AMS PSR

On behalf of the MOD we are looking for a Digital Security Specialist (Outside IR35) for a 3 month contract. Hybrid working with 1 day per week required in London. 

The Ministry of Defence (MOD) is a central government department with a mission to protect our country and provide the ultimate guarantee of its security and independence, as well as helping to protect its values and interests abroad.

The Digital Security Specialist will provide expert advice on security requirements in line with Joint Service Publications (JSPs), ensuring departmental security standards are met. They will oversee the ongoing monitoring of SERVE services, embedding security at all stages of the application life cycle and ensuring continuous compliance. The role includes advising, monitoring, and reporting on SERVE related security matters.

As a Digital Security Specialist your main responsibilities will be to:

• Develop and implement technical and process improvements.
• Identify and mitigate technical risks.
• Lead IT systems and capability owners in preparation for Cyber Compliance framework (CCF) audits based on NCSC and NIST framework to ensure security practices are compliant and oversee any necessary remedial actions.
• Support governance structures to manage all cyber security risks and maintain an up-to-date cyber risk register.
• Act as cyber security support consultant and Digital Security Specialist with respect to any new IT projects, ensuring that SbD is embedded in system design and configuration from the outset.
• Provide assurance support to Head Office, Defence Digital and Cyber Defence & Risk by supporting risk assessments and cyber vulnerability assessments with capability owners and Defence Digital.
• Liaise with relevant Cyber and Security Incident teams to support and respond to cyber security incidents.
• Monitor daily cyber security activities to maintain constant awareness.
• Lead the embedment of ‘SbD’ principles into application development by providing advice and internal consultancy on complex criteria and contexts.

Essential:

• An active SC Clearance is an essential requirement for this role, as a minimum you must be willing & eligible to undergo checks. (Please note, due to the exceptional requirements of this position (short-term nature of this role and speed at which we require a postholder in situ) preference may be given to candidates who meet all of the essential criteria and hold active security clearance.)
• Considerable overall experience within Cyber / Information Security.
• Experience of standardised Cyber Security Control Frameworks such as NIST CSF 2.0, NCSC CAF, and ISO 27001 appropriately, with an awareness of their strengths and limitations.
• Experience of Secure by Design principles, frameworks and standards for a digital service or programme.
• MOD / Defence experience.
• Ability to communicate effectively to a variety of audiences, distilling information to convey key messages and facilitate effective decision making.

Please be aware that this role can only be worked within the UK and not Overseas.

Disability Confident 

As a member of the Disability Confident Scheme, the MOD guarantees to interview all candidates who have a disability and who meet all the essential criteria for the vacancy. In cases where we have a high volume of candidates who have a disability who meet all the essential criteria, we will interview the best candidates from within that group.

This scheme encourages candidates with a disability and/or neurodivergence to apply. In exceptional circumstances, we may also need to apply the desirable criteria in our shortlisting process which may include holding active security clearance.

Armed Forces Covenant

The MOD guarantees to interview veterans or spouses / partners of military personnel who meet all the essential criteria for the vacancy. In cases where we have a high volume of ex-military candidates / military spouses or partners, who meet all of the essential criteria, we will interview the best candidates from within that group. In exceptional circumstances, we may also need to apply the desirable criteria in our shortlisting process which may include holding active security clearance.