Sector: Central Government
Date posted: 17/05/2022
Salary: £49,700 - £64,500 per annum*
The Cabinet Office are recruiting to two Security Architect vacancies on a permanent basis.
The Cabinet Office supports the Prime Minister and ensures the effective running of government. It is also the corporate headquarters for government, in partnership with HM Treasury, and takes the lead in certain critical policy areas.
We are the Cabinet Office’s cyber security team, and our mission is to secure the department (including its arms length bodies such as the Government Digital Service) against cyber threats. We protect our nationwide internal IT infrastructure, and high-profile citizen-facing digital services such as GOV.UK, Notify, and Register to Vote.
Our Security Architects are trusted advisors for security, responsible for delivering both hands-on solutions and providing information and cyber security advice.
You will work within the CDIO cyber security team and across the Cabinet Office and GDS in this fast-paced and diverse role. You’ll be instrumental in implementing appropriately secure systems, security tooling and other solutions to solve cyber security problems.
As a Security Architect, you will:
- continuously improve the security of our platforms and services by cooperating with various stakeholders to identify, communicate and remediate cyber security issues.
- advise on the selection and implementation of security controls by assessing current threats and vulnerabilities associated with a service or technology.
- understand common and emerging vulnerabilities and threats.
- know how to stay up-to-date through sources such as OWASP and MITRE ATT&CK.
- support digital and service teams to implement security controls and be considerate of organisational objectives.
- communicate security issues and advice widely through various internal channels, including technical documentation, intranets and published guidance (like GDS Way).
- help teams identify and promote security best practices to deliver robust, resilient, secure and scalable solutions.
- act as an ambassador for the cyber security team and promote the team’s tools and services.
We’re interested in people who:
- understand security isn’t just a technology problem, that people and processes are essential to consider.
- can demonstrate extensive information and cyber security knowledge, particularly secure development and engineering practices, identity and access management and cryptography principles.
- appreciate security aspects end-to-end, from designing security controls before a system is developed to managing processes once a service is live, such as regularly iterating incident management and response plans.
- have performed threat modelling and design reviews against new and existing services.
- have experience with cloud-native technologies, particularly those in Amazon Web Services (AWS) such as AWS Lambda, CloudTrail and Kinesis.
- have software development experience to be able to build prototypes, review code and showcase cyber security solutions.
In the Civil Service we use our Success Profile Framework to outline expected behaviours and we will use these as part of our wider assessment during the interview process.
We’ll assess you against these behaviours during the selection process:
- making effective decisions
- delivering at pace
- changing and improving
Applicants will be required to provide an up to date CV and completed diversity form.
View the full job description here.
To apply, please email firstname.lastname@example.org.
Cabinet Office are an equal opportunity employer and value diversity in our organisation. You can find out more about our commitment to diversity and inclusion and read our equal opportunities statement on our Diversity and Inclusion page. CDIO is based in London, Bristol and Manchester, and you will be working with colleagues across all three sites. CDIO supports flexible working, including a balance between office and home-based working.
Location: London, Bristol, Manchester, Glasgow, York, Birmingham, Norwich, Newcastle
Please note that this role requires SC clearance, which would normally require 5 years’ UK residency in the past 5 years. This is not an absolute requirement but supplementary checks may be required where individuals have not lived in the UK for the required period. This may mean that your security clearance (and therefore your appointment) will take longer or, in some cases, not be possible.
*offers made above the base grade will be made up with a non-pensionable specialist pay allowance