Job description for Information Assurance Manager
As part of the Information Management & IT function, your impact will be felt across the organisation, helping to embed new technology and tools, automate processes and improve data management. We’ll support you to innovate, as you bring positive change and fresh ideas to the team.
We are currently recruiting for multiple Information Assurance Managers to join our team. The Information Assurance (IA) role is about increasing confidence in the quality of our information by ensuring it is accurate and reflects the truth, can be shared with anyone who needs it to make decisions, is protected appropriately, and complies with legal and policy requirements. As an Information Assurance Manager, you will support the delivery of the Information Assurance strategy, policy, and governance by providing advice to senior colleagues on strategic issues and liaising with stakeholders on complex matters. You may lead a team that delivers large projects and support the business by providing Subject Matter Expertise.
Some of the Information Assurance roles for this campaign may fall within the following different areas:
- Within the Lightning Delivery Team. Responsible for gaining and maintaining US and UK government approvals for above secret information systems in operation supporting the F-35. Managing DE&S staff and contractors to ensure that the systems are operated and maintained in line with the US JSIG RMF framework (based on NIST 800) requirements for security management, audit and incident response.
- As the Security Assurance Co-ordinator in the Flight Simulation and Synthetic Training Team you will liaise with a wide range of stakeholders to maintain Security Accreditation for an existing range of high fidelity training systems and implement effective Assurance and Accreditation approaches for our new procurements.
- Supporting the management of the Information Asset Owner network (approx. 100 senior individuals) on behalf of the DE&S SIRO (Senior Information Risk Owner). Responsible for local policy, procedure and process, and relevant training for IAOs and their support staff.
- Playing a managing role in DE&S’s annual assessment against the NIST Cyber Security Framework. Facilitating external Cyber Security audits; engaging stakeholders to initiate information security improvements; and helping to manage DE&S’ Information Security Management System (ISMS).
- Providing advice, guidance and support to the business to assure compliance with MOD Policy and UK Legislation relevant to Data Protection. Including assessment and mitigation of risks involved in processing personal data, and playing a major role in helping drive continuous improvement in Data Protection support activities to make achieving compliance more effective, efficient, and easier.
- In-Service Teams (SDA). Enabling and supporting platform systems and whole boat security cases, and leading system risk identification, mitigation and security accreditation processes and activities across a broad range of stakeholders and regulators on complex manufacturing and engineering programmes.
- Information, Security and Resilience Office (SDA). Act as the lead IA poc on the Nuclear Enterprise Information Architecture (NEIA) programme, which will deliver a single, secure, and collaborative information backbone for the Nuclear Enterprise. This role provides leadership to the NEIA security framework for the provision, oversight and management of the design, delivery, integration and implementation stages of technical and security associated products that are required to support the SDA enterprise, and deliver a robust and assured service to the Senior Responsible Person (SRO).
Please note, due to the nature of work some posts are Reserved (open to UK Nationals only), some are Non Reserved. Some posts will require the successful candidate to attain DV (Developed Vetting) clearance once in post. Other roles available require SC (Security Clearance).
We strongly recommend tailoring your CV in line with our CV guidance before applying, with specific sections to highlight Key Achievements, Relevant Experience, and Applied Skills & Knowledge.
Responsibilities for Information Assurance Manager
In this role, you will have the opportunity to:
- Lead a team of Information Assurance analysts to ensure high quality work is delivered that meets the needs of the business and required standards.
- Provide expert advice and guidance in supporting the delivery of Information Assurance strategy, policy and solutions relevant to specialist area.
- Lead the testing of relevant controls on the implementation of any system, platform or infrastructure to ensure alignment with security architecture and policy.
- Act as Security Accreditor to ensure all networks and systems are compliant with policy. Providing appropriate advice and guidance when gaps are identified and escalate where appropriate.
- Undertake information assurance reviews and lead audits and provide management information on reviews, both internally and externally with Industry Partners, presenting the findings across stakeholder groups.
- Lead the development and delivery of the accreditation activity within projects, acting as a Security & Information Risk Advisor.
- Review business processes, identify improvements, assess feasibility and recommend new approaches where appropriate and share in the community.
- Manage the controls to ensure Information Management activities is managed in accordance regulatory and relevant legislation.
To be successful with your application, you’ll need to show that you meet the following essential criteria:
- Relevant experience in Information Assurance in an organisation
- Willingness to work towards relevant Information Assurance qualification(s)
In addition to the responsibilities above, the following technical competences and behaviours will be assessed at interview:
- Information Assurance (Practitioner)
- Communicating and Influencing (CSBC3)
- Changing and Improving (CSBC3)
We’re pleased to offer a generous benefits package to support everything from your work-life balance to your bank balance, including:
- 25 days’ holiday a year, plus 1 day a year up to 30 days, 8 bank holidays and a day off for the King’s birthday
- A market-leading employer pension contribution of around 27 percent, an annual performance-based bonus, and recognition awards
- Flexible and hybrid working wherever possible, to support your work-life balance (though some attendance to the stated site is required)
- Access to specialist training and funded professional qualifications, with plenty of opportunities and support for progression
- A huge range of discounts including retail, sports, leisure, restaurants, gifts, days out, holidays, cinema, motoring, insurance, health care, gym memberships, and more
- Up to six days of paid leave a year for volunteering
- Enhanced maternity, adoption, and shared parental leave schemes, offering 100% pay for 26 weeks (after a qualifying period)
- We champion a diverse and inclusive environment, where everyone can be themselves and give their best. We believe that by harnessing the power of different ideas, experiences, and perspectives, we can achieve our ambitions, together. If you have a disability or additional need that requires accommodation, please let us know.
- Discover more in the DE&S Little Book of Big Benefits, the SDA benefits guide, and our pension schemes
Please click the link below to apply for the Information Assurance Manager role by creating an account and uploading your details.