Skip to content

General information

Posting ID
PIP1924

Organisation
Department for Work & Pensions
Contract duration
12 months
Workplace Type
Hybrid
Location
UK Wide

Description & Requirements


On behalf of DWP we are looking for a Head of Security Design for a 12 month (Inside IR35) contract. Hybrid working with 2 days per week required in London, Manchester, Leeds or Newcastle. 


The Department for Work and Pensions (DWP) is responsible for welfare, pensions, and child maintenance policy. As the UK’s biggest public service department, it administers the State Pension and a range of working age, disability and ill health benefits to around 20 million claimants and customers. As such, we operate on a scale that is almost unmatched anywhere in Europe and most people in Britain come into contact with us at some point in their lives.


Working with DWP, you will be helping us to drive our priorities to:


  • Help people to move into work and support those already in work to progress, with the aim of increasing overall workforce participation
  • Help people to plan and save for later life, while providing a safety net for those who need it now
  • Provide effective, efficient, and innovative services to the millions of claimants who rely on us every day, including the most vulnerable in society
  • Improve experience of our services while maximising value for money for the taxpayer.



As a Head of Security Design your main responsibilities will be:


  • Provide leadership to ensure effective security and fraud Risk expertise, advice and support is delivered to include business managers, Senior Risk Owners, and the Working Age Services SLT within DWP.
  • Establish and manage the Working Age Services security posture and initiatives, ensuring the protection of information assets from internal and external threats.
  • Develop, manage, and enhance the fraud risk management framework to minimize the department’s exposure to fraud risks.
  • Provide leadership to ensure effective security and fraud Risk expertise, advice and support is delivered to include business managers, Senior Risk Owners, and the Working Age Services SLT within DWP.
  • Establish and manage the Working Age Services security posture and initiatives, ensuring the protection of information assets from internal and external threats.
  • Develop, manage, and enhance the fraud risk management framework to minimize the department’s exposure to fraud risks.
  • Oversee the implementation, management, and proper utilisation of security tools such as intrusion detection systems, vulnerability management, anti-virus software, and data encryption.
  • Assess and manage the identification and mitigation plans of existing and emerging security threats, vulnerabilities, and risks.
  • Maintain of awareness in information security technologies and fraud risk management methodologies, applying best practices and drive knowledge through Working Age Services.
  • Lead security awareness and education programs to encourage all employees to maintain a high level of vigilance.



Essential:


  • An active SC Clearance is an essential requirement for this role, as a minimum you must be eligible and willing to undergo these checks.
  • Expert knowledge of leading innovation in protective security, taking into account the need to balance security requirements against service innovation.
  • Expert in combining external threat information, organisational context and situational awareness to provide a holistic threat understanding capability, including the use of threat models.
  • Ability to communicate tailored threat information to relevant senior stakeholders across multiple teams.
  • Able to provide technical leadership for specific experts (be they pen-testers, Security Architects, DevSecOps, product or compliance assurance, for example) in the context of driving change and being confidence to challenge.
  • Proven experience in developing approaches to effectively manage risk through the full risk lifecycle. Evidence of communicating risk in clear terms to enable informed decision making and prioritisation.
  • Proven record of working on a large high impact programme or enterprise scale operation.
  • CISSP or similar certification or can demonstrate equivalent skills and experience across those domains.



Desirable:


  • Public Sector experience.
  • SDLC experience.




Please be aware that this role can only be worked within the UK and not Overseas.



Disability Confident 


As a member of the Disability Confident Scheme, DWP guarantees to interview all candidates who have a disability and who meet all the essential criteria for the vacancy. In cases where we have a high volume of candidates who have a disability who meet all the essential criteria, we will interview the best candidates from within that group. This scheme encourages candidates with a disability and/or neurodivergence to apply.



In applying for this role, you acknowledge the following "this role falls in scope of the Off Payroll Working in the Public Sector legislation. Any rates of payment quoted will reflect the gross rate per day for the assignment and will be subject to appropriate taxes and statutory costs. As such the payment to the intermediary and your income resulting from this contract will be different".