Staff will move in phases as facilities become available. If you're appointed to a role currently based at Canary Wharf, Colindale or Porton Down, please note that we'll continue investing in these sites for the next decade. As we get closer to the transition, we'll provide full information about relocation support available to staff. Security Clearance Level Requirement Successful candidates must pass a disclosure and barring security check. Successful candidates must meet the security requirements before they can be appointed. The level of security needed is Security Check (SC). You should normally have been resident in the United Kingdom for the 5 years to obtain Security Check (SC) clearance. UK residency less than the outlined periods may not necessarily bar you from gaining national security vetting at this higher level and applicants should contact the Vacancy Holder / Recruiting Manager listed in the advert for further advice. Salary Information If you are successful at interview, and are moving from another government department, NHS, or Local Authority, the relevant starting salary principles for level transfers or promotions will apply. Otherwise, roles are offered at the pay scale minimum for the grade, but in exceptional circumstances there may be flexibility if you are able to demonstrate you are already in receipt of an existing, higher salary. Pay increases are through the relevant annual pay award for the role and terms. Please be aware that the salary is based on your location: Grade 7

• £56,185- £66,581 (National)

• £58,340- £68,574 (Outer London)

• £60,494- £70,566 (Inner London) You will also receive an additional Market Pay Supplement of between - £5,000 to £15,000 (Dependent on your capability level). Reasonable Adjustments The Civil Service is committed to making sure that our selection methods are fair to everyone. To help you during the recruitment process, we will consider any reasonable adjustments that could help you. An adjustment is a change to the recruitment process or an adjustment at work. This is separate to the Disability Confident Scheme. If you need an adjustment to be made at any point during the recruitment process you should contact the recruitment team in confidence as soon as possible to discuss your needs.

UKHSA is investing in a new state-of-the-art National Biosecurity Centre in Harlow, Essex, which will eventually bring together teams currently based at Canary Wharf, Colindale and Porton Down. For more details, please see: Huge biosecurity centre investment to boost pandemic protection - GOV.UK.