Cyber Security Officer - The National Archives - SEO

Location

London, London (region), TW9 4DU

About the job

Job summary

We are looking for a Cyber Security Officer to join our Technology Strategy team at The National Archives.

This is an exciting opportunity for a skilled cybersecurity professional to shape and strengthen our security posture, ensure ongoing accreditation, and help embed best practice across the organisation. This is a pivotal role in protecting our digital assets, information systems and cloud environments from ongoing and evolving cyber threats.

Job description

In this role, you will act as a subject matter expert, helping to identify vulnerabilities across our networks, platforms and hardware, and guiding the organisation on how best to remediate them. You will oversee our compliance with key security frameworks, including ISO27001, Cyber Essentials Plus, GovAssure and the emerging ISO/IEC 42001 and 42005 standards for AI governance. You will ensure systems at The National Archives are assessed, secure, well governed and aligned with best practice.

Delivery of this role will involve close collaboration with colleagues across the organisation, helping to embed strong security practices into everyday operations. You will develop and maintain incident response plans, monitor compliance alerts such as those from our ERP Smart Audit , and work with external assessors and auditors to ensure we meet industry and government standards. A key part of your role will be helping to build a security culture by raising awareness and building capability across the organisation by delivering training and guidance on cybersecurity and safe digital practices.

Reporting to the IT Security and Information Assurance manager you will own the delivery of accreditation, of cybersecurity awareness and the delivery of security policies across The National Archives. You will work closely with third parties and assessors to conduct regular security audits to ensure compliance with industry standards and regulations.

Person specification

This role is likely to appeal to a proactive and collaborative cyber security professional who enjoys combining technical expertise with influencing and enabling others. If you are motivated by making a visible impact, thrive in a complex environment, and want to help shape security culture as well as controls, this is an excellent opportunity to apply your skills in a meaningful organisation with a unique digital mission.

A combination of onsite and home working is available and applicants should be able to regularly travel to our Kew site for a minimum of 60% of their work time.

SC clearance/willingness to obtain SC clearance will be required for this role. This requires candidates to have been resident in the UK for at least the past three years. Please do not apply if you have been resident in the UK for less than three years as your application will be rejected

We are unable to offer sponsorship for this role.

APPLICATION PROCESS

Interviews: Interviews will be on site at The National Archives in Kew. Part of the interview will require you to deliver a 5 minute presentation on how you would train new starters in a key element of information security. Further details and instructions will be provided in the interview invitation.

Application: Please submit your work history and a supporting statement. The information you provide must evidence how you meet all the essential criteria listed below and should include:
• Roles where you have worked with infrastructure operations, support or delivery
• Include the technologies and environments you have worked with (e.g. cloud, networking, Microsoft platforms, enterprise systems)
• Show the scale and complexity of the environments you have supported
• Identify any experience of:
o Incident and problem management
o Leading or implementing infrastructure change
o Improving reliability, performance or security


Essential Criteria:
• Strong knowledge and understanding of cyber security frameworks and standards (including good cyber practices, especially in the UK Government / Public sector
• Demonstrable experience of working in a cyber security role preferably within a government or large organization.
• Ability to work under pressure, prioritise and manage your workload
• Excellent problem-solving skills for routine and complex problems and attention to detail.
• Ability to work independently and as part of a team.
• Excellent communication and interpersonal skills, with the ability to deliver training to a wide audience

Artificial Intelligence can be a useful tool to support your application, however, all examples and statements provided must be truthful, factually accurate and taken directly from your own experience. Where plagiarism has been identified (presenting the ideas and experiences of others, or generated by artificial intelligence, as your own) applications may be withdrawn and internal candidates may be subject to disciplinary action.  Please visit the Civil Service Careers website where you can find further information on the use of AI in the application guidance section.