Cyber Security Assurance Manager

We’re now looking for a Cyber Security Assurance Manager to join our Data & Digital Team, to plan and design accreditation, assurance and risk management activity related to the digital capability within the Restoration and Renewal Programme.

• The Cyber Security Assurance Manager will be responsible for planning and designing Accreditation, Assurance, and Risk Management activity related to our digital capability. This is a key role to lead the planning and design for security risk assessments and to put in place effective security controls. You will drive engagement and security conversation with specialist stakeholders across the business, including Compliance Reporting, Strategic Risk Programme Office, Corporate Governance and Legal.
• The ideal candidate will run a Security Risk & Compliance Working Group for the improvement and tracking of cyber security risk involving key stakeholders within the organisation. You will be engaging and open to sharing your experiences to help your colleagues gain knowledge and improve their own security profile. Ensuring that security underpins all activity across the organisation you will work closely with internal and external stakeholders to ensure risk is effectively mitigated.

• A proven security professional with a compliance and risk management background with extensive experience of Cyber Assurance, technology risk, information security risk, or IT audit.
• A proven experience of working with protective marking schemes and best practice security standards such as Gov 007, NCSC 10 steps, JSPs, NIST, SyAPs and NPSA guidelines.
• Proven experience of establishing a security risk and compliance function.
• Experience collating, analysing and interpreting information in both written and presentation form with the ability to effectively present and communicate this in a way that will reach and influence a variety of audiences; making the technically complex simple to inform a variety of stakeholders and ensure that security and risk is at the forefront.
• Extensive experience of developing risk management frameworks and writing statutory risk reports for governance committees and groups.
• Demonstrable understanding and experience of managing the security of the operational technology found in cyber-physical systems and knowledge of the cyber threat landscape.
• Excellent written and oral communication skills.
• Able to work with minimal supervision.

Salary circa £80,000 per annum

• 30 days holiday plus public holidays
• Discretionary bonus scheme dependent on corporate and individual performance
• Life assurance of 4 x salary
• Group Income Protection
• Pension – up to 10% employer contribution
• Up to 5 days paid volunteering
• Cycle to work scheme
• Season ticket loan
• Employee Assistance Programme
• Professional Body Fees paid
• Working in a hybrid / smart way

We are committed to promoting diversity and equal opportunities in employment. We are building diverse teams and seek to attract and retain talented individuals from a range of backgrounds and cultures to join us on this hugely challenging and important project.

Please apply by submitting a CV and cover letter, stating your suitability for the role and if you believe you have any current or potential conflicts of interest relating to this position.

We look forward to receiving your completed application by 12 noon on 6th October 2025.

Successful candidates will be required to complete security vetting to a minimum Counter Terrorist Check (CTC) level obtained through the Parliamentary Security Department (PSD). Candidates are required to pass these checks before a start date can be confirmed. Applicants should also be aware that, depending on the role applied for, if they have resided outside of the UK for a total of more than two of the last five years, they may not be eligible for vetting.