Find More Than 10K+
United Kingdom Jobs

Are you ready to work in one of the most interesting cyber security environments and share your experience to support national security?

Cyber security plays an integral role in protecting the UK against external and internal threats, acting as a deterrence to ensure that our Armed Forces have the strong cyber defences they need.

The Cyber Defence and Risk (CyDR) team is at the forefront of Cyber Security and Information Technology within Defence and is responsible for enabling Defence through the provision of specialist assurance and cyber security services across UK Defence, including industry partners, other Government Departments and our international allies.

CyDR sits within the Defence Digital team who provide digital and technology services to our Armed Forces. Defence Digital operates at scale, with an annual budget in excess of £2Bn and a diverse team of 2,500 colleagues, it aims to make our Armed Forces some of the most technologically advanced in the world.

With a fantastic growing team of military and civilian staff operating across the UK, it is a great time to be a cyber security professional in the Ministry of Defence.

If you can see yourself contributing to the world of CyDR the next chapter of your career may be with us!

This position is advertised at 37 hours per week.

The Cyber Risk Insights Analyst position sits within the Cyber Compliance, Insights and Exploitation Team (CCIX), a small, highly specialised team within the Governance, Risk and Compliance (GRC) directorate in Defence Digital.

The CCIX team develop and maintain a wider understanding of cyber risks of our existing systems, by reporting on critical insights from system and strategic gaps and issues. Drawing in audit information and various MOD data sources, the team is responsible for helping senior stakeholders to plan, across Defence’s complex and challenging environments, on cyber risks.

In this role, you will be supporting upward reporting and briefings, regarding compliance and metrics and insights, to enable seniors (all the way up to the Defence Board) to make informed prioritisation and investment decisions. You will play an important part in the development of Defence’s metrics across all systems, providing analysis and deriving insights to further the understanding of existing systems and their vulnerabilities.

As a result, you will develop a wider understanding of these systems across a complex environment of inter-related IT projects, programmes and initiatives, identifying possible gaps and issues. You will also participate in Cyber Compliance Framework / Government Assurance audits, to derive useful metrics across system Defence Wide Audits, to aid in decision making for Cyber risk.

This position will support the pan-Defence Digital Enterprise in aligning metrics and insights and compliance to the Defence Boards risk priorities and themes, aiming to evidence changes to our understanding of Defensive cyber risk.

In return, you will benefit from excellent learning and development opportunities tailored to your role and beyond. Whilst in post, you’ll be able to gain industry recognised qualifications and more and we’ll support you throughout the process.

You’ll also be able to take advantage of our excellent benefits package, including flexible working, generous leave allowance and a market-leading Civil Service pension.

A Recruitment and Retention Allowance (RRA) of up to £9k per annum may be payable with this post, paid in increments upon reaching the required level of competence.

Responsibilities are likely to include but not restricted to:

• Supports the maintenance and technical development to optimise the current list of critical insights and metrics
• Develop meaningful automated reporting through a variety of tools utilising Power BI, Microsoft Excel and PowerPoint
• Align metrics and insights to the Defence Boards risk priorities and themes, aiming to evidence changes to our understanding of Defensive cyber risk
• Explore and develop future methods of data analytics and metrics to react to cyber risk
• Support Annual Defence wide audits against the Cyber Compliance Framework / GovAssure, working with external industry partners and senior leaders to derive useful metrics and insights
• Engage with professional networks of internal stakeholders to provision and acquire alternative access to additional metrics and insights
• Report and present written and verbal findings to operational and senior audiences, both routinely (including quarterly Defence Board and Cyber Resilience Oversight Board) and for ad hoc requirements
• Actively contribute and collaborate in Working Groups

We are committed to encouraging and enabling our staff to develop in and above their role and we will support you in undertaking further learning and development opportunities, within your designated field and beyond. Wherever possible, we will provide upskill learning options and further training to support your continuous professional development.

Person specification

Your experience is key but if you don’t have any of the following industry qualifications below, we’ll help you attain them. You’ll need to have the motivation and desire to continue to learn and develop and we’ll provide opportunities to gain these in post:

• Certificate in Information Security Management Principles (CISMP)
• BCS Practitioner Certificate in Information Risk Management (PCIRM)

Ideally, you’ll also have the following:

• A degree in a STEM subject, Cyber Security or Data Science is desirable or demonstrable work experience of critical analysis, manipulation of data or new statistical and modelling techniques.
• Excellent analytical and data handling skills, knowledge or experience of trends analysis and forecasting
• A keen interest in cyber security and risk management and the desire to continue your professional development
• Excellent relationship-building with stakeholders to build strong and effective working relationships
• The ability to support a team as well as form effective partnerships across different organisations, gaining buy-in and inspiring change
• The ability to quickly assess information and make credible recommendations at pace

Dependent on the business need, there may be a requirement to travel to meetings within the UK (or potentially occasional overseas visits).

This job role may be suitable for hybrid working, which is an informal, non-contractual and voluntary arrangement, blending a balance of attendance in the workplace (your permanent duty station, which is based on business assessment of where the work is best done) and working from home as a personal choice (if the role is suitable for this). If you are successful, any opportunities for hybrid working will be discussed with you prior to you taking up your post.

We expect the successful candidate to be in the office at least 3 days a week due to access requirements to certain IT systems, which are inaccessible remotely.

We'll assess you against these behaviours during the selection process:

• Leadership
• Seeing the Big Picture
• Communicating and Influencing
• Delivering at Pace

We'll assess you against these technical skills during the selection process:

• Information risk assessment and risk management
• Threat understanding

• Learning and development tailored to your role
• An environment with flexible working options
• A culture encouraging inclusion and diversity
• A Civil Service pension with an average employer contribution of 27%
• Family Friendly – Maternity, Paternity and Adoption Leave.
• A wide range of discounts – Defence Discount Service, Civil Service societies for Sports and Leisure, Healthcare, Insurance, Motoring, company discounts with Virgin, Vodafone, and Microsoft Office.
• 5 days per year Learning & Development
• In year rewards and ‘thank you’ schemes.
• Flexible working.
• Generous leave allocations.
• Please see Benefits Leaflet for more detail

Equality and Diversity

Our people are at the heart of everything we do at Defence Digital. It’s vital that our workforce reflects the diversity of both our audience and the wider society in the UK, so we’re proud to be an equal opportunities employer and we actively seek candidates from diverse backgrounds and communities. We also recognise the importance of a good work life balance, so we do everything we can to accommodate flexible working, including part-time and job shares for all our roles. Please just let us know in your application or at any stage throughout the process if this is something you want to explore.

Defence Digital operates an organisation model in which every individual belongs to a Government Profession. The successful applicant will be posted into one of the defined Government Professions on Standard Terms of Reference for the grade. Defence Digital reserves the right to move individuals between roles, within their allocated profession, to meet the needs of the business and in support of agile resourcing.

Within Defence Digital each profession is led by a Professional Head of Community who will lead professional development and support the Continuous Professional Development path for their group.

Defence Digital is currently going through a Transformation Programme which aims to ensure we have the right workforce, with the right skills, to deliver the MOD's Digital Strategy. As the programme progresses, Defence Digital staff may be required to undergo an assessment to understand and develop their upskilling needs to support the delivery of this strategy. This post may be impacted by Transformation.

External recruits who join the MOD who are new to the Civil Service will be subject to a six-month probation period.

This post does not offer any assistance with relocation allowances.

Please be advised that the Department is conducting a review of all pay related allowances which could impact on those allowances that the post currently being advertised attracts.

Any move to MOD from another employer will mean you can no longer access childcare vouchers. This includes moves between government departments. You may however be eligible for other government schemes, including Tax-Free Childcare. Determine your eligibility at www.childcarechoices.gov.uk

Please note: Interview travel expenses will not be reimbursed.

Posts based in London will attract the relevant London weighting

The Ministry of Defence is committed to providing a safe and healthy working environment for its staff which includes educating them on the benefits of not smoking, protecting them from the harmful effects of second-hand smoke and supporting those who want to give up smoking. Under the Smoke-Free Working Environment policy, Smoking and the use of all tobacco products (including combustible and chewing tobacco products) will not be permitted anywhere in the Defence working environment by 31st December 2022. The policy is Whole Force and includes all Defence personnel, contractors, visitors and other non-MOD personnel. All applicants seeking, considering, or accepting employment with the Ministry of Defence should be aware of this policy and that it is already in place at a number of Defence Establishments.

MOD Recruitment Satisfaction Survey – we may contact you regarding your experience to help us improve our customer satisfaction. The survey is voluntary and anonymous. You may however be given the opportunity to provide additional information to help us improve our service which includes the collection of some personal data as defined by the United Kingdom General Data Protection Regulation (UK GDPR). The MOD Privacy Notice sets out how we will use your personal data and your rights.

Job contact :

Name :
Defence Digital Talent Acquisition Team
Email :
[email protected]

Recruitment team

Email :
[email protected]