Information Assurance and Audit Manager Nottingham, England
Job description
Details
Reference number
Salary
Job grade
Contract type
Business area
Type of role
Knowledge and Information Management
Security
Working pattern
Number of jobs available
Contents
Location
About the job
Benefits
Things you need to know
Apply and further information
Location
About the job
Job summary
We pride ourselves as being an employer of choice and welcome and encourage applications from everyone, such as ethnic minorities, women, disabled people and those who identify as LGBT+.
To find out more about how we champion diversity and inclusion in the workplace and making DVSA a great place to work visit our Careers website.
Do you have experience in audit, compliance and risk management?
Would you relish the chance to work with a wide range of stakeholders?
If so, we are looking for a confident individual to join us as Information Assurance and Audit Manager at the Driver and Vehicle Standards Agency (DVSA), and we’d love to hear from you!
Job description
You will be responsible for leading an audit and compliance programme, to assess information risk associated with the processing of DVSA information. Conducting internal or external on-site audits across the UK and occasionally overseas for suppliers and sub-contractors, you will create and maintain records of audit findings and recommendations, monitor, and report on compliance.
Ensuring that there is a clear Information Management and Security (IMS) policy set that supports the DVSA business across the information assurance, information management and legal compliance.
You will work closely with the SEO Information Audit and Risk Manager, Data Protection and DfT Security colleagues, Information Asset Owners and the Home Office Protective Security team.
This is a fantastic, varied role that involves every DVSA aspect with excellent development opportunities.
Roles and Responsibilities
Some of your main duties you will:
- Draft and submit for agreement to the Senior Information Risk Owner (SIRO) the DVSA Information Audit and Compliance programme for each financial year taking a risk-based approach to assess the appropriate frequency and method of audit or compliance check.
- Undertake (including planning and reporting on) internal compliance checks or external audits of suppliers to support the assurance process of the information risk lifecycle. Act as lead for more complex audits. Advising and coaching less experienced auditors.
- Through audit ensure each record & data sharing activity has appropriate Memoranda of Understanding (MoUs) in place and information architecture maps to support the activity. Support and provide advice through recommendations to business units on the content of MOUs and other data sharing agreements.
- As an Information Partner support allocated Information Asset Owners (IAOs) to carry out their role effectively, advising and challenging their assessments of data handling. Ensuring the IAOs complete necessary reports timeously.
- Develop & lead a programme of work to ensure that appropriate policies/guidance for DVSA exist covering information assurance, information management and legal compliance.
- Have a clear process to agree the policies and update them ensuring stakeholder engagement is in place and ensure this process is reported on in terms of achieving anticipated timelines to relevant Governance Boards
Please see the Candidate Pack attached to this job advert for more information about the role and responsibilities.
Person specification
About you
To be successful in this role you will need to be able to demonstrate an aptitude for investigations and auditing and/or bring experience of managing compliance. You are proactive and self-motivated and enjoy working independently as well as part of a team.
You will be someone who can build rapport with key stakeholders both internally and externally and enjoys working collaboratively with people at all levels. You will be a trusted adviser, with the credibility to challenge and influence effectively to manage expectations.
You excel at written and verbal communication and can effectively deliver information in a clear, confident and professional manner.
Additional information:
Travel will be required between DVSA UK sites for compliance checks or to third party sites when auditing suppliers and sub-contractors. Some of this may require overseas travel depending on the contractors engaged at any given time.
Travel may also be required within the UK to attend team meetings and events.
Whilst we welcome applications from those looking to work with us on a part time basis, there is a business requirement, for the successful candidate to be able to work at least 30 hours per week.
If not already held the post holder will be required to undertake and obtain Non-Police Personnel Vetting (NPPV) security checks to Level 2 prior to taking up post. The post holder will also be required to undertake and obtain National Security Vetting (NSV) to Security Check (SC) level whilst in post.
To meet the National Security Vetting requirements at this level you will need to have continuously resided in the UK 5 years. You can still be considered if you were posted abroad as part of your service with HM Forces/Government, taken a gap year and spent the year travelling.
To meet the Non-Police Personnel Vetting requirements, you will need to have continuously resided in the UK for a minimum of 3 years. There are occasions when this can be waived e.g. applicants who have taken a gap year and spent the time travelling, served with HM Forces/Government overseas.
About us
The Driver and Vehicle Standards Agency (DVSA) helps everyone stay safe on Britain's roads.
We do this by helping people through a lifetime of safe driving, helping them keep their vehicles safe to drive, and protecting them from unsafe drivers and vehicles.
Our work affects millions of people and thousands of businesses. Most importantly, our work saves lives.
We're an innovative organisation that values professional expertise. We invest in our people and champion inclusive and diverse teams. And we make sure colleagues have the skills to meet the needs of Britain’s road users.
If you would like to read more about the great opportunities and benefits of working at DVSA visit our Careers website.
Qualifications
- ISO27001 Lead Auditor or be willing to work towards this once in role.
- British Computer Society (BCS) Information Security Examination Board (ISEB) Data Protection (or equivalent) or be willing to work towards this once in role.
- Certificate in Information Security Management Principles or be willing to work towards this once in role.
Behaviours
We'll assess you against these behaviours during the selection process:
- Changing and Improving
- Working Together
- Delivering at Pace
- Leadership
Benefits
Being part of our brilliant Civil Service means you will have access to a wide range of fantastic benefits. We offer generous annual leave, attractive pension options, flexible working, inclusive working environments and much more to support a healthy work/life balance.
If you would like to read more about the great opportunities and benefits of working at DVSA visit our Careers website.
Things you need to know
Selection process details
How to Apply
As part of the application process you will be asked to complete a CV and personal statement (max 1000 words). Please tailor these to provide evidence of your;
- Experience of auditing, compliance, risk and working with management information.
- Proven ability to develop effective working relationships with a wide range of stakeholders including negotiation with senior staff.
- Delivering excellent verbal and written communication.
The selection process will be designed specifically for the role. As a result, your assessment will include:
- an interview
You’re encouraged to become familiar with the candidate pack as you may be assessed against any of the criteria recorded within.
The Department for Transport recruits using Success Profiles. For each role, we consider what you need to demonstrate to be successful.
This gives us the best possible chance of finding the right person for the job, drives up performance and improves diversity and inclusivity.
You can read more about Success Profiles here.
The sift is due to take place from 27 April 2023.
Interviews are likely to be held from week commencing 10 May 2023 and week commencing 17 May 2023.
This interview could be conducted via a video interview, details of which will be provided to you should you be selected for interview.
We’ll try to meet the dates we’ve set out in the advert. But there may be occasions when these dates will change. We’ll give you plenty of notice of any important dates.
If you are experiencing accessibility problems with any attachments on this advert, please contact the email address in the 'Contact point for applicants' section.
Further Information
For more information about how we hire, and for useful tips on submitting your application for this role, visit the How we hire page of our DfT Careers website.
Before submitting your application, we encourage you to visit our Recruitment in detail page of the DfT Careers website. You will find detailed information about the entire recruitment process and what to expect when applying for a role in the Civil Service.Throughout this job advert there are links to the DfT Careers Website, which provides you further information to support your application. Should you be unable to access the information on our website, please email [email protected] for assistance.
Applicants who are successful at interview will be, as part of pre-employment screening, subject to a check on the Internal Fraud Database (IFD). This check will provide information about employees who have been dismissed for fraud or dishonesty offences. This check also applies to employees who resign or otherwise leave before being dismissed for fraud or dishonesty had their employment continued. Any applicant’s details held on the IFD will be refused employment.
A candidate is not eligible to apply for a role within the Civil Service if the application is made within a 5 year period following a dismissal for carrying out internal fraud against government.
Feedback will only be provided if you attend an interview or assessment.
Security
See our vetting charter (opens in a new window).
Nationality requirements
This job is broadly open to the following groups:
- UK nationals
- nationals of Commonwealth countries who have the right to work in the UK
- nationals of the Republic of Ireland
- nationals from the EU, EEA or Switzerland with settled or pre-settled status or who apply for either status by the deadline of the European Union Settlement Scheme (EUSS) (opens in a new window)
- relevant EU, EEA, Swiss or Turkish nationals working in the Civil Service
- relevant EU, EEA, Swiss or Turkish nationals who have built up the right to work in the Civil Service
- certain family members of the relevant EU, EEA, Swiss or Turkish nationals
Working for the Civil Service
We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window).
Apply and further information
Contact point for applicants
Job contact :
Recruitment team :
Further information
If you are not satisfied with the response you receive from the Department, you can contact the Civil Service Commission: Visit the Civil Service Commission website Here
